|
|
CVE Reference: CVE-2006-5821 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-5821 |
|
|
Description: Heap-based buffer overflow in the IMA_SECURE_DecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests to the Independent Management Architecture (IMA) service (ImaSrv.exe) with invalid size values that trigger the overflow during decryption. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/30148 ST 1017205 SAID Secunia Advisory: SA22802 MISC http://www.zerodayinitiative.com/advisories/ZDI-06-038.html CONFIRM http://support.citrix.com/article/CTX111186 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/451337/100/100/threaded BID 20986 |
|
| Return to the previous page. |
