PT-2007-1912 · Citrix · Citrix Metaframe+2
Published
2007-01-24
·
Updated
2018-10-16
·
CVE-2007-0444
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Citrix Presentation Server version 4.0
Citrix MetaFrame Presentation Server version 3.0
Citrix MetaFrame XP version 1.0
Description
The issue is related to a stack-based buffer overflow in the print provider library. This can be exploited by local users and remote attackers to execute arbitrary code. The exploitation is possible via long arguments to the
EnumPrintersW and OpenPrinter functions.Recommendations
For Citrix Presentation Server version 4.0, update to a version that includes a fix for the buffer overflow issue in the print provider library.
For Citrix MetaFrame Presentation Server version 3.0, update to a version that includes a fix for the buffer overflow issue in the print provider library.
For Citrix MetaFrame XP version 1.0, update to a version that includes a fix for the buffer overflow issue in the print provider library.
Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Citrix Metaframe Presentation Server
Citrix Metaframe
Citrix Presentation Server