Heap-based Buffer Overflow in Citrix Presentation Server Client
CVE-2006-6334

Currently unrated

Key Information:

Vendor
Citrix
Vendor
CVE Published:
8 December 2006

Summary

The heap-based buffer overflow vulnerability in the SendChannelData function of the Citrix Presentation Server Client allows attackers to exploit a flaw in the DataSize parameter. By submitting a value less than the actual length of the Data buffer, malicious remote websites can trigger an overflow condition, potentially leading to the execution of arbitrary code on the user's system. This vulnerability poses a significant risk, especially in environments relying on Citrix technologies for remote access.

References

EPSS Score

14% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.