Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix metaframe vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2001-0908
CITRIX Metaframe 1.8 logs the Client Address (IP address) that is provided by the client instead of obtaining it from the packet headers, which allows clients to spoof their public IP address, e.g. through Network Address Translation (NAT).
Citrix Metaframe 1.8
4.3
CVSSv2
CVE-2003-1157
Cross-site scripting (XSS) vulnerability in login.asp in Citrix MetaFrame XP Server 1.0 allows remote malicious users to inject arbitrary web script or HTML via the NFuse_Message parameter.
Citrix Metaframe 1.0
1 EDB exploit
5
CVSSv2
CVE-2007-3625
The Program Neighborhood Agent in Citrix Presentation Server Clients for 32-bit Windows prior to 10.100 allows remote malicious users to cause a denial of service (agent exit) via a certain request that uses content redirection and a long pathname.
Citrix Metaframe Presentation Server
5
CVSSv2
CVE-2004-1077
Citrix Program Neighborhood Agent for Win32 8.00.24737 and previous versions and MetaFrame Presentation Server client for WinCE prior to 8.33 allows remote servers to create arbitrary shortcuts on the client via a full UNC path in the AppInStartmenu directive.
Citrix Metaframe Client 8.0
Citrix Program Neighborhood Agent 8.0
7.5
CVSSv2
CVE-2004-1078
Stack-based buffer overflow in the client for Citrix Program Neighborhood Agent for Win32 8.00.24737 and previous versions and Citrix MetaFrame Presentation Server client for WinCE prior to 8.33 allows remote malicious users to execute arbitrary code via a long cached icon filena...
Citrix Metaframe Client 8.0
Citrix Program Neighborhood Agent 8.0
10
CVSSv2
CVE-2008-0356
Buffer overflow in the Independent Management Architecture (IMA) service in Citrix Presentation Server (MetaFrame Presentation Server) 4.5 and previous versions, Access Essentials 2.0 and previous versions, and Desktop Server 1.0 allows remote malicious users to execute arbitrary...
Citrix Metaframe Presentation Server
Citrix Presentation Server
Citrix Desktop Server 1.0
Citrix Access Essentials
2.1
CVSSv2
CVE-2005-0822
Citrix Metaframe Password Manager 2.5 and previous versions stores a password in cleartext although it is obfuscated when presented to a user, which allows users to view their secondary passwords even if it is not allowed by policy.
Citrix Metaframe Password Manager 2.5
2.1
CVSSv2
CVE-2004-1902
The Citrix MetaFrame Password Manager 2.0, when a central credential store is not configured, does not encrypt passwords entered immediately after executing the First Time User Wizards, which allows local users to gain sensitive information.
Citrix Metaframe Password Manager 2.0
6.5
CVSSv2
CVE-2008-2300
Unspecified vulnerability in Citrix Presentation Server 4.5 and previous versions, Citrix Access Essentials 2.0 and previous versions, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unknown attack vectors.
Citrix Metaframe Presentation Server 4.0
Citrix Access Essentials 1.0
Citrix Desktop Server 1.0
Citrix Citrix Presentation Server
Citrix Access Essentials 1.5
Citrix Access Essentials
4.3
CVSSv2
CVE-2002-2426
Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 up to and including 2.0 allows remote malicious users to execute arbitrary published applications, and possibly other programs, ...
Citrix Access Essentials 1.0
Citrix Metaframe Presentation Server 3.0
Citrix Access Essentials 2.0
Citrix Presentation Server 4.0
Citrix Presentation Server 4.5
Citrix Access Essentials 1.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »