N/A

Citrix Online Plug-in for Windows for XenApp & XenDesktop before 11.2, Citrix Online Plug-in for Mac for XenApp & XenDesktop before 11.0, Citrix ICA Client for Linux before 11.100, Citrix ICA Client for Solaris before 8.63, and Citrix Receiver for Windows Mobile before 11.5 allow remote attackers to execute arbitrary code via (1) a crafted HTML document, (2) a crafted .ICA file, or (3) a crafted type field in an ICA graphics packet, related to a "heap offset overflow" issue.

N/A

N/A

Citrix XenApp & XenDesktop Citrix缓冲区溢出漏洞

XenApp & XenDesktop 11.2之前版本中的Windows中的Citrix在线插件，XenApp & XenDesktop 11.0之前版本中的Mac中的Citrix在线插件，Linux 11.100之前版本中的Citrix ICA客户端，Solaris 8.63之前版本中的Citrix ICA客户端，以及Windows Mobile 11.5之前版本中的Citrix接收器存在漏洞。远程攻击者可以借助(1)特制的HTML文档，(2)特制的.ICA 文件，或(3)特制的ICA的图形包类型字段

N/A

N/A