Citrix: >> Metaframe >> 1.8 Security Vulnerabilities
Citrix MetaFrame up to XP 1.0 Feature 1, except when running on Windows Server 2003, installs a registry key with an insecure ACL, which allows remote authenticated users to gain privileges.
CVSS Score
6.5
EPSS Score
0.009
Published
2006-07-24
Citrix MetaFrame 1.8 Server with Service Pack 3, and XP Server Service Pack 1 and earlier, allows remote attackers to cause a denial of service (crash) via a large number of incomplete connections to the server.
CVSS Score
5.0
EPSS Score
0.011
Published
2001-12-06
CITRIX Metaframe 1.8 logs the Client Address (IP address) that is provided by the client instead of obtaining it from the packet headers, which allows clients to spoof their public IP address, e.g. through Network Address Translation (NAT).
CVSS Score
7.5
EPSS Score
0.006
Published
2001-11-21