← Back

Online Plug In For Windows For Xenapp & Xendesktop

online_plug-in_for_windows_for_xenapp_&_xendesktop

Vendor: Citrix • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2010-2991
1Citrix
1Online Plug In For Windows For Xenapp & Xendesktop
Apr 29, 2026
Aug 11, 2010
N/A· v4
N/A· v3
9.3 HIGH· v2
The IICAClient interface in the ICAClient library in the ICA Client ActiveX Object (aka ICO) component in Citrix Online Plug-in for Windows for XenApp & XenDesktop before 12.0.3 allows remote attackers to execute arbitra...Show more
The IICAClient interface in the ICAClient library in the ICA Client ActiveX Object (aka ICO) component in Citrix Online Plug-in for Windows for XenApp & XenDesktop before 12.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted HTML document that triggers the reading of a .ICA file.Show less
CVE-2010-2990
1Citrix
5Ica Client For Linux
Ica Client For SolarisOnline Plug In For Mac For Xenapp & Xendesktop+2 more
Apr 29, 2026
Aug 11, 2010
N/A· v4
N/A· v3
9.3 HIGH· v2
Citrix Online Plug-in for Windows for XenApp & XenDesktop before 11.2, Citrix Online Plug-in for Mac for XenApp & XenDesktop before 11.0, Citrix ICA Client for Linux before 11.100, Citrix ICA Client for Solaris before 8....Show more
Citrix Online Plug-in for Windows for XenApp & XenDesktop before 11.2, Citrix Online Plug-in for Mac for XenApp & XenDesktop before 11.0, Citrix ICA Client for Linux before 11.100, Citrix ICA Client for Solaris before 8.63, and Citrix Receiver for Windows Mobile before 11.5 allow remote attackers to execute arbitrary code via (1) a crafted HTML document, (2) a crafted .ICA file, or (3) a crafted type field in an ICA graphics packet, related to a "heap offset overflow" issue.Show less