CVE-2008-0356

Currently unrated

Key Information:

Vendor: Citrix
Status: Metaframe Presentation Server; Presentation Server; Desktop Server; Access Essentials
Vendor: CVE Published:; 18 January 2008

Summary

Buffer overflow in the Independent Management Architecture (IMA) service in Citrix Presentation Server (MetaFrame Presentation Server) 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 allows remote attackers to execute arbitrary code via an invalid size value in a packet to TCP port 2512 or 2513.

References

http://www.securityfocus.com/archive/1/486585/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://secunia.com/advisories/28508

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2008/0172

vdb-entryx_refsource_VUPEN

EPSS Score

80% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 18, 2008
Vulnerability Reserved
Jan 18, 2008

Collectors

NVD DatabaseMitre Database