HomePentest-Tools.com Logo

Citrix Provisioning Services SoapServer Buffer Overflow Vulnerability CVE-2012-4068

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

Citrix Provisioning Services is prone to a buffer overflow vulnerability.

Risk description

The SoapServer service improperly calculates a buffer index pointer value for a date and time string, which references a location outside the fixed sized heap buffer resulting in a heap buffer overflow. Successful exploitation could allow remote attackers to execute arbitrary code on the target system.

Recommendation

Apply the hotfix for Citrix Provisioning Services from the referenced advisory.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Jul 26, 2012
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available