[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2007-0444

Date: (C)2007-01-24   (M)2015-12-16
 
CVSS Score: 7.2Access Vector: LOCAL
Exploitability Subscore: 3.9Access Complexity: LOW
Impact Subscore: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE











Stack-based buffer overflow in the print provider library (cpprov.dll) in Citrix Presentation Server 4.0, MetaFrame Presentation Server 3.0, and MetaFrame XP 1.0 allows local users and remote attackers to execute arbitrary code via long arguments to the (1) EnumPrintersW and (2) OpenPrinter functions.

Reference:
SECTRACK-1017553
http://www.securityfocus.com/archive/1/archive/1/458002/100/0/threaded
BID-22217
SECUNIA-23869
OSVDB-32958
ADV-2007-0328
http://support.citrix.com/article/CTX111686
http://www.securityfocus.com/data/vulnerabilities/exploits/testlpc.c
http://www.zerodayinitiative.com/advisories/ZDI-07-006.html

CPE    2
cpe:/a:citrix:metaframe_presentation_server:4.0
cpe:/a:citrix:metaframe_presentation_server:3.0
CWE    1
CWE-119

© 2013 SecPod Technologies