6 matches found
CVE-2012-4068
CVE-2012-4068 affects Citrix Provisioning Services’ SoapServer, where a heap-based buffer overflow is triggered by a crafted date/time string in multiple versions (5.0, 5.1, 5.6, 5.6 SP1, 6.0, 6.1). The underlying issue is improper input handling during parsing of date/time data, enabling a remot...
CVE-2016-9677
Citrix Provisioning Services (PVS) prior to version 7.12 is affected by CVE-2016-9677, an information-disclosure vulnerability that allows an unauthenticated remote actor to obtain sensitive kernel address information via unspecified vectors. The impact is limited to confidentiality (Partial). Th...
CVE-2016-9676
CVE-2016-9676 affects Citrix Provisioning Services prior to 7.12. The vulnerability is described as a buffer overflow in PVS that allows an unauthenticated, remote attacker to execute arbitrary code via unspecified vectors. The entry notes a network-exposed vector with low attack complexity and n...
CVE-2016-9679
CVE-2016-9679 affects Citrix Provisioning Services prior to 7.12. The vulnerability enables remote code execution by overwriting a function pointer, with impacts described as partial confidentiality/integrity/availability (NVD CVSS v2) and critical impact (CVSS‑3) when exploited over NETWORK with...
CVE-2016-9678
CVE-2016-9678 affects Citrix Provisioning Services before 7.12, via a use-after-free flaw that allows remote arbitrary-code execution through unspecified vectors. CVSS metrics: CVSSv2 base 7.5 (HIGH), CVSSv3 base 9.8 (CRITICAL). Affected: Citrix Provisioning Services prior to 7.12. Impact include...
CVE-2016-9680
CVE-2016-9680 affects Citrix Provisioning Services prior to 7.12, exposing kernel memory information via unspecified vectors. Documented impact is information disclosure. No explicit exploit details, vectors, or fix/version beyond “before 7.12” are provided in the supplied sources; remediation/ve...