CVE-2001-0716 — Citrix Metaframe vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

1.1%

top 21.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Citrix Metaframe

Timeline

PublishedDec 6

Latest updateApr 30

Description

Citrix MetaFrame 1.8 Server with Service Pack 3, and XP Server Service Pack 1 and earlier, allows remote attackers to cause a denial of service (crash) via a large number of incomplete connections to the server.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDcitrix/metaframexp_server_service_pack_1+2

Patches

Patch: xforce.iss.net ↗Patch: xforce.iss.net ↗

🔴Vulnerability Details

GHSA

GHSA-cjp9-x9jx-mcw7: Citrix MetaFrame 1↗2022-04-30

▶

📋Vendor Advisories

Citrix

CVE-2001-0716: Citrix MetaFrame 1.8 Server with Service Pack 3, and XP Server Service Pack 1 and earlier, allows remote attackers to cause a denial of service (crash↗2001-12-06

▶