Summary
This host is installed with Citrix Provisioning Services and is prone to buffer overflow vulnerability.
Impact
Successful exploitation could allow remote attackers to execute arbitrary code on the target system.
Impact Level: Application/System
Solution
Apply the hotfix for Citrix Provisioning Services, For updates refer to http://support.citrix.com/article/ctx133039
Insight
The SoapServer service improperly calculates a buffer index pointer value for a date and time string, which references a location outside the fixed sized heap buffer resulting in a heap buffer overflow.
Affected
Citrix Provisioning Services version 5.6 and prior, 6.0 and 6.1
References
Severity
Classification
-
CVE CVE-2012-4068 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe Reader/Acrobat Multiple Vulnerabilities - Nov08 (Win)
- ALLMediaServer Request Handling Buffer Overflow Vulnerability
- CA Internet Security Suite Plus 'KmxSbx.sys' Buffer Overflow Vulnerability
- ALZip MIM File Processing Buffer Overflow Vulnerability
- Adobe Flash Player Multiple Vulnerabilities - Mar09 (Win)