Citrix: >> Metaframe >> 4.0 Security Vulnerabilities
The Session Reliability Service (XTE) in Citrix MetaFrame Presentation Server 3.0, Presentation Server 4.0, and Access Essentials 1.0 and 1.5, allows remote attackers to bypass network security policies and connect to arbitrary TCP ports via a modified address:port string.
CVSS Score
10.0
EPSS Score
0.014
Published
2007-05-24
Citrix Metaframe Presentation Server 3.0 and 4.0 allows remote attackers to bypass policy restrictions by downloading the launch.ica file and changing the client device name (ClientName).
CVSS Score
7.5
EPSS Score
0.008
Published
2005-10-04
Citrix MetaFrame 1.8 Server with Service Pack 3, and XP Server Service Pack 1 and earlier, allows remote attackers to cause a denial of service (crash) via a large number of incomplete connections to the server.
CVSS Score
5.0
EPSS Score
0.011
Published
2001-12-06