Lucene search
HistoryAug 06, 2008 - 5:41 p.m.
CVE-2008-3485
cve-2008-3485
vulnerability
citrix
metaframe presentation server
icabar.exe
privilege escalation
nvd
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.3 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Untrusted search path vulnerability in Citrix MetaFrame Presentation Server allows local users to gain privileges via a malicious icabar.exe placed in the search path.
Affected configurations
Node
citrixmetaframe_presentation_serverRange≤3.0
ORcitrixxpRange≤1.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| citrix:metaframe_presentation_server | citrix metaframe presentation server | le | 3.0 |
| citrix:xp | citrix xp | le | 1.0 |
Related
cvelist
cvelist
CVE-2008-3485
2008-08-06 17:05:00
CVE-2008-4676
2008-10-22 10:00:00
prion
prion
Design/Logic Flaw
2008-08-06 17:41:00
Design/Logic Flaw
2008-10-22 10:30:00
nvd
nvd
CVE-2008-3485
2008-08-06 17:41:00
CVE-2008-4676
2008-10-22 10:30:01
cve
cve
CVE-2008-4676
2008-10-22 10:30:01
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.3 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2008-3485