Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-2593
HistoryAug 12, 2014 - 8:55 p.m.

CVE-2011-2593

2014-08-1220:55:00
CWE-189
[email protected]
web.nvd.nist.gov
23
cve-2011-2593
integer overflow
nsepacom
activex control
citrix access gateway enterprise
remote code execution
buffer overflow
nvd

8.2 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.055 Low

EPSS

Percentile

93.2%

JSON

Integer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise Edition Plug-in for Windows 9.x before 9.3-57.5 and 10.0 before 10.0-69.4 allows remote attackers to execute arbitrary code via a crafted Content-Length HTTP header, which triggers a heap-based buffer overflow.

Related

prion 1
cvelist 1
securityvulns 2
nessus 1
prion
prion
Integer overflow
2014-08-12 20:55:00
cvelist
cvelist
CVE-2011-2593
2014-08-12 20:00:00
securityvulns
securityvulns
Secunia Research: Citrix Access Gateway Plug-in for Windows nsepacom ActiveX Control Integer Overflow
2012-09-03 00:00:00
Citrix Access Gateway plugin security vulnerabilities
2012-09-03 00:00:00
nessus
nessus
Citrix Access Gateway Plug-in for Windows ActiveX Control StartEPA() Method HTTP Response Header Parsing Overflows (CTX134303)
2012-10-31 00:00:00

8.2 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.055 Low

EPSS

Percentile

93.2%

JSON
Related for CVE-2011-2593
prion1cvelist1securityvulns2nessus1