CVE-2006-5861

The Independent Management Architecture (IMA) service (ImaSrv.exe) in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service (service exit) via a crafted packet that causes the service to access an unmapped memory address and triggers an unhandled exception.

Published: Nov 11, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-5861
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
citrix / metaframe_presentation_server	4.0	4.0.x
citrix / metaframe	2.0	2.0.x
citrix / metaframe_presentation_server	3.0	3.0.x
citrix / metaframe	1.0	1.0.x

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=441
http://secunia.com/advisories/22802
http://securitytracker.com/id?1017205
http://support.citrix.com/article/CTX111186
http://www.securityfocus.com/bid/20986
http://www.vupen.com/english/advisories/2006/4429
https://exchange.xforce.ibmcloud.com/vulnerabilities/30156

Vulnerability Database

CVE-2006-5861