source: http://www.securityfocus.com/bid/2956/info Citrix Nfuse is an application portal server meant to provide the functionality of any application on the server via a web browser. Nfuse works in conjunction with a previously-installed webserver. It has been reported that a remote attacker can learn the location of the webroot simply by submitting a request to the launcher application without specifying the additional required information. This has been reported to not be reliably replicable. http://target/path/launch.asp?
Related ExploitsTrying to match CVEs (1): CVE-2001-0760
Trying to match OSVDBs (1): 1885
Other Possible E-DB Search Terms: Citrix Nfuse 1.51, Citrix Nfuse
|2002-03-27||Citrix NFuse 1.51/1.6 - Cross-Site Scripting||Eric Detoisien|
|2002-01-22||Citrix Nfuse 1.6 - Published Applications Information Leak||Ian Vitek|