Citrix Metaframe XP Cross-site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8939/info Citrix Metaframe XP is prone to cross-site scripting attacks when returning error messages to users. The error message is generated when invalid authentication credentials are transmitted to the log-in page...

CVE-2006-5821

Heap-based buffer overflow in the IMASECUREDecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests to the Independent Management Architecture IMA service ImaSrv.exe with invalid...

CVE-2006-5821

Heap-based buffer overflow in the IMASECUREDecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests to the Independent Management Architecture IMA service ImaSrv.exe with invalid...

CVE-2006-5821

CVE-2006-5821 affects Citrix MetaFrame XP 1.0/2.0 and Presentation Server 3.0/4.0. The flaw is a heap-based overflow in ImaSystem.dll’s IMA_SECURE_DecryptData1 during decryption of authentication data via the IMA service (ImaSrv.exe). An attacker can supply invalid size values through the IMA por...

CVE-2003-1157

CVE-2003-1157 describes a cross-site scripting (XSS) vulnerability in the Citrix MetaFrame XP Server 1.0 Web Interface component, affecting the login.asp handling of the NFuse_Message parameter. Attackers can inject arbitrary web script or HTML via this parameter, potentially impacting users' bro...

Citrix Metaframe XP buffer overflow

No description provided...

[SA13618] Citrix Metaframe XP Unspecified Buffer Overflow Vulnerability

TITLE: Citrix Metaframe XP Unspecified Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA13618 VERIFY ADVISORY: http://secunia.com/advisories/13618/ CRITICAL: Moderately critical IMPACT: System access WHERE: From local network SOFTWARE: Citrix MetaFrame XP for Windows...

Citrix MetaFrame XP login.asp NFuse_Message Parameter XSS

The remote server is running a Citrix Web Interface server that is vulnerable to cross-site scripting. When a user fails to authenticate, the Citrix Web Interface includes the error message text in the URL. The error message can be tampered with to perform a cross-site scripting attack...

CVE-2003-1157

Cross-site scripting XSS vulnerability in login.asp in Citrix MetaFrame XP Server 1.0 allows remote attackers to inject arbitrary web script or HTML via the NFuseMessage parameter...

IRM 008: Citrix Metaframe XP is vulnerable to Cross Site Scripting

---------------------------------------------------------------------------- IRM Security Advisory No. 008 Citrix Metaframe XP is vulnerable to Cross Site Scripting Vulnerablity Type / Importance: XSS / Medium Problem discovered: August 18th 2003 Vendor contacted: August 18th 2003 Advisory...

Citrix Metaframe XP - Cross-Site Scripting

Citrix Metaframe XP - Cross-Site Scripting source: https://www.securityfocus.com/bid/8939/info Citrix Metaframe XP is prone to cross-site scripting attacks when returning error messages to users. The error message is generated when invalid authentication credentials are transmitted to the log-in...

Citrix Metaframe XP - Cross-Site Scripting

source: https://www.securityfocus.com/bid/8939/info Citrix Metaframe XP is prone to cross-site scripting attacks when returning error messages to users. The error message is generated when invalid authentication credentials are transmitted to the log-in page. Exploitation of this issue could...