Unrated severityNVD Advisory· Published Dec 8, 2006· Updated Apr 23, 2026
CVE-2006-6334
CVE-2006-6334
Description
Heap-based buffer overflow in the SendChannelData function in wfica.ocx in Citrix Presentation Server Client before 9.230 for Windows allows remote malicious web sites to execute arbitrary code via a DataSize parameter that is less than the length of the Data buffer.
Affected products
1- cpe:2.3:a:citrix:presentation_server_client:*:*:windows:*:*:*:*:*Range: <=9.200
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
13- securitytracker.com/idnvdPatchVendor Advisory
- www.citrix.com/English/SS/downloads/downloads.aspnvdPatchVendor Advisory
- support.citrix.com/article/CTX111827nvdExploitPatchVendor Advisory
- www.tippingpoint.com/security/advisories/TSRT-06-15.htmlnvdExploitPatchVendor Advisory
- secunia.com/advisories/23246nvdVendor Advisory
- www.securityfocus.com/bid/21458nvdVendor Advisory
- www.kb.cert.org/vuls/id/210969nvdUS Government Resource
- fortconsult.net/files/fortconsult.dk/citrix_advisory_dec2006.pdfnvd
- securityreason.com/securityalert/1995nvd
- www.securityfocus.com/archive/1/453760/100/0/threadednvd
- www.vupen.com/english/advisories/2006/4865nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/30740nvd
- www.exploit-db.com/exploits/5106nvd
News mentions
0No linked articles in our index yet.