CVE-2006-5821: CVE-2006-5821

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-5821

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Heap-based buffer overflow in the IMA_SECURE_DecryptData1 function in ImaSystem.dll for Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to execute arbitrary code via requests to the Independent Management Architecture (IMA) service (ImaSrv.exe) with invalid size values that trigger the overflow during decryption.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Citrix Presentation Server IMA服务多个远程漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Citrix Presentation Server允许用户通过网络远程访问应用程序。 Citrix Presentation Server的IMA_SECURE_DecryptData1()例程存在堆溢出漏洞。这个例程是在ImaSystem.dll中定义的，可通过监听于TCP 2512或2513端口的独立管理架构(IMA)服务(ImaSrv.exe)服务访问。这里所使用的加密方式是可逆的，依赖于用于表示报文大小和认证字符串偏移的一些32位字段。在解密认证数据过程中攻击者可以指定无效的大小，导致可利用的堆

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-5821

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-5821

Please Login to view more intelligence information

http://www.zerodayinitiative.com/advisories/ZDI-06-038.htmlx_refsource_MISC
http://support.citrix.com/article/CTX111186x_refsource_CONFIRM
http://www.securityfocus.com/bid/20986vdb-entryx_refsource_BID
http://secunia.com/advisories/22802third-party-advisoryx_refsource_SECUNIA
http://securitytracker.com/id?1017205vdb-entryx_refsource_SECTRACK
http://www.vupen.com/english/advisories/2006/4429vdb-entryx_refsource_VUPEN
https://exchange.xforce.ibmcloud.com/vulnerabilities/30148vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/451337/100/100/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2006-5821

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2006-5821

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2006-5821

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-5821

III. Intelligence Information for CVE-2006-5821

New Vulnerabilities

V. Comments for CVE-2006-5821

Leave a comment