Citrix Provisioning Services dynamically provisions virtual servers to simplify and streamline server management, while reducing software rollout risk.
Citrix Provisioning Services 5.6 SP1 and prior are vulnerable to a remotely exploitable integer underflow that can lead to a stack overflow. A remote attacker may exploit this vulnerability to execute arbitrary code on the target machine in the context of the server, which is SYSTEM.
Apply patches as described in Citrix Knowledge Base Document CTX130846.
This exploit has been tested against Citrix Systems Provisioning Services 5.6 SP1 on Windows Server 2003 SP2 English (DEP OptOut).