15 matches found
Citrix Metaframe XP Cross-site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8939/info Citrix Metaframe XP is prone to cross-site scripting attacks when returning error messages to users. The error message is generated when invalid authentication credentials are transmitted to the log-in page...
Citrix Presentation/MetaFrame Server cpprov.dll畸形参数栈缓冲区溢出漏洞
Citrix Presentation Server允许用户通过网络远程访问应用程序。 Citrix Presentation Server的打印提供程序(ccprov.dll)在处理传送给EnumPrintersW和OpenPrinter函数的参数时存在栈溢出漏洞,远程攻击者可能利用此漏洞在服务器上执行任意指令。 如果攻击者能够通过本地API调用或RPC请求向OpenPrinter传送超过130字节的超长字符串做为其第一个参数的话,就可以触发这个溢出,导致在本地系统环境中执行任意代码。 Citrix MetaFrame XP 1.0 Citrix Presentation Server...
ZDI-07-006: Citrix Metaframe Presentation Server Print Provider Buffer Overflow Vulnerability
ZDI-07-006: Citrix Metaframe Presentation Server Print Provider Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-006.html January 24, 2007 -- CVE ID: CVE-2007-0444 -- Affected Vendor: Citrix -- Affected Products: Citrix Presentation Server 4.0 Citrix MetaFrame...
Immunity Canvas: CITRIX_PP
Name| citrixpp ---|--- CVE| CVE-2007-0444 Exploit Pack| CANVAS Description| Citrix MetaFrame XP Print Provider Overflow Notes| CVE Name: CVE-2007-0444 VENDOR: Citrix Notes: Platforms Tested: References: http://www.zerodayinitiative.com/advisories/ZDI-07-006.html CVE Url:...
CVE-2006-5821
Heap-based buffer overflow in the IMASECUREDecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests to the Independent Management Architecture IMA service ImaSrv.exe with invalid...
CVE-2006-5821
CVE-2006-5821 affects Citrix MetaFrame XP 1.0/2.0 and Presentation Server 3.0/4.0. The flaw is a heap-based overflow in ImaSystem.dll’s IMA_SECURE_DecryptData1 during decryption of authentication data via the IMA service (ImaSrv.exe). An attacker can supply invalid size values through the IMA por...
CVE-2006-5821
Heap-based buffer overflow in the IMASECUREDecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests to the Independent Management Architecture IMA service ImaSrv.exe with invalid...
CVE-2003-1157
CVE-2003-1157 describes a cross-site scripting (XSS) vulnerability in the Citrix MetaFrame XP Server 1.0 Web Interface component, affecting the login.asp handling of the NFuse_Message parameter. Attackers can inject arbitrary web script or HTML via this parameter, potentially impacting users' bro...
Citrix Metaframe XP buffer overflow
No description provided...
[SA13618] Citrix Metaframe XP Unspecified Buffer Overflow Vulnerability
TITLE: Citrix Metaframe XP Unspecified Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA13618 VERIFY ADVISORY: http://secunia.com/advisories/13618/ CRITICAL: Moderately critical IMPACT: System access WHERE: From local network SOFTWARE: Citrix MetaFrame XP for Windows...
Citrix MetaFrame XP login.asp NFuse_Message Parameter XSS
The remote server is running a Citrix Web Interface server that is vulnerable to cross-site scripting. When a user fails to authenticate, the Citrix Web Interface includes the error message text in the URL. The error message can be tampered with to perform a cross-site scripting attack...
CVE-2003-1157
Cross-site scripting XSS vulnerability in login.asp in Citrix MetaFrame XP Server 1.0 allows remote attackers to inject arbitrary web script or HTML via the NFuseMessage parameter...
IRM 008: Citrix Metaframe XP is vulnerable to Cross Site Scripting
---------------------------------------------------------------------------- IRM Security Advisory No. 008 Citrix Metaframe XP is vulnerable to Cross Site Scripting Vulnerablity Type / Importance: XSS / Medium Problem discovered: August 18th 2003 Vendor contacted: August 18th 2003 Advisory...
Citrix Metaframe XP - Cross-Site Scripting
Citrix Metaframe XP - Cross-Site Scripting source: https://www.securityfocus.com/bid/8939/info Citrix Metaframe XP is prone to cross-site scripting attacks when returning error messages to users. The error message is generated when invalid authentication credentials are transmitted to the log-in...
Citrix Metaframe XP - Cross-Site Scripting
source: https://www.securityfocus.com/bid/8939/info Citrix Metaframe XP is prone to cross-site scripting attacks when returning error messages to users. The error message is generated when invalid authentication credentials are transmitted to the log-in page. Exploitation of this issue could...