Vulners
Lucene search
Citrix EdgeSight Load Tester Buffer Overflow
| Source | Link |
|---|---|
| citrix | www.citrix.com/ |
| support | www.support.citrix.com/article/CTX129699 |
| zerodayinitiative | www.zerodayinitiative.com/advisories/ZDI-11-226/ |
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(55927);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/06/03");
script_bugtraq_id(48385);
script_xref(name:"IAVB", value:"2011-B-0084-S");
script_name(english:"Citrix EdgeSight Load Tester Buffer Overflow");
script_summary(english:"Checks Citrix EdgeSight version");
script_set_attribute(
attribute:"synopsis",
value:
"It is possible to execute code on the remote server using a stack
overflow vulnerability in Citrix EdgeSight Load Tester."
);
script_set_attribute(
attribute:"description",
value:
"A stack overflow vulnerability exists in the Citrix EdgeSight Load
Tester software installed on the remote host.
By sending a specially crafted message to the server, a remote
attacker can leverage this vulnerability to execute arbitrary code on
the server as the SYSTEM account.
Versions prior to 3.8.1 are affected."
);
script_set_attribute(
attribute:"solution",
value:"Citrix has released version 3.8.1, which resolves the issue."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_set_attribute(attribute:"vuln_publication_date", value:"2011/06/27");
script_set_attribute(attribute:"patch_publication_date", value:"2011/06/27");
script_set_attribute(attribute:"plugin_publication_date", value:"2011/08/22");
script_set_attribute(attribute:"see_also", value:"https://www.citrix.com/");
script_set_attribute(attribute:"see_also", value:"https://support.citrix.com/article/CTX129699");
script_set_attribute(attribute:"see_also", value:"https://www.zerodayinitiative.com/advisories/ZDI-11-226/");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_dependencies('citrix_eslt_detect.nbin');
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2011-2021 Tenable Network Security, Inc.");
script_require_keys('Services/CitrixESLT');
exit(0);
}
include("global_settings.inc");
include("misc_func.inc");
# Figure out which port(s) to use
port = get_service(svc:'CitrixESLT', default:18747, exit_on_fail:TRUE);
# Get the version
version = get_kb_item_or_exit("Citrix/ESLT/"+port+"/Version");
if (ver_compare(ver:version, fix:"3.8.1", strict:FALSE) == -1)
security_hole(port:port);
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
03 Jun 2021 00:00Current
6.2Medium risk
Vulners AI Score6.2