Knowledge Center Home > Security Bulletins

Security Bulletins

1
2
3
Next >

Security Bulletins	Created	Modified	Read	Rating
Transport Layer Security Renegotiation Vulnerability Description of Problem A vulnerability has been discovered in the Transport Layer Security (TLS) and Secure Socket Layer (SSL) protocols that could allow an attacker to inject malicious ... CTX123359	11/10/09	11/19/09	2,085
Vulnerability in Citrix Online Plug-ins and ICA Clients Could Result in SSL/TLS Certificate Spoofing Severity : High Description of Problem A vulnerability has been identified in the Citrix Online Plug-ins and ICA Clients for XenApp and XenDesktop that could allow an attacker ... CTX123248	11/9/09	11/10/09	3,233	Unrated
Vulnerability in Citrix NetScaler, Citrix NetScaler Application Firewall and Citrix Access Gateway Enterprise Edition could result in Denial of Service. Severity : High Description of Problem A vulnerability has been identified in components of the Citrix NetScaler, NetScaler Application Firewall and Access Gateway Enterprise E... CTX123060	11/2/09	11/4/09	2,745	Unrated
Reporting Security Vulnerabilities to Citrix Report all security vulnerabilities to secure@citrix.com . Citrix welcomes input regarding the security of its products and considers any and all potential vulnerabilities seriously. If... CTX081743	3/28/02	10/20/09	47,117
Vulnerability in Citrix Secure Gateway could result in Denial of Service Severity : Medium Description of Problem A vulnerability has been identified in Citrix Secure Gateway that could result in a denial of service. When a specific request is ... CTX121172	6/15/09	6/17/09	9,271	Unrated
Vulnerability in Citrix Password Manager could result in information disclosure Severity : Low Description of Problem A vulnerability has been identified in Citrix Password Manager that could allow a user to access their own stored secondary credentials. I... CTX120743	5/27/09	5/27/09	6,229
Weakness in the Default Configuration of NetScaler Access Gateway Enterprise Edition Could Result in Unauthorized Access to Network Resources Severity : Medium Description of Problem A weakness has been identified in the default configuration of the NetScaler Access Gateway Enterprise Edition appliance firmware that ... CTX118770	5/5/09	5/5/09	6,457	Unrated
Cross-Site Scripting Vulnerability in Citrix Web Interface Severity : Medium Description of Problem A cross-site scripting vulnerability has been identified in specific versions of Citrix Web Interface. This vulnerability could po... CTX120697	4/21/09	4/28/09	7,272	Unrated
Security Update to Citrix License Server Severity : Medium Description of Problem An update has been made to the Licensing Management Console component of the Citrix License Server. The new version of the License... CTX120742	4/28/09	4/28/09	7,945
Vulnerability in XenApp 4.5 Hotfix Rollup Pack 3 could result in policy bypass Severity : Medium Description of Problem A vulnerability has been identified in XenApp (formerly Presentation Server) 4.5 Hotfix Rollup Pack 3 that could result in an access po... CTX118792	4/22/09	4/22/09	7,566
Vulnerability in XenServer could result in privilege escalation and arbitrary code execution Severity : Medium Description of Problem A vulnerabilitly has been identified in Citrix XenServer that could result in attackers escaping a guest domain and potentially executi... CTX118766	11/17/08	1/29/09	9,197
Vulnerability in Citrix Broadcast Server could result in SQL injection Severity : High Description of Problem A vulnerability has been identified in the Web-based management interface of Citrix Broadcast Server, a component of the Citrix Applicati... CTