EUVD-2006-5805

Malware in sbrugna...

IMA Fails to Start with Error Code 2147483649

The IMA Service might sometimes fail with error code 2147483649. Failed to load plugins imapsss.dll, imaruntimess.dll, 80000001h...

On servers after installing the hotfix XA650R07W2K8R2X64017 the IMA service won't start.

On several servers after installing the hotfix XA650R07W2K8R2X64017 the IMA service won't start anymore although no error was returned during Hotfix installation. In the IMA Runtime registry, the Currently Loading Plugin will have MfSrvss.dll. Moreover, when checking the Certificate settings for...

Hyper-V Synthetic Network Interface Card Reinitializes on New Target Devices

Hyper-V synthetic Network Interface Card NIC reinitializes on new Provisioning Services target.During the synthetic NIC reinitialize at boot, it delays any software to use the interface.Windows redetects the NIC as a new device and increments the name of the device, for example, “Local Area...

Citrix Systems Multiple Products IMA Service Buffer Overflow (CVE-2008-0356)

The Citrix MetaFrame products are remote access and application publishing products built on Citrix' Independent Computing Architecture ICA. The products allow for access and control of the remote hosts as well as deploying applications. There exists a buffer overflow vulnerability in Independent...

Citrix Presentation Server IMA Invalid Event Data Length Denial of Service (CVE-2006-5861)

The Citrix MetaFrame products are remote access and application publishing products built on Citrix' Independent Computing Architecture ICA. The products allow for access and control of the remote hosts as well as deploying applications. There exists a memory access violation vulnerability in...

Citrix Presentation Server buffer overflow

IMA serviceTCP/2512, TCP/2513 heap buffer overflow...

ZDI-08-002: Citrix Presentation Server IMA Service Heap Overflow Vulnerability

ZDI-08-002: Citrix Presentation Server IMA Service Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-002.html January 17, 2008 -- Affected Vendor: Citrix -- Affected Products: Metaframe Presentation Server 3.0 Presentation Server 4.0, 4.5 Access Essentials 1.0, 1.5, 2...

Buffer overflow

Buffer overflow in the Independent Management Architecture IMA service in Citrix Presentation Server MetaFrame Presentation Server 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 allows remote attackers to execute arbitrary code via an invalid size value in a packet to...

CVE-2008-0356

CVE-2008-0356 describes a heap-based buffer overflow in Citrix Presentation Server’s Independent Management Architecture (IMA) service (ImaSrv.exe). By sending crafted packets to the IMA ports 2512/2513, an unauthenticated remote attacker could overflow a heap buffer and execute arbitrary code wi...

Citrix Metaframe Presentation Server IMA Service Heap Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Citrix Presentation Server. Authentication is not required to exploit this vulnerability. The specific flaw resides in the Independent Management Architecture service, ImaSrv.exe, which listens by default...

iDefense Security Advisory 11.09.06: Citrix Presentation Server 4.0 IMA Service Invalid Name Length DoS Vulnerability

Citrix Presentation Server 4.0 IMA Service Invalid Name Length DoS Vulnerability iDefense Security Advisory 11.08.06 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 08, 2006 I. BACKGROUND Citrix Presentation Server is a product designed to allow remote access to applications over a...

Citrix Metaframe multiple security vulnerabilities

DoS and buffer overflow in IMA service TCP/2512, TCP/2513...

CVE-2006-5821

Heap-based buffer overflow in the IMASECUREDecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests to the Independent Management Architecture IMA service ImaSrv.exe with invalid...

CVE-2006-5861

The Independent Management Architecture IMA service ImaSrv.exe in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service service exit via a crafted packet that causes the service to access an unmapped memory address and triggers ...

CVE-2006-5861

The Independent Management Architecture IMA service ImaSrv.exe in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service service exit via a crafted packet that causes the service to access an unmapped memory address and triggers ...

CVE-2006-5861

CVE-2006-5861 affects Citrix MetaFrame XP (1.0/2.0) and Presentation Server (3.0/4.0). The Independent Management Architecture (IMA) service (ImaSrv.exe) is vulnerable to a memory access violation triggered by a crafted packet, causing an unhandled exception and remote denial of service via servi...

CVE-2006-5821

CVE-2006-5821 affects Citrix MetaFrame XP 1.0/2.0 and Presentation Server 3.0/4.0. The flaw is a heap-based overflow in ImaSystem.dll’s IMA_SECURE_DecryptData1 during decryption of authentication data via the IMA service (ImaSrv.exe). An attacker can supply invalid size values through the IMA por...

Citrix MetaFrame IMA Management Module Remote Heap Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Citrix MetaFrame Presentation Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the routine IMASECUREDecryptData1 defined in ImaSystem.dll and is...