CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-2882

Stack-based buffer overflow in the NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 before 8.1-67.7, 9.0 before 9.0-70.5, and 9.1 before 9.1-96.4 allows remote attackers to execute arbitrary code via crafted HTTP header data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.75

EPSS Ranking 98.8%

CVSS Severity

CVSS v2 Score 9.3

References

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=929
http://securityreason.com/securityalert/8358
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=929
http://securityreason.com/securityalert/8358

Products affected by CVE-2011-2882

Citrix » Access Gateway » Version: 8.1

cpe:2.3:a:citrix:access_gateway:8.1
Citrix » Access Gateway » Version: 9.0

cpe:2.3:a:citrix:access_gateway:9.0
Citrix » Access Gateway » Version: 9.1

cpe:2.3:a:citrix:access_gateway:9.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-2882

Products

Pricing

Contact Us