24 May 2007, 12:44

Vulnerability in Citrix Presentation Server enables network security policy bypass

The Session Reliability Service included in several Citrix products can allow attackers to connect to arbitrary ports on the server and thereby bypass security policies on devices such as firewalls, to access services that are otherwise secure. For this to occur, crafted inquiries must be sent to the service.

The company gives no further details about the vulnerability in its security report. Citrix provides hotfixes for the affected products: MetaFrame Presentation Server; Presentation Server and Access Essentials; which eliminate the vulnerabilites. These are accessible via link for the corresponding products in the company's security report. Administrators should quickly apply them to affected installations.

Also on The H:

Share this article

Vulnerability in Citrix Presentation Server enables network security policy bypass

Also on The H:

Microsoft's struggle against bugs

CSI:Internet - Open heart surgery

CSI:Internet - A trip into RAM

The H Update Check

Internet Toolkit

Monopoly madness

What's new in Linux 3.4

A Practical Internet of Things

Booting up: Tools and tips for systemd

Kernel Log: Coming in 3.4 (Part 3) - Graphics drivers

Control Centre: The systemd Linux init system

Kernel Log: Coming in 3.4 (Part 2) - Filesystems, storage and drivers

Kernel Log: Coming in 3.4 (Part 1) - Infrastructure

What's new in Linux 3.3

Building a GSM network with open source

CSI:Internet - Controlled from the beyond

Price Insight Top 10 powered by Skinflint

The H

The H open source

The H Security

The H Internet Toolkit