Metaframe Presentation Server

metaframe_presentation_server

Vendor: Citrix • 9 CVEs

CVEs (9)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2008-3485 1Citrix 2Metaframe Presentation Server Xp Apr 23, 2026 Aug 6, 2008 N/A· v4 N/A· v3 7.2 HIGH· v2 Untrusted search path vulnerability in Citrix MetaFrame Presentation Server allows local users to gain privileges via a malicious icabar.exe placed in the search path.
CVE-2008-2300 1Citrix 4Access Essentials Citrix Presentation ServerDesktop Server+1 more Apr 23, 2026 May 18, 2008 N/A· v4 N/A· v3 6.5 MEDIUM· v2 Unspecified vulnerability in Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unkno...Show more Unspecified vulnerability in Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unknown attack vectors.Show less
CVE-2008-0356 1Citrix 4Access Essentials Desktop ServerMetaframe Presentation Server+1 more Apr 23, 2026 Jan 18, 2008 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in the Independent Management Architecture (IMA) service in Citrix Presentation Server (MetaFrame Presentation Server) 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 allows rem...Show more Buffer overflow in the Independent Management Architecture (IMA) service in Citrix Presentation Server (MetaFrame Presentation Server) 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 allows remote attackers to execute arbitrary code via an invalid size value in a packet to TCP port 2512 or 2513.Show less
CVE-2007-3625 1Citrix 1Metaframe Presentation Server Apr 23, 2026 Jul 9, 2007 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Program Neighborhood Agent in Citrix Presentation Server Clients for 32-bit Windows before 10.100 allows remote attackers to cause a denial of service (agent exit) via a certain request that uses content redirection...Show more The Program Neighborhood Agent in Citrix Presentation Server Clients for 32-bit Windows before 10.100 allows remote attackers to cause a denial of service (agent exit) via a certain request that uses content redirection and a long pathname.Show less
CVE-2007-0444 1Citrix 2Metaframe Metaframe Presentation Server Apr 23, 2026 Jan 24, 2007 N/A· v4 N/A· v3 7.2 HIGH· v2 Stack-based buffer overflow in the print provider library (cpprov.dll) in Citrix Presentation Server 4.0, MetaFrame Presentation Server 3.0, and MetaFrame XP 1.0 allows local users and remote attackers to execute arbitra...Show more Stack-based buffer overflow in the print provider library (cpprov.dll) in Citrix Presentation Server 4.0, MetaFrame Presentation Server 3.0, and MetaFrame XP 1.0 allows local users and remote attackers to execute arbitrary code via long arguments to the (1) EnumPrintersW and (2) OpenPrinter functions.Show less
CVE-2006-5861 1Citrix 2Metaframe Metaframe Presentation Server Apr 23, 2026 Nov 10, 2006 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Independent Management Architecture (IMA) service (ImaSrv.exe) in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service (service exit) via a crafte...Show more The Independent Management Architecture (IMA) service (ImaSrv.exe) in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service (service exit) via a crafted packet that causes the service to access an unmapped memory address and triggers an unhandled exception.Show less
CVE-2006-5821 1Citrix 2Metaframe Metaframe Presentation Server Apr 23, 2026 Nov 10, 2006 N/A· v4 N/A· v3 7.5 HIGH· v2 Heap-based buffer overflow in the IMA_SECURE_DecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests...Show more Heap-based buffer overflow in the IMA_SECURE_DecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests to the Independent Management Architecture (IMA) service (ImaSrv.exe) with invalid size values that trigger the overflow during decryption.Show less
CVE-2006-3779 1Citrix 3Metaframe Metaframe Presentation ServerPresentation Server Apr 16, 2026 Jul 24, 2006 N/A· v4 N/A· v3 6.5 MEDIUM· v2 Citrix MetaFrame up to XP 1.0 Feature 1, except when running on Windows Server 2003, installs a registry key with an insecure ACL, which allows remote authenticated users to gain privileges.
CVE-2002-2426 1Citrix 3Access Essentials Metaframe Presentation ServerPresentation Server Apr 16, 2026 Dec 31, 2002 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 through 2.0 allows remote attackers to execute arbitrary published a...Show more Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 through 2.0 allows remote attackers to execute arbitrary published applications, and possibly other programs, as authenticated users via the InitialProgram key in an ICA connection. NOTE: some of these details are obtained from third party information.Show less