CVE-2012-4603

7.8HIGH

Key Information

Vendor: Citrix
Status: Receiver; Xenapp Online
Vendor: CVE Published:; 10 January 2020

Summary

Citrix XenApp Online Plug-in for Windows 12.1 and earlier, and Citrix Receiver for Windows 3.2 and earlier could allow remote attackers to execute arbitrary code by convincing a target to open a specially crafted file from an SMB or WebDAV fileserver.

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published.
Jan 10, 2020
Vulnerability Reserved.
Aug 22, 2012

Collectors

NVD DatabaseMitre Database