First published: Tue Dec 31 2002(Updated: )
Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 through 2.0 allows remote attackers to execute arbitrary published applications, and possibly other programs, as authenticated users via the InitialProgram key in an ICA connection. NOTE: some of these details are obtained from third party information.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Citrix Access Essentials | =1.0 | |
Citrix MetaFrame Presentation Server | =3.0 | |
Citrix Access Essentials | =2.0 | |
Citrix Presentation Server | =4.0 | |
Citrix Presentation Server | =4.5 | |
Citrix Access Essentials | =1.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.