CVSS: 9.3EPSS: 1%CPEs: 6EXPL: 0CVE-2007-4013
https://notcve.org/view.php?id=CVE-2007-4013
Multiple unspecified vulnerabilities in (1) Net6Helper.DLL (aka Net6Launcher Class) 4.5.2 and earlier, (2) npCtxCAO.dll (aka Citrix Endpoint Analysis Client) in a Firefox plugin directory, and (3) a second npCtxCAO.dll (aka CCAOControl Object) before 4.5.0.0 in Citrix Access Gateway Standard Edition before 4.5.5 and Advanced Edition before 4.5 HF1 have unknown impact and attack vectors, possibly related to buffer overflows. NOTE: vector 3 might overlap CVE-2007-3679. Múltiples vulnerabilidades no especificadas en Net6Helper.DLL (también conocido como Net6Launcher Class) 4.5.2 y anteriores, (2) npCtxCAO.dll (también conocido como Citrix Endpoint Analysis Client) en un extensión de directorio Firefox, y (3) un segundo pCtxCAO.dll (también conocido como CCAOControl Object) anterior a 4.5.0.0 en Citrix Access Gateway Standard Edition anterior a 4.5.5 y Advanced Edition anterior a 4.5 HF1 • http://osvdb.org/37842 http://osvdb.org/37843 http://osvdb.org/37844 http://secunia.com/advisories/26143 http://support.citrix.com/article/CTX113815 http://support.citrix.com/article/CTX114028 http://www.securityfocus.com/bid/24975 http://www.vupen.com/english/advisories/2007/2583 •
CVSS: 6.8EPSS: 0%CPEs: 4EXPL: 0CVE-2007-4016
https://notcve.org/view.php?id=CVE-2007-4016
Unspecified vulnerability in the client components in Citrix Access Gateway Standard Edition before 4.5.5 and Advanced Edition before 4.5 HF1 allows attackers to execute arbitrary code via unspecified vectors. Vulnerabilidad no especificada en los componentes de cliente en Citrix Access Gateway Standard Edition anterior a 4.5.5 y Advanced Edition anterior a 4.5 HF1 permite a atacantes ejecutar código de su elección a través de vectores no especificados. • http://osvdb.org/43983 http://secunia.com/advisories/26143 http://support.citrix.com/article/CTX113815 http://support.citrix.com/article/CTX114028 http://www.securityfocus.com/bid/24975 http://www.securitytracker.com/id?1018435 http://www.vupen.com/english/advisories/2007/2583 •
CVSS: 4.3EPSS: 1%CPEs: 2EXPL: 0CVE-2007-3679
https://notcve.org/view.php?id=CVE-2007-3679
The Citrix EPA ActiveX control (aka the "endpoint checking control" or CCAOControl Object) before 4.5.0.0 in npCtxCAO.dll in Citrix Access Gateway Standard Edition before 4.5.5 and Advanced Edition before 4.5 HF1 allows remote attackers to download and execute arbitrary programs onto a client system. El control ActiveX Citrix EPA (también conocido como el "endpoint checking control" ó Objeto CCAOControl) versiones anteriores a 4.5.0.0 en npCtxCAO.dll de Citrix Access Gateway Standard Edition versiones anteriores a 4.5.5 y Advanced Edition versiones anteriores a 4.5 HF1, permite a atacantes remotos descargar y ejecutar programas de su elección en un sistema cliente. • http://osvdb.org/37845 http://secunia.com/advisories/26143 http://securityreason.com/securityalert/2916 http://support.citrix.com/article/CTX113815 http://support.citrix.com/article/CTX114028 http://www.securityfocus.com/archive/1/474204/100/0/threaded http://www.securityfocus.com/bid/24865 http://www.securityfocus.com/bid/24975 http://www.symantec.com/content/en/us/enterprise/research/SYMSA-2007-006.txt http://www.vupen.com/english/advisories/2007/2583 https://exchange.xf •
CVSS: 5.0EPSS: 5%CPEs: 1EXPL: 0CVE-2007-3625
https://notcve.org/view.php?id=CVE-2007-3625
The Program Neighborhood Agent in Citrix Presentation Server Clients for 32-bit Windows before 10.100 allows remote attackers to cause a denial of service (agent exit) via a certain request that uses content redirection and a long pathname. The Program Neighborhood Agent en Citrix Presentation Server Clients para 32-bit Windows anterior a 10.100 permite a atacantes remotos provocar denegación de servicio (salida del agente) a través de ciertas respuestas que utilizan la redirección de contenido y un nombre de ruta largo. • http://osvdb.org/37839 http://secunia.com/advisories/25897 http://support.citrix.com/article/CTX113543 http://www.securityfocus.com/bid/24790 http://www.securitytracker.com/id?1018343 http://www.vupen.com/english/advisories/2007/2455 https://exchange.xforce.ibmcloud.com/vulnerabilities/35283 •
CVSS: 10.0EPSS: 6%CPEs: 8EXPL: 0CVE-2007-2850
https://notcve.org/view.php?id=CVE-2007-2850
The Session Reliability Service (XTE) in Citrix MetaFrame Presentation Server 3.0, Presentation Server 4.0, and Access Essentials 1.0 and 1.5, allows remote attackers to bypass network security policies and connect to arbitrary TCP ports via a modified address:port string. El Session Reliability Service (XTE) del Citrix MetaFrame Presentation Server 3.0, Presentation Server 4.0 y Access Essentials 1.0 y 1.5, permite a atacantes remotos evitar las políticas de seguridad de la red y conectarse a puertos TCP de su elección a través de una cadena address:port modificada. • http://fortconsult.net/files/fortconsult.dk/citrix_advisory.pdf http://secunia.com/advisories/25371 http://support.citrix.com/article/CTX112964 http://www.securitytracker.com/id?1018098 http://www.vupen.com/english/advisories/2007/1918 https://exchange.xforce.ibmcloud.com/vulnerabilities/34448 •