Metaframe Presentation Server Security Vulnerabilities and Issues — Metaframe Presentation Server CVE List

Lucene search

CitrixMetaframe Presentation Server

9 matches found

CVE•added 2008/01/18 10:0 p.m.•73 views

CVE-2008-0356

Buffer overflow in the Independent Management Architecture (IMA) service in Citrix Presentation Server (MetaFrame Presentation Server) 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 allows remote attackers to execute arbitrary code via an invalid size value in a packet t...

10CVSS7.8AI score0.73333EPSS

CVE•added 2007/01/24 10:28 p.m.•49 views

CVE-2007-0444

Stack-based buffer overflow in the print provider library (cpprov.dll) in Citrix Presentation Server 4.0, MetaFrame Presentation Server 3.0, and MetaFrame XP 1.0 allows local users and remote attackers to execute arbitrary code via long arguments to the (1) EnumPrintersW and (2) OpenPrinter functio...

7.2CVSS7.7AI score0.01996EPSS

CVE•added 2007/07/09 4:30 p.m.•45 views

CVE-2007-3625

The Program Neighborhood Agent in Citrix Presentation Server Clients for 32-bit Windows before 10.100 allows remote attackers to cause a denial of service (agent exit) via a certain request that uses content redirection and a long pathname.

5CVSS6.6AI score0.01775EPSS

CVE•added 2008/05/18 2:20 p.m.•43 views

CVE-2008-2300

Unspecified vulnerability in Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unknown attack vectors.

6.5CVSS6.2AI score0.01075EPSS

CVE•added 2006/11/10 11:7 p.m.•40 views

CVE-2006-5821

Heap-based buffer overflow in the IMA_SECURE_DecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests to the Independent Management Architecture (IMA) service (ImaSrv.exe) with inv...

7.5CVSS8.2AI score0.09429EPSS

CVE•added 2007/11/20 12:0 a.m.•36 views

CVE-2002-2426

Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 through 2.0 allows remote attackers to execute arbitrary published applications, and possibly other programs, as authenticated users via the Initia...

4.3CVSS7.9AI score0.00312EPSS

CVE•added 2008/08/06 5:41 p.m.•36 views

CVE-2008-3485

Untrusted search path vulnerability in Citrix MetaFrame Presentation Server allows local users to gain privileges via a malicious icabar.exe placed in the search path.

7.2CVSS6.3AI score0.00074EPSS

CVE•added 2006/07/24 12:19 p.m.•35 views

CVE-2006-3779

Citrix MetaFrame up to XP 1.0 Feature 1, except when running on Windows Server 2003, installs a registry key with an insecure ACL, which allows remote authenticated users to gain privileges.

6.5CVSS6.8AI score0.00907EPSS

CVE•added 2006/11/10 11:7 p.m.•35 views

CVE-2006-5861

The Independent Management Architecture (IMA) service (ImaSrv.exe) in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service (service exit) via a crafted packet that causes the service to access an unmapped memory address and trigg...

5CVSS6.5AI score0.06861EPSS