cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2009-2453,https://securityvulnerability.io/vulnerability/CVE-2009-2453,,"Citrix XenApp (formerly Presentation Server) 4.5 Hotfix Rollup Pack 3 does not apply an access policy when it is defined with the Access Gateway Advanced Edition filters, which allows attackers to bypass intended access restrictions via unknown vectors.",Citrix,"Presentation Server,Xenapp",,,0.0061599998734891415,false,false,false,false,,false,false,2009-07-14T14:30:00.000Z,0
CVE-2008-6561,https://securityvulnerability.io/vulnerability/CVE-2008-6561,,"Citrix Presentation Server Client for Windows before 10.200 does not clear ""credential information"" from process memory in unspecified circumstances, which might allow local users to gain privileges.",Citrix,Presentation Server Client,,,0.0004199999966658652,false,false,false,false,,false,false,2009-03-31T17:00:00.000Z,0
CVE-2008-5107,https://securityvulnerability.io/vulnerability/CVE-2008-5107,,"The installation process for Citrix Presentation Server 4.5 and Desktop Server 1.0, when MSI logging is enabled, stores database credentials in MSI log files, which allows local users to obtain these credentials by reading the log files.",Citrix,"Desktop Server,Presentation Server",,,0.0004199999966658652,false,false,false,false,,false,false,2008-11-17T18:00:00.000Z,0
CVE-2008-4676,https://securityvulnerability.io/vulnerability/CVE-2008-4676,,"Unspecified vulnerability in Citrix XenApp (formerly Presentation Server) 4.5 Feature Pack 1 and earlier, Presentation Server 4.0, and Access Essentials 1.0, 1.5, and 2.0 allows local users to gain privileges via unknown attack vectors related to creating an unspecified file.  NOTE: this might be the same issue as CVE-2008-3485, but the vendor advisory is too vague to be certain.",Citrix,"Xenapp,Access Essentials,Presentation Server",,,0.0004199999966658652,false,false,false,false,,false,false,2008-10-22T10:00:00.000Z,0
CVE-2008-3485,https://securityvulnerability.io/vulnerability/CVE-2008-3485,,Untrusted search path vulnerability in Citrix MetaFrame Presentation Server allows local users to gain privileges via a malicious icabar.exe placed in the search path.,Citrix,"Metaframe Presentation Server,Xp",,,0.0004199999966658652,false,false,false,false,,false,false,2008-08-06T17:05:00.000Z,0
CVE-2008-2299,https://securityvulnerability.io/vulnerability/CVE-2008-2299,,"Unspecified vulnerability in SecureICA and ICA Basic encryption of Citrix Presentation Server 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 can cause clients to use weaker encryption settings than configured by the administrator, which might allow attackers to bypass intended restrictions.",Citrix,Presentation Server,,,0.003019999945536256,false,false,false,false,,false,false,2008-05-18T14:00:00.000Z,0
CVE-2008-2300,https://securityvulnerability.io/vulnerability/CVE-2008-2300,,"Unspecified vulnerability in Citrix Presentation Server 4.5 and earlier, Citrix Access Essentials 2.0 and earlier, and Citrix Desktop Server 1.0 allows remote authenticated users to access unauthorized desktops via unknown attack vectors.",Citrix,"Metaframe Presentation Server,Access Essentials,Desktop Server,Citrix Presentation Server",,,0.00482999999076128,false,false,false,false,,false,false,2008-05-18T14:00:00.000Z,0
CVE-2008-0356,https://securityvulnerability.io/vulnerability/CVE-2008-0356,,"Buffer overflow in the Independent Management Architecture (IMA) service in Citrix Presentation Server (MetaFrame Presentation Server) 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 allows remote attackers to execute arbitrary code via an invalid size value in a packet to TCP port 2512 or 2513.",Citrix,"Metaframe Presentation Server,Presentation Server,Desktop Server,Access Essentials",,,0.8069300055503845,false,false,false,false,,false,false,2008-01-18T21:00:00.000Z,0
