RSS   Vulnerabilities for 'Presentation server'   RSS

2009-07-14
 
CVE-2009-2453

CWE-264
 

 
Citrix XenApp (formerly Presentation Server) 4.5 Hotfix Rollup Pack 3 does not apply an access policy when it is defined with the Access Gateway Advanced Edition filters, which allows attackers to bypass intended access restrictions via unknown vectors.

 
2008-11-17
 
CVE-2008-5107

CWE-200
 

 
The installation process for Citrix Presentation Server 4.5 and Desktop Server 1.0, when MSI logging is enabled, stores database credentials in MSI log files, which allows local users to obtain these credentials by reading the log files.

 
2008-10-22
 
CVE-2008-4676

CWE-noinfo
 

 
Unspecified vulnerability in Citrix XenApp (formerly Presentation Server) 4.5 Feature Pack 1 and earlier, Presentation Server 4.0, and Access Essentials 1.0, 1.5, and 2.0 allows local users to gain privileges via unknown attack vectors related to creating an unspecified file. NOTE: this might be the same issue as CVE-2008-3485, but the vendor advisory is too vague to be certain.

 
2008-05-18
 
CVE-2008-2299

CWE-310
 

 
Unspecified vulnerability in SecureICA and ICA Basic encryption of Citrix Presentation Server 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 can cause clients to use weaker encryption settings than configured by the administrator, which might allow attackers to bypass intended restrictions.

 
2008-01-18
 
CVE-2008-0356

CWE-119
 

 
Buffer overflow in the Independent Management Architecture (IMA) service in Citrix Presentation Server (MetaFrame Presentation Server) 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 allows remote attackers to execute arbitrary code via an invalid size value in a packet to TCP port 2512 or 2513.

 
2006-07-24
 
CVE-2006-3779

 

 
Citrix MetaFrame up to XP 1.0 Feature 1, except when running on Windows Server 2003, installs a registry key with an insecure ACL, which allows remote authenticated users to gain privileges.

 
2002-12-31
 
CVE-2002-2426

 

 
Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 through 2.0 allows remote attackers to execute arbitrary published applications, and possibly other programs, as authenticated users via the InitialProgram key in an ICA connection. NOTE: some of these details are obtained from third party information.

 

 >>> Vendor: Citrix 94 Products
Metaframe
Winframe
Nfuse
Ica client
Access essentials
Metaframe presentation server
Presentation server
Metaframe client
Program neighborhood agent
Metaframe password manager
Ica program neighborhood client
Metaframe secure access manager
Program neighborhood client
Access gateway
Presentation server client
Web interface
XEN
Endpoint analysis client
Netscaler
Edgesight for endpoints
Edgesight for netscaler
Edgesight for presentation server
Desktop server
Citrix presentation server
Xenserver
XP
Xenapp
Deterministic network enhancer
Broadcast server
Netscaler access gateway firmware
Secure gateway
Gateway
Licensing
Xencenterweb
Online plug-in for mac
Online plug-in for windows
Receiver for iphone
Secure mail
Ica client for linux
Ica client for solaris
Online plug-in for mac for xenapp & xendesktop
Online plug-in for windows for xenapp & xendesktop
Receiver for windows mobile
Licensing administration console
Provisioning services
Cloudstack
Xendesktop
Netscaler access gateway
Xenclient xt
Cloudportal services manager
Netscaler application delivery controller
Netscaler application delivery controller firmware
Gotomeeting
Xenmobile device manager
Xenmobile device manager mdm
Sharefile mobile
Sharefile mobile for tablets
Vdi-in-a-box
Cloudplatform
Access gateway plug-in
Xenmobile
Netscaler gateway firmware
Command center
Netscaler service delivery appliance service vm
Xenmobile server
Netscaler gateway 11.0 firmware
Ios receiver
Worx home
Xenmobile mdx toolkit
Linux virtual delivery agent
License server
License server vpx
Receiver desktop
Netscaler sd-wan
Netscaler gateway
Application delivery controller firmware
Sd-wan
Sharefile
Receiver
Appdna
Gateway firmware
Citrix sd-wan center
Netscaler sd-wan center
Sharefile storagezones controller
Workspace app
Gateway plug-in for linux
Workspace
Gateway plug-in
Virtual apps and desktops
Cloud connector
Sd-wan wanop
Application delivery management
Federated authentication service
Storefront server


Copyright 2024, cxsecurity.com

 

Back to Top