‫ Citrix XenApp Online Plug-in / Receiver Code Execution Vulnerability

IRCAD2012092184
ID: IRCAD2012092184                              
Release Date: 2012-09-12
Criticality level: Highly critical
Software:
Citrix Receiver
Citrix XenApp Online Plug-in 12.x
Description:
A vulnerability has been reported in Citrix XenApp Online Plug-in and Citrix Receiver, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an unspecified error. No further information is currently available.
Successful exploitation may allow execution of arbitrary code, but requires tricking a user into opening a malicious file from an SMB or WebDAV share.
The vulnerability is reported in Citrix Receiver for Windows versions 3.2 and prior and Citrix XenApp Online Plug-in for Windows versions 12.1 and prior.
Solution
Update to a fixed version.
References:
Secunia:
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 25 شهریور 1391

امتیاز

امتیاز شما
تعداد امتیازها:0