748 matches found
CVE-2008-2300
CVE-2008-2300 affects Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0. The vulnerability allows remote authenticated users to access unauthorized desktops via unknown attack vectors. The connected documents do not provide concret...
CVE-2008-2299
The CVE-2008-2299 entry involves Citrix Presentation Server 4.5 and earlier (also affecting Access Essentials 2.0 and Desktop Server 1.0) where SecureICA and ICA Basic encryption can be configured but allow clients to end up using weaker encryption settings than intended, potentially bypassing ad...
CVE-2008-2300
Unspecified vulnerability in Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unknown attack vectors...
Cross site scripting
Opera before 9.26 allows remote attackers to "bypass sanitization filters" and conduct cross-site scripting XSS attacks via crafted attribute values in an XML document, which are not properly handled during DOM presentation...
CVE-2008-1082
Opera before 9.26 allows remote attackers to "bypass sanitization filters" and conduct cross-site scripting XSS attacks via crafted attribute values in an XML document, which are not properly handled during DOM presentation...
CVE-2008-1082
Opera before 9.26 is affected by CVE-2008-1082 due to a flaw in handling DOM attribute values of imported XML documents, which allows bypassing sanitization filters and enables cross-site scripting (XSS). This configures a remote attacker to exploit crafted attribute values in an XML document dur...
Citrix Presentation Server Client WFICA.OCX ActiveX Heap BOF Exploit
No description provided by source. !-- Citrix Presentation Server Client WFICA.OCX ActiveX Component Heap Buffer Overflow Exploit Vulnerability discovered by Andrew Christensen and Aaron Portnoy http://www.securityfocus.com/bid/21458 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6334...
citrix-overflow.txt
Citrix Presentation Server Client WFICA.OCX ActiveX Component Heap Buffer Overflow Exploit function Check // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u4949%u4949" +...
Citrix Presentation Server Client - WFICA.OCX ActiveX Heap Buffer Overflow
Citrix Presentation Server Client - WFICA.OCX ActiveX Heap Buffer Overflow Citrix Presentation Server Client WFICA.OCX ActiveX Component Heap Buffer Overflow Exploit function Check // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var...
Citrix Presentation Server Client WFICA.OCX ActiveX Heap BOF Exploit
Exploit for unknown platform in category remote exploits ==================================================================== Citrix Presentation Server Client WFICA.OCX ActiveX Heap BOF Exploit ==================================================================== Citrix Presentation Server Client...
Citrix Presentation Server Client - 'WFICA.OCX' ActiveX Heap Buffer Overflow
Citrix Presentation Server Client WFICA.OCX ActiveX Component Heap Buffer Overflow Exploit function Check // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u4949%u4949" +...
Citrix Presentation Server heap based buffer overflow
Overview A heap-based buffer overflow in Citrix Presentation Server may allow a remote attacker to execute arbitrary code on an vulnerable system in the context of the system user. Description Citrix Presentation Server is an application delivery system providing access to users accross a network...
Citrix Presentation Server buffer overflow
IMA serviceTCP/2512, TCP/2513 heap buffer overflow...
DSquare Exploit Pack: D2SEC_IMASRV
Name| d2secimasrv ---|--- CVE| CVE-2008-0356 Exploit Pack| D2ExploitPack Description| Citrix Metaframe Presentation Server 4.0 IMA Service Heap Overflow Notes|...
CVE-2008-0356
Buffer overflow in the Independent Management Architecture IMA service in Citrix Presentation Server MetaFrame Presentation Server 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 allows remote attackers to execute arbitrary code via an invalid size value in a packet to...
CVE-2008-0356
Buffer overflow in the Independent Management Architecture IMA service in Citrix Presentation Server MetaFrame Presentation Server 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 allows remote attackers to execute arbitrary code via an invalid size value in a packet to...
CVE-2008-0356
CVE-2008-0356 describes a heap-based buffer overflow in Citrix Presentation Server’s Independent Management Architecture (IMA) service (ImaSrv.exe). By sending crafted packets to the IMA ports 2512/2513, an unauthenticated remote attacker could overflow a heap buffer and execute arbitrary code wi...
Citrix Metaframe Presentation Server IMA Service Heap Overflow Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Citrix Presentation Server. Authentication is not required to exploit this vulnerability. The specific flaw resides in the Independent Management Architecture service, ImaSrv.exe, which listens by default...
CVE-2002-2426
Cross-site request forgery CSRF vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 through 2.0 allows remote attackers to execute arbitrary published applications, and possibly other programs, as authenticated users via the...
CVE-2002-2426
The CVE-2002-2426 entry describes a CSRF vulnerability in Citrix Presentation Server 4.0/4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0–2.0. The issue arises from the InitialProgram key in an ICA connection, allowing remote attackers to run published applications (and possibly ...