CVE-2005-3134

critical

Description

Citrix Metaframe Presentation Server 3.0 and 4.0 allows remote attackers to bypass policy restrictions by downloading the launch.ica file and changing the client device name (ClientName).

References

http://www.securityfocus.com/bid/14989

http://support.citrix.com/kb/entry%21default.jspa?categoryID=275&externalID=CTX107705

http://securitytracker.com/id?1014994

http://securityreason.com/securityalert/39

http://secunia.com/advisories/17032/

http://marc.info/?l=bugtraq&m=112811189420696&w=2

Details

Source: Mitre, NVD

Published: 2005-10-04

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Severity: Critical

EPSS

EPSS: 0.00791

Detections

Analytics