Back to search
CVE-2010-2991
Published: Aug 11, 2010
Modified: Sep 16, 2024
PUBLISHED
Description
The IICAClient interface in the ICAClient library in the ICA Client ActiveX Object (aka ICO) component in Citrix Online Plug-in for Windows for XenApp & XenDesktop before 12.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted HTML document that triggers the reading of a .ICA file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20100803 Citrix ICA Client ActiveX Memory Corruption Vulnerabillity
third-party-advisory
x_refsource_IDEFENSE
40821
third-party-advisory
x_refsource_SECUNIA
40819
third-party-advisory
x_refsource_SECUNIA
http://support.citrix.com/article/CTX125976
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now