CVE-2008-3485

EUVD-2008-3471
Untrusted search path vulnerability in Citrix MetaFrame Presentation Server allows local users to gain privileges via a malicious icabar.exe placed in the search path.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 22%
Affected Products (NVD)
VendorProductVersion
citrixmetaframe_presentation_server
𝑥
≤ 3.0
citrixxp
𝑥
≤ 1.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://securityreason.com/securityalert/4110
http://www.securityfocus.com/archive/1/494952/100/0/threaded
http://www.securityfocus.com/bid/30446
https://exchange.xforce.ibmcloud.com/vulnerabilities/44490
http://securityreason.com/securityalert/4110
http://www.securityfocus.com/archive/1/494952/100/0/threaded
http://www.securityfocus.com/bid/30446
https://exchange.xforce.ibmcloud.com/vulnerabilities/44490