CVE-2011-2592 in Access Gateway Plugininfo

Summary

Heap-based buffer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise Edition Plug-in for Windows 9.x before 9.3-57.5 and 10.0 before 10.0-69.4 allows remote attackers to execute arbitrary code via a long CSEC HTTP response header.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

ID	Vulnerability	CWE	Exp	Cou	CVE
5906	Citrix Access Gateway Plugin nsepa.exe StartEPA memory corruption	119	Proof-of-Concept	Official fix	CVE-2011-2592

Reservation

06/29/2011

Disclosure

06/18/2014

Status

Confirmed

Entries

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-2592
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-2592
CVE Details	https://www.cvedetails.com/cve/CVE-2011-2592/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!