Buffer Overflow Vulnerability in Citrix Presentation Server by Citrix
CVE-2008-0356

Currently unrated

Key Information:

Vendor: Citrix
Status: Metaframe Presentation Server; Presentation Server; Desktop Server; Access Essentials
Vendor: CVE Published:; 18 January 2008

Summary

A buffer overflow vulnerability exists in the Independent Management Architecture (IMA) service of Citrix Presentation Server, which can be exploited by remote attackers. By sending a specially crafted TCP packet to ports 2512 or 2513 with an improper size value, an attacker can potentially execute arbitrary code on affected systems. This vulnerability poses a significant risk as it can compromise server integrity and lead to unauthorized control over the server's operations.

References

http://www.securityfocus.com/archive/1/486585/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://secunia.com/advisories/28508

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2008/0172

vdb-entryx_refsource_VUPEN

EPSS Score

61% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 18, 2008
Vulnerability Reserved
Jan 18, 2008