Citrix Session Reliability service vulnerability patched
Citrix have provided patches for a bug in the Session Reliability service used in several products, that can permit an external attacker to bypass security settings and open an arbitrary TCP port on the victim's computer.
MetaFrame Presentation Server 3.0, Presentation Server 4.0, Access Essentials 1.0 and Access Essentials 1.5 are vulnerable. Patches are available for all vulnerable products.
- Vulnerability in Citrix Presentations Server's Session Reliability service could result in network security policy bypass, patch notice from Citrix