Vulnerability CVE-2010-2990
Published: 2010-08-11   Modified: 2012-02-13

Description:
Citrix Online Plug-in for Windows for XenApp & XenDesktop before 11.2, Citrix Online Plug-in for Mac for XenApp & XenDesktop before 11.0, Citrix ICA Client for Linux before 11.100, Citrix ICA Client for Solaris before 8.63, and Citrix Receiver for Windows Mobile before 11.5 allow remote attackers to execute arbitrary code via (1) a crafted HTML document, (2) a crafted .ICA file, or (3) a crafted type field in an ICA graphics packet, related to a "heap offset overflow" issue.

See advisories in our WLB2 database:
Topic
Author
Date
High
Heap Offset Overflow in Citrix ICA Clients
Context IS - Dis...
12.08.2010

Type:

CWE-119

 (Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS2 => (AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9.3/10
10/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Citrix -> Ica client for linux 
Citrix -> Ica client for solaris 
Citrix -> Online plug-in for mac for xenapp & xendesktop 
Citrix -> Online plug-in for windows for xenapp & xendesktop 
Citrix -> Receiver for windows mobile 

 References:
http://archives.neohapsis.com/archives/fulldisclosure/2010-08/0040.html
http://support.citrix.com/article/CTX125975
http://www.securityfocus.com/archive/1/512861/100/0/threaded
Copyright 2024, cxsecurity.com

 

Back to Top