Citrix.Provisioning.Services.Multiple.OpCodes.Integer.Underflow
Description
This indicates an attack attempt to exploit an Integer Underflow Vulnerability in Citix Provisioning Services.
The vulnerability is a due to insufficient sanitizing of client requests in the application allowing an attacker to send a malformed requests which results in an integer underflow leading to a stack buffer overflow. As a result, a remote attacker can exploit this to execute arbitrary code within the context of the application or possibly cause a denial of service condition.
Affected Products
Citrix Systems Provisioning Services 5.6 SP1 and earlier versions
Impact
System Compromise: Remote attackers can gain control of vulnerable systems
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |