Unrated severityNVD Advisory· Published Apr 26, 2004· Updated Apr 16, 2026

CVE-2004-1078

Description

Stack-based buffer overflow in the client for Citrix Program Neighborhood Agent for Win32 8.00.24737 and earlier and Citrix MetaFrame Presentation Server client for WinCE before 8.33 allows remote attackers to execute arbitrary code via a long cached icon filename in the InName XML element.

Affected products

Citrix Systems/Metaframe Client
cpe:2.3:a:citrix:metaframe_client:8.0:*:win-ce:*:*:*:*:*
Citrix Systems/Program Neighborhood Agent2 versions
cpe:2.3:a:citrix:program_neighborhood_agent:8.0:*:win32:*:*:*:*:*+ 1 more
- cpe:2.3:a:citrix:program_neighborhood_agent:8.0:*:win32:*:*:*:*:*
- (no CPE)range: <=8.00.24737
Citrix Systems/Metaframe Presentation Serverllm-fuzzy
Range: <8.33

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/15108nvdPatchVendor Advisory
support.citrix.com/kb/entry.jspanvdPatchVendor Advisory
www.idefense.com/application/poi/displaynvdPatchVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000