{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-02-28T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Citrix Presentation Server Client for Windows before 10.0 allows remote web sites to execute arbitrary code via unspecified vectors, related to the implementation of ICA connectivity through proxy servers."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "citrix-ica-code-execution(32754)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32754"}, {"name": "24350", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/24350"}, {"name": "VU#798364", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/798364"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.citrix.com/article/CTX112589"}, {"name": "1017712", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1017712"}, {"name": "ADV-2007-0784", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/0784"}, {"name": "33833", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/33833"}, {"name": "22762", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/22762"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-1196", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in Citrix Presentation Server Client for Windows before 10.0 allows remote web sites to execute arbitrary code via unspecified vectors, related to the implementation of ICA connectivity through proxy servers."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "citrix-ica-code-execution(32754)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32754"}, {"name": "24350", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/24350"}, {"name": "VU#798364", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/798364"}, {"name": "http://support.citrix.com/article/CTX112589", "refsource": "CONFIRM", "url": "http://support.citrix.com/article/CTX112589"}, {"name": "1017712", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1017712"}, {"name": "ADV-2007-0784", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/0784"}, {"name": "33833", "refsource": "OSVDB", "url": "http://osvdb.org/33833"}, {"name": "22762", "refsource": "BID", "url": "http://www.securityfocus.com/bid/22762"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T12:50:35.234Z"}, "title": "CVE Program Container", "references": [{"name": "citrix-ica-code-execution(32754)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32754"}, {"name": "24350", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/24350"}, {"name": "VU#798364", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/798364"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.citrix.com/article/CTX112589"}, {"name": "1017712", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1017712"}, {"name": "ADV-2007-0784", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/0784"}, {"name": "33833", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/33833"}, {"name": "22762", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/22762"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-1196", "datePublished": "2007-03-02T19:00:00", "dateReserved": "2007-03-02T00:00:00", "dateUpdated": "2024-08-07T12:50:35.234Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:citrix:presentation_server_client:*:*:windows:*:*:*:*:*", "matchCriteriaId": "A4D7FFE0-939F-4A9A-8FA2-B9AA812E87A7", "versionEndIncluding": "9.200", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Citrix Presentation Server Client for Windows before 10.0 allows remote web sites to execute arbitrary code via unspecified vectors, related to the implementation of ICA connectivity through proxy servers."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Citrix Presentation Server Client para Windows anterior a 10.0 permiet a sitios web remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de vectores no especificados, relacionado con la implementaci\u00f3n de conectividad ICA a trav\u00e9s de servidores proxy."}], "evaluatorSolution": "Upgrade to Citrix Presentation Server Client for Windows version 10.0:\r\nhttp://www.citrix.com/English/SS/downloads/downloads.asp?dID=2755 \r\n", "id": "CVE-2007-1196", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-03-02T21:18:00.000", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/33833"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/24350"}, {"source": "cve@mitre.org", "url": "http://support.citrix.com/article/CTX112589"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/798364"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/22762"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1017712"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/0784"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32754"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/33833"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/24350"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://support.citrix.com/article/CTX112589"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/798364"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/22762"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id?1017712"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2007/0784"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32754"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}