Citrix: >> Access Gateway Plug-In >> 9.3 Security Vulnerabilities
Heap-based buffer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise Edition Plug-in for Windows 9.x before 9.3-57.5 and 10.0 before 10.0-69.4 allows remote attackers to execute arbitrary code via a long CSEC HTTP response header.
CVSS Score
9.3
EPSS Score
0.185
Published
2014-06-18