CVE-2006-5861

high

Description

The Independent Management Architecture (IMA) service (ImaSrv.exe) in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service (service exit) via a crafted packet that causes the service to access an unmapped memory address and triggers an unhandled exception.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/30156

http://www.vupen.com/english/advisories/2006/4429

http://www.securityfocus.com/bid/20986

http://support.citrix.com/article/CTX111186

http://securitytracker.com/id?1017205

http://secunia.com/advisories/22802

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=441

Details

Source: Mitre, NVD

Published: 2006-11-10

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High

EPSS

EPSS: 0.06611