• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Citrix Presentation Server Remote Unauthorized Code Execution Vulnerability

Citrix Presentation Server is prone to a vulnerability that may allow remote attackers to execute unauthorized code on the server in the context of the authorized user. The issue stems from a design error.

The issue affects the following applications:

Access Essentials 1.0
Citrix Access Essentials 1.5
Citrix Access Essentials 2.0
Citrix MetaFrame Presentation Server 3.0 for Microsoft Windows 2000
Citrix MetaFrame Presentation Server 3.0 for Microsoft Windows 2003
Citrix Presentation Server 4.0 for Microsoft Windows 2000
Citrix Presentation Server 4.0 for Microsoft Windows 2003
Citrix Presentation Server 4.0 x64 Edition
Citrix Presentation Server 4.5 for Windows Server 2003
Citrix Presentation Server 4.5 for Windows Server 2003 Feature Pack 1
Citrix Presentation Server 4.5 for Windows Server 2003 x64 Edition