Vulnerability in Citrix Metaframe
CVE-2006-3779
Citrix MetaFrame up to XP 1.0 Feature 1, except when running on Windows Server 2003, installs a registry key with an insecure ACL, which allows remote authenticated users to gain privileges.
EPSS: 0.013 (66.7th percentile) — read the EPSS interpretation.
Affected products
- Citrix Metaframe — versions 1.8
- Citrix Metaframe_presentation_server — versions 3.0
- Citrix Presentation_server — versions 4.0
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_CONFIRM, Patch)
- cve@mitre.org (Patch, x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- cve@mitre.org (vdb-entry, x_refsource_SECTRACK)
- cve@mitre.org (vdb-entry, x_refsource_VUPEN)
- cve@mitre.org (Patch, vdb-entry, x_refsource_BID)