CVE-2007-6267,https://securityvulnerability.io/vulnerability/CVE-2007-6267,,"Citrix EdgeSight 4.2 and 4.5 for Presentation Server, EdgeSight 4.2 and 4.5 for Endpoints, and EdgeSight for NetScaler 1.0 and 1.1 do not properly store database credentials in configuration files, which allows local users to obtain sensitive information.",Citrix,"Edgesight For Presentation Server,Edgesight For Netscaler,Edgesight For Endpoints",,,0.0004199999966658652,false,false,false,false,,false,false,2007-12-07T11:00:00.000Z,0
CVE-2007-3625,https://securityvulnerability.io/vulnerability/CVE-2007-3625,,The Program Neighborhood Agent in Citrix Presentation Server Clients for 32-bit Windows before 10.100 allows remote attackers to cause a denial of service (agent exit) via a certain request that uses content redirection and a long pathname.,Citrix,Metaframe Presentation Server,,,0.027140000835061073,false,false,false,false,,false,false,2007-07-09T16:00:00.000Z,0
CVE-2007-1196,https://securityvulnerability.io/vulnerability/CVE-2007-1196,,"Unspecified vulnerability in Citrix Presentation Server Client for Windows before 10.0 allows remote web sites to execute arbitrary code via unspecified vectors, related to the implementation of ICA connectivity through proxy servers.",Citrix,Presentation Server Client,,,0.013100000098347664,false,false,false,false,,false,false,2007-03-02T19:00:00.000Z,0
CVE-2007-0444,https://securityvulnerability.io/vulnerability/CVE-2007-0444,,"Stack-based buffer overflow in the print provider library (cpprov.dll) in Citrix Presentation Server 4.0, MetaFrame Presentation Server 3.0, and MetaFrame XP 1.0 allows local users and remote attackers to execute arbitrary code via long arguments to the (1) EnumPrintersW and (2) OpenPrinter functions.",Citrix,"Metaframe Presentation Server,Metaframe",,,0.010099999606609344,false,false,false,false,,false,false,2007-01-24T22:00:00.000Z,0
CVE-2006-6334,https://securityvulnerability.io/vulnerability/CVE-2006-6334,,Heap-based buffer overflow in the SendChannelData function in wfica.ocx in Citrix Presentation Server Client before 9.230 for Windows allows remote malicious web sites to execute arbitrary code via a DataSize parameter that is less than the length of the Data buffer.,Citrix,Presentation Server Client,,,0.28760001063346863,false,false,false,false,,false,false,2006-12-08T01:00:00.000Z,0
CVE-2006-5861,https://securityvulnerability.io/vulnerability/CVE-2006-5861,,"The Independent Management Architecture (IMA) service (ImaSrv.exe) in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service (service exit) via a crafted packet that causes the service to access an unmapped memory address and triggers an unhandled exception.",Citrix,"Metaframe Presentation Server,Metaframe",,,0.3351399898529053,false,false,false,false,,false,false,2006-11-10T23:00:00.000Z,0
CVE-2006-5821,https://securityvulnerability.io/vulnerability/CVE-2006-5821,,"Heap-based buffer overflow in the IMA_SECURE_DecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests to the Independent Management Architecture (IMA) service (ImaSrv.exe) with invalid size values that trigger the overflow during decryption.",Citrix,"Metaframe Presentation Server,Metaframe",,,0.5263800024986267,false,false,false,false,,false,false,2006-11-10T23:00:00.000Z,0
CVE-2006-3779,https://securityvulnerability.io/vulnerability/CVE-2006-3779,,"Citrix MetaFrame up to XP 1.0 Feature 1, except when running on Windows Server 2003, installs a registry key with an insecure ACL, which allows remote authenticated users to gain privileges.",Citrix,"Metaframe,Presentation Server,Metaframe Presentation Server",,,0.0056500001810491085,false,false,false,false,,false,false,2006-07-24T12:19:00.000Z,0
CVE-2002-2426,https://securityvulnerability.io/vulnerability/CVE-2002-2426,,"Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 through 2.0 allows remote attackers to execute arbitrary published applications, and possibly other programs, as authenticated users via the InitialProgram key in an ICA connection. NOTE: some of these details are obtained from third party information.",Citrix,"Access Essentials,Metaframe Presentation Server,Presentation Server",,,0.02118000015616417,false,false,false,false,,false,false,2002-12-31T05:00:00.000Z,0