Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 APP:CITRIX:AGENT-OF

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 APP

Keywords

 Citrix Program Neighborhood Agent Buffer Overflow

Release Date

 2005/05/12

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

APP: Citrix Program Neighborhood Agent Buffer Overflow


This signature detects attempts to exploit a known vulnerability in the Citrix Program Neighborhood Agent. Attackers can configure a server to provide a host with a malicious XML configuration file, which can overflow a buffer and enable attackers to gain control of the host.

Extended Description

Citrix Program Neighborhood Agent is prone to a buffer overflow. Successful exploitation of this vulnerability could allow arbitrary code execution in the context of the application. This issue was reported to affect Program Neighborhood Agent for Win32 and Citrix Metaframe Presentation Server client for WinCE.

Affected Products

  • Citrix Metaframe Presentation Server client for WinCE 8.0.0
  • Citrix Program Neighborhood Agent for Win32 8.0.0

References

  • BugTraq: 13373
  • CVE: CVE-2004-1077
  • CVE: CVE-2004-1078
  • URL: http://support.citrix.com/kb/entry.jspa?entryID=6156&categoryID=149
  • URL: http://www.us-cert.gov/cas/bulletins/SB05-117.html#citrix
  • URL: http://support.citrix.com/kb/entry.jspa?externalID=CTX105650

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out