|
 |
|
Citrix Program Neighborhood Agent Two Vulnerabilities
|
|
|
|
|
Secunia Advisory:
|
SA15108
|
|
|
Release Date:
|
2005-04-26
|
|
Last Update:
|
2005-10-20
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Citrix Program Neighborhood Agent 8.x
|
| | CVE reference: | CVE-2004-1077 (Secunia mirror)
CVE-2004-1078 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
Patrik Karlsson has reported two vulnerabilities in Citrix Program Neighborhood Agent, which can be exploited by malicious people to compromise a user's system.
1) A boundary error in the caching of information received from servers can be exploited to cause a stack-based buffer overflow and execute arbitrary code on a client system.
2) A design error allows arbitrary shortcuts to be created on a client system with the privileges of the logged in user. This can be exploited to eg. execute arbitrary programs when a user logs in the next time by placing a shortcut in the Startup folder.
Successful exploitation requires that the client has been configured to point to a malicious server.
The following clients are affected:
* Program Neighborhood Agent for Win32
* Citrix MetaFrame Presentation Server client for WinCE (versions including Program Neighborhood Agent)
Solution:
The vulnerabilities have been addressed in the listed client versions below, which are available at:
http://www.citrix.com/English/SS/downloads/downloads.asp?dID=2755
* Program Neighborhood Agent for Win32 versions 9.0 and later.
* Citrix MetaFrame Presentation Server client for WinCE versions 8.33 and later.
Provided and/or discovered by:
Patrik Karlsson
Changelog:
2005-04-27: Added additional information provided by iDEFENSE.
2005-10-20: Added CVE references.
Original Advisory:
Citrix:
http://support.citrix.com/kb/entry.jspa?entryID=6156&categoryID=149
iDEFENSE:
http://www.idefense.com/application/poi/display?id=237&type=vulnerabilities
http://www.idefense.com/application/poi/display?id=238&type=vulnerabilities
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
1 Related Secunia Security Advisories
|
|
|
1. Citrix MetaFrame Presentation Server Client Debugging Security Issue
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
