Citrix Provisioning Services 'streamprocess.exe' Buffer Overflows Let Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1026109 |
|
SecurityTracker URL: http://securitytracker.com/id/1026109
|
|
CVE Reference:
GENERIC-MAP-NOMATCH
(Links to External Site)
|
Updated: Jan 12 2012
|
Original Entry Date: Sep 28 2011
|
Impact:
Execution of arbitrary code via network, Root access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 5.6 SP1 and prior
|
Description:
Several vulnerabilities were reported in Citrix Provisioning Services. A remote user can execute arbitrary code on the target system.
A remote user can send specially crafted data to the 'streamprocess.exe' service on UDP port 6905 to execute arbitrary code on the target system. The code will run with System privileges.
A request for a vDisk name, the request type 0x40020000, and the request type 0x40020006 can trigger code execution.
AbdulAziz Hariri of ThirdEye Testers and Aniway.Anyway at gmail.com reported these vulnerability via TippingPoint's Zero Day Initiative.
|
Impact:
A remote user can execute arbitrary code on the target system with System privileges.
|
Solution:
The vendor has issued a hotfix.
The vendor's advisory is available at:
http://support.citrix.com/article/CTX130846
|
Vendor URL: support.citrix.com/article/CTX130846 (Links to External Site)
|
Cause:
Boundary error
|
Underlying OS:
Windows (2003), Windows (2008)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Wed, 28 Sep 2011 09:50:21 +0000
Subject: Citrix Provisioning Services
|
http://support.citrix.com/article/CTX130846
|
|
