4 matches found
CVE-2008-0356
CVE-2008-0356 describes a heap-based buffer overflow in Citrix Presentation Server’s Independent Management Architecture (IMA) service (ImaSrv.exe). By sending crafted packets to the IMA ports 2512/2513, an unauthenticated remote attacker could overflow a heap buffer and execute arbitrary code wi...
CVE-2008-2299
The CVE-2008-2299 entry involves Citrix Presentation Server 4.5 and earlier (also affecting Access Essentials 2.0 and Desktop Server 1.0) where SecureICA and ICA Basic encryption can be configured but allow clients to end up using weaker encryption settings than intended, potentially bypassing ad...
CVE-2008-2300
CVE-2008-2300 affects Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0. The vulnerability allows remote authenticated users to access unauthorized desktops via unknown attack vectors. The connected documents do not provide concret...
CVE-2008-5107
CVE-2008-5107 affects Citrix Presentation Server 4.5 and Citrix Desktop Server 1.0. When MSI logging is enabled, the installation process stores database credentials in MSI log files, allowing local users to read them and obtain credentials. Root cause described as the logging process exposing se...