Vulnerability Details : CVE-2010-2990
Citrix Online Plug-in for Windows for XenApp & XenDesktop before 11.2, Citrix Online Plug-in for Mac for XenApp & XenDesktop before 11.0, Citrix ICA Client for Linux before 11.100, Citrix ICA Client for Solaris before 8.63, and Citrix Receiver for Windows Mobile before 11.5 allow remote attackers to execute arbitrary code via (1) a crafted HTML document, (2) a crafted .ICA file, or (3) a crafted type field in an ICA graphics packet, related to a "heap offset overflow" issue.
Vulnerability category: OverflowExecute code
Exploit prediction scoring system (EPSS) score for CVE-2010-2990
Probability of exploitation activity in the next 30 days: 2.71%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 90 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2010-2990
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
NIST |
CWE ids for CVE-2010-2990
-
The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.Assigned by: nvd@nist.gov (Primary)
References for CVE-2010-2990
-
http://www.securityfocus.com/archive/1/512861/100/0/threaded
SecurityFocus
-
http://archives.neohapsis.com/archives/fulldisclosure/2010-08/0040.html
-
http://support.citrix.com/article/CTX125975
Vulnerability in Citrix Online Plug-Ins and ICA Clients Could Result in Arbitrary Code ExecutionPatch;Vendor Advisory
Products affected by CVE-2010-2990
- cpe:2.3:a:citrix:online_plug-in_for_windows_for_xenapp_\&_xendesktop:*:*:*:*:*:*:*:*
- cpe:2.3:a:citrix:online_plug-in_for_mac_for_xenapp_\&_xendesktop:*:*:*:*:*:*:*:*
- cpe:2.3:a:citrix:ica_client_for_linux:*:*:*:*:*:*:*:*
- cpe:2.3:a:citrix:ica_client_for_solaris:*:*:*:*:*:*:*:*
- cpe:2.3:a:citrix:receiver_for_windows_mobile:*:*:*:*:*:*:*:*