CVE-2005-3134
First published: Tue Oct 04 2005(Updated: )
Citrix Metaframe Presentation Server 3.0 and 4.0 allows remote attackers to bypass policy restrictions by downloading the launch.ica file and changing the client device name (ClientName).
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Citrix MetaFrame | =3.0 | |
| Citrix MetaFrame | =4.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.grupoitpro.com.ar/ctxpoliciesbypass.txt
- http://www.securityfocus.com/bid/14989
- http://secunia.com/advisories/17032/
- http://securitytracker.com/id?1014994
- http://securityreason.com/securityalert/39
- http://marc.info/?l=bugtraq&m=112811189420696&w=2
- http://support.citrix.com/kb/entry!default.jspa?categoryID=275&externalID=CTX107705
- http://support.citrix.com/kb/entry%21default.jspa?categoryID=275&externalID=CTX107705
- collector/nvd-historical
- collector/nvd-index
- collector/nvd-api
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/last-modified-date
- agent/weakness
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/citrix
- canonical/citrix metaframe
- version/citrix metaframe/4.0
- version/citrix metaframe/3.0