NVD

Id
9336  
Name
CVE-2011-2592  
Description
Heap-based buffer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise Edition Plug-in for Windows 9.x before 9.3-57.5 and 10.0 before 10.0-69.4 allows remote attackers to execute arbitrary code via a long CSEC HTTP response header.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2014-06-18  
Modified Date
2014-06-18  
Seq
2011-2592  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
53398 9336 CVE-2011-2592 20120731 Secunia Research: Citrix Access Gateway Plug-in for Windows nsepacom ActiveX Control Buffer Overflow  View
53399 9336 CVE-2011-2592 http://support.citrix.com/article/CTX134303  View
53400 9336 CVE-2011-2592 citrix-activex-control-bo(77316)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
35092 JVNDB-2011-005334 Citrix Access Gateway Enterprise Edition Plug-in for Windows におけるヒープベースのバッファオーバーフローの脆弱性 Citrix Access Gateway Enterprise Edition Plug-in for Windows の nsepacom ActiveX コントロール (nsepa.exe) の StartEpa メソッドには、ヒープベースのバッファオーバーフローの脆弱性が存在します。 CVE-2011-2592 50499 CVE-2011-2592 9336 9.3 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-005334.html 2011-07-19 2014-06-19 View