Vulnerabilities > Citrix > Metaframe > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-11-10 | CVE-2006-5861 | Denial-Of-Service vulnerability in Citrix Metaframe and Metaframe Presentation Server The Independent Management Architecture (IMA) service (ImaSrv.exe) in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service (service exit) via a crafted packet that causes the service to access an unmapped memory address and triggers an unhandled exception. | 5.0 |
| 2006-07-24 | CVE-2006-3779 | Privilege Escalation vulnerability in Citrix products Citrix MetaFrame up to XP 1.0 Feature 1, except when running on Windows Server 2003, installs a registry key with an insecure ACL, which allows remote authenticated users to gain privileges. | 6.5 |
| 2003-12-31 | CVE-2003-1157 | Cross-Site Scripting vulnerability in Citrix Metaframe 1.0 Cross-site scripting (XSS) vulnerability in login.asp in Citrix MetaFrame XP Server 1.0 allows remote attackers to inject arbitrary web script or HTML via the NFuse_Message parameter. network citrix | 4.3 |
| 2001-12-06 | CVE-2001-0716 | Sessions Denial of Service vulnerability in Citrix MetaFrame Citrix MetaFrame 1.8 Server with Service Pack 3, and XP Server Service Pack 1 and earlier, allows remote attackers to cause a denial of service (crash) via a large number of incomplete connections to the server. | 5.0 |