CVE-2007-0444

Citrix Metaframe - Memory Corruption

Title source: rule

Description

Stack-based buffer overflow in the print provider library (cpprov.dll) in Citrix Presentation Server 4.0, MetaFrame Presentation Server 3.0, and MetaFrame XP 1.0 allows local users and remote attackers to execute arbitrary code via long arguments to the (1) EnumPrintersW and (2) OpenPrinter functions.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Andres Tarasco · cdoswindows

https://www.exploit-db.com/exploits/3204

View Code ZIP pw:eip

References (9)

[Vendor Advisory] http://secunia.com/advisories/23869

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/22217

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/data/vulnerabilities/exploits/testlpc.c

[Vendor Advisory] http://support.citrix.com/article/CTX111686

[Third Party Advisory] http://www.zerodayinitiative.com/advisories/ZDI-07-006.html

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1017553

[Third Party Advisory, VDB Entry] http://osvdb.org/32958

[Vendor Advisory] http://www.vupen.com/english/advisories/2007/0328

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/458002/100/0/threaded

Scores

EPSS 0.0245

EPSS Percentile 85.3%

Details

CWE

CWE-119

Status published

Products (3)

citrix/metaframe 1.0

citrix/metaframe_presentation_server 3.0

citrix/metaframe_presentation_server 4.0

Published Jan 24, 2007

Tracked Since Feb 18, 2026