Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1078

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-1078
Last Modified 05 Sep 2008 04:40:18
Published 26 Apr 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1078

Summary

Stack-based buffer overflow in the client for Citrix Program Neighborhood Agent for Win32 8.00.24737 and earlier and Citrix MetaFrame Presentation Server client for WinCE before 8.33 allows remote attackers to execute arbitrary code via a long cached icon filename in the InName XML element.

Vulnerable Systems

Application

  • Citrix Metaframe Client 8.0

  • Citrix Program Neighborhood Agent 8.0


References

IDEFENSE - 20050426 Citrix Program Neighborhood Agent Buffer Overflow

CONFIRM - http://support.citrix.com/kb/entry.jspa?externalID=CTX105650

SECUNIA - 15108


Last Updated: 27 May 2016 10:38:53