← CVECheck
HomeVulnerabilities

CVE-2001-0908 — HIGH severity vulnerability (CITRIX Metaframe 1.8 logs the Client Address (IP address) th)

CITRIX Metaframe 1.8 logs the Client Address (IP address) that is provided by the client instead of obtaining it from the packet headers, which allows clients to spoof their public IP address, e.g. through Network Address Translation (NAT).

CVE IDCVE-2001-0908
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2001-11-21
Last modified2026-04-16
DescriptionCITRIX Metaframe 1.8 logs the Client Address (IP address) that is provided by the client instead of obtaining it from the packet headers, which allows clients to spoof their public IP address, e.g. through Network Address Translation (NAT).
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →