Published: 24/01/2007 Updated: 16/10/2018

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in the print provider library (cpprov.dll) in Citrix Presentation Server 4.0, MetaFrame Presentation Server 3.0, and MetaFrame XP 1.0 allows local users and remote malicious users to execute arbitrary code via long arguments to the (1) EnumPrintersW and (2) OpenPrinter functions.

Vulnerable Product	Search on Vulmon	Subscribe to Product
citrix metaframe presentation server 4.0
citrix metaframe 1.0
citrix metaframe presentation server 3.0

/* Proof of concept exploit for ZDI - Citrix Metaframe spooler service vulnerability Microsoft Windows - EnumPrinter() & EnumPrinterW() Fuzzer v01 Author: Andres Tarasco Acuña - atarasco@514es url: www514es This is an intial version of EnumPrinter() and OpenPrinter() fuzzer I hope that it will help to identify similar vuln ...

CWE-119 http://www.zerodayinitiative.com/advisories/ZDI-07-006.html http://support.citrix.com/article/CTX111686 http://www.securityfocus.com/data/vulnerabilities/exploits/testlpc.c http://www.securityfocus.com/bid/22217 http://securitytracker.com/id?1017553 http://secunia.com/advisories/23869 http://osvdb.org/32958 http://www.vupen.com/english/advisories/2007/0328 http://www.securityfocus.com/archive/1/458002/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/3204/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-0444

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect