CVE-2013-6077 Information

Description

Citrix XenDesktop 7.0 when upgraded from XenDesktop 5.x does not properly enforce policy rule permissions which allows remote attackers to bypass intended restrictions.

Reference

http://osvdb.org/98890 http://support.citrix.com/article/CTX138627