Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Citrix Provisioning Services SoapServer Buffer Overflow Vulnerability
Information
Severity
Severity
High
Family
Family
Buffer overflow
CVSSv2 Base
CVSSv2 Base
7.5
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Solution Type
Solution Type
Vendor Patch
Created
Created
11 years ago
Modified
Modified
5 years ago
Summary
This host is installed with Citrix Provisioning Services and is prone to buffer overflow vulnerability.
Insight
Insight
The SoapServer service improperly calculates a buffer index pointer value for a date and time string, which references a location outside the fixed sized heap buffer resulting in a heap buffer overflow.
Affected Software
Affected Software
Citrix Provisioning Services version 5.6 and prior, 6.0 and 6.1
Solution
Solution
Apply the hotfix for Citrix Provisioning Services from the referenced advisory.