103 matches found
Citrix Presentation Server远程未授权代码执行漏洞
Citrix Presentation Server是一款集中部署应用和提供按需接入的解决方案。 Citrix Presentation Server存在一个设计问题,远程攻击者可以利用漏洞以授权用户上下文执行任意未授权代码。 如果授权用户被诱使调用ICA连接到Citrix Presentation Server,它可能被攻击者利用并以授权用户上下文执行未授权代码。 ICA连接可通过起用.ica文件或使用ICA客户端插件来调用,因此攻击者构建恶意的.ICA文件,诱使用户打开,可导致任意代码未授权执行。 测试方法 Citrix Presentation Server 4.0 Citrix...
Citrix Presentation Server客户端内容重新定向拒绝服务漏洞
BUGTRAQ ID: 24790 Citrix Presentation Server允许用户通过网络远程访问应用程序。 Citrix Presentation Server客户端的程序邻居代理(Program Neighborhood Agent)中存在错误,如果用户使用内容重新定向试图访问客户端网络中有大于200字符超长路径的文件的话,就可能导致代理崩溃。 Citrix Presentation Server Client 10.0 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.citrix.com...
Citrix Presentation Server Clients Program Neighborhood Agent (PNAgent) Content Redirection Remote DoS
Citrix Presentation Server Client is installed on the remote host. It is used to access published resources such as applications stored on servers running Citrix Presentation Server. The Program Neighborhood Agent component of the version of Citrix Presentation Server Client on the remote host ma...
CVE-2007-3625
The Program Neighborhood Agent in Citrix Presentation Server Clients for 32-bit Windows before 10.100 allows remote attackers to cause a denial of service agent exit via a certain request that uses content redirection and a long pathname...
Design/Logic Flaw
The Program Neighborhood Agent in Citrix Presentation Server Clients for 32-bit Windows before 10.100 allows remote attackers to cause a denial of service agent exit via a certain request that uses content redirection and a long pathname...
CVE-2007-3625
The Program Neighborhood Agent in Citrix Presentation Server Clients for 32-bit Windows before 10.100 allows remote attackers to cause a denial of service agent exit via a certain request that uses content redirection and a long pathname...
CVE-2007-3625
The vulnerability CVE-2007-3625 concerns the Program Neighborhood Agent (PNAgent) component of Citrix Presentation Server Client on 32-bit Windows. A crafted content-redirection request with a long pathname can cause the PNAgent to exit, resulting in a denial-of-service condition. Affected are Ci...
CVE-2007-2850
The CVE-2007-2850 vulnerability affects Citrix Session Reliability Service (XTE) in MetaFrame Presentation Server 3.0, Presentation Server 4.0, and Access Essentials 1.0/1.5. The issue allows remote attackers to bypass network security policies and connect to arbitrary TCP ports by sending a modi...
Citrix Presentation Server client code execution
Code exectuion if proxy server is used...
CVE-2007-1196
Unspecified vulnerability in Citrix Presentation Server Client for Windows before 10.0 allows remote web sites to execute arbitrary code via unspecified vectors, related to the implementation of ICA connectivity through proxy servers...
Code injection
Unspecified vulnerability in Citrix Presentation Server Client for Windows before 10.0 allows remote web sites to execute arbitrary code via unspecified vectors, related to the implementation of ICA connectivity through proxy servers...
CVE-2007-1196
Unspecified vulnerability in Citrix Presentation Server Client for Windows before 10.0 allows remote web sites to execute arbitrary code via unspecified vectors, related to the implementation of ICA connectivity through proxy servers...
CVE-2007-1196
Unspecified vulnerability in Citrix Presentation Server Client for Windows before 10.0 allows remote web sites to execute arbitrary code via unspecified vectors, related to the implementation of ICA connectivity through proxy servers...
CVE-2007-1196
CVE-2007-1196 affects the Citrix Presentation Server Client for Windows prior to 10.0. The vulnerability is related to ICA connectivity through proxy servers and allows remote sites to execute arbitrary code. Impact is implied as full compromise of confidentiality, integrity, and availability. Af...
Citrix Presentation Server Client vulnerable to arbitrary code execution
Overview A vulnerability in the Citrix Presentation Server Client could allow a remote attacker to execute arbitrary code on a vulnerable system. Description Independent Computing Architecture ICA is an application server protocol used by Citrix products. The Citrix Presentation Server Client for...
Citrix Presentation Server Client Unspecified Remote Code Execution
Citrix Presentation Server Client is installed on the remote host. It is used to access published resources such as applications stored on servers running Citrix Presentation Server. The version of Citrix Presentation Server Client on the remote host is reportedly affected by an unspecified remot...
Citrix Presentation/MetaFrame Server cpprov.dll畸形参数栈缓冲区溢出漏洞
Citrix Presentation Server允许用户通过网络远程访问应用程序。 Citrix Presentation Server的打印提供程序(ccprov.dll)在处理传送给EnumPrintersW和OpenPrinter函数的参数时存在栈溢出漏洞,远程攻击者可能利用此漏洞在服务器上执行任意指令。 如果攻击者能够通过本地API调用或RPC请求向OpenPrinter传送超过130字节的超长字符串做为其第一个参数的话,就可以触发这个溢出,导致在本地系统环境中执行任意代码。 Citrix MetaFrame XP 1.0 Citrix Presentation Server...
Citrix Metaframe Presentation Server Print Provider - Buffer Overflow (PoC)
Citrix Metaframe Presentation Server Print Provider - Buffer Overflow PoC / Proof of concept exploit for ZDI - Citrix Metaframe spooler service vulnerability Microsoft Windows - EnumPrinter & EnumPrinterW Fuzzer v0.1 Author: Andres Tarasco Acuña - [email protected] url: http://www.514.es This is an...
Citrix Metaframe Presentation Server Print Provider Buffer Overflow PoC
Exploit for unknown platform in category dos / poc ======================================================================= Citrix Metaframe Presentation Server Print Provider Buffer Overflow PoC ======================================================================= / Proof of concept exploit for...
ZDI-07-006: Citrix Metaframe Presentation Server Print Provider Buffer Overflow Vulnerability
ZDI-07-006: Citrix Metaframe Presentation Server Print Provider Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-006.html January 24, 2007 -- CVE ID: CVE-2007-0444 -- Affected Vendor: Citrix -- Affected Products: Citrix Presentation Server 4.0 Citrix MetaFrame...