[Forgot Password]
Login  Register Subscribe

23631

 
 

126951

 
 

99602

 
 

909

 
 

80170

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2007-0444

Date: (C)2007-01-24   (M)2015-12-16 


Stack-based buffer overflow in the print provider library (cpprov.dll) in Citrix Presentation Server 4.0, MetaFrame Presentation Server 3.0, and MetaFrame XP 1.0 allows local users and remote attackers to execute arbitrary code via long arguments to the (1) EnumPrintersW and (2) OpenPrinter functions.

CVSS Score: 7.2Access Vector: LOCAL
Exploit Score: 3.9Access Complexity: LOW
Impact Score: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE





Reference:
SECTRACK-1017553
http://www.securityfocus.com/archive/1/archive/1/458002/100/0/threaded
BID-22217
SECUNIA-23869
OSVDB-32958
ADV-2007-0328
http://support.citrix.com/article/CTX111686
http://www.securityfocus.com/data/vulnerabilities/exploits/testlpc.c
http://www.zerodayinitiative.com/advisories/ZDI-07-006.html

CPE    2
cpe:/a:citrix:metaframe_presentation_server:4.0
cpe:/a:citrix:metaframe_presentation_server:3.0
CWE    1
CWE-119

© 2013 SecPod Technologies