CVE-2005-3134

Exploit

EPSS 0.79%
Published 04.10.2005 22:02:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Citrix Metaframe Presentation Server 3.0 and 4.0 allows remote attackers to bypass policy restrictions by downloading the launch.ica file and changing the client device name (ClientName).

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Citrix ≫ Metaframe Version3.0

Citrix ≫ Metaframe Version4.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.79%	0.716

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://marc.info/?l=bugtraq&m=112811189420696&w=2

http://secunia.com/advisories/17032/

Vendor Advisory

http://securityreason.com/securityalert/39

http://securitytracker.com/id?1014994

http://support.citrix.com/kb/entry%21default.jspa?categoryID=275&externalID=CTX107705

http://www.grupoitpro.com.ar/ctxpoliciesbypass.txt

Vendor Advisory

Exploit

http://www.securityfocus.com/bid/14989

https://nvd.nist.gov/vuln/detail/CVE-2005-3134

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-3134

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-3134

EUVD