Vulnerabilities > Citrix > Metaframe Presentation Server > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-05-18 | CVE-2008-2300 | Permissions, Privileges, and Access Controls vulnerability in Citrix products Unspecified vulnerability in Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unknown attack vectors. | 6.5 |
2007-07-09 | CVE-2007-3625 | Denial Of Service vulnerability in Citrix Presentation Server Client Content-Redirection The Program Neighborhood Agent in Citrix Presentation Server Clients for 32-bit Windows before 10.100 allows remote attackers to cause a denial of service (agent exit) via a certain request that uses content redirection and a long pathname. | 5.0 |
2006-11-10 | CVE-2006-5861 | Denial-Of-Service vulnerability in Citrix Metaframe and Metaframe Presentation Server The Independent Management Architecture (IMA) service (ImaSrv.exe) in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service (service exit) via a crafted packet that causes the service to access an unmapped memory address and triggers an unhandled exception. | 5.0 |
2006-07-24 | CVE-2006-3779 | Privilege Escalation vulnerability in Citrix products Citrix MetaFrame up to XP 1.0 Feature 1, except when running on Windows Server 2003, installs a registry key with an insecure ACL, which allows remote authenticated users to gain privileges. | 6.5 |
2002-12-31 | CVE-2002-2426 | Cross-Site Request Forgery (CSRF) vulnerability in Citrix products Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 through 2.0 allows remote attackers to execute arbitrary published applications, and possibly other programs, as authenticated users via the InitialProgram key in an ICA connection. | 4.3 |