[email protected]CVE-2012-4068

HistoryJul 26, 2012 - 7:55 p.m.

CVE-2012-4068

2012-07-2619:55:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2012-4068

citrix provisioning services

soapserver

buffer overflow

security vulnerability

nvd

remote code execution

8.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.173 Low

EPSS

Percentile

96.1%

JSON

Heap-based buffer overflow in the SoapServer service in Citrix Provisioning Services 5.0, 5.1, 5.6, 5.6 SP1, 6.0, and 6.1 allows remote attackers to execute arbitrary code via a crafted string associated with date and time data.

CPENameOperatorVersion
citrix:provisioning_servicescitrix provisioning serviceseq6.0
citrix:provisioning_servicescitrix provisioning serviceseq6.1
citrix:provisioning_servicescitrix provisioning serviceseq5.0
citrix:provisioning_servicescitrix provisioning serviceseq5.6
citrix:provisioning_servicescitrix provisioning serviceseq5.1

CPE	Name	Operator	Version
citrix:provisioning_services	citrix provisioning services	eq	6.0
citrix:provisioning_services	citrix provisioning services	eq	6.1
citrix:provisioning_services	citrix provisioning services	eq	5.0
citrix:provisioning_services	citrix provisioning services	eq	5.6
citrix:provisioning_services	citrix provisioning services	eq	5.1

References

osvdb.org/81664

support.citrix.com/article/ctx133039

www.securitytracker.com/id?1027004

www.verisigninc.com/en_US/products-and-services/network-intelligence-availability/idefense/public-vulnerability-reports/articles/index.xhtml?id=979

exchange.xforce.ibmcloud.com/vulnerabilities/75311

Social References

8.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.173 Low

EPSS

Percentile

96.1%

JSON

Related for CVE-2012-4068

openvas2 prion1 nessus2 cvelist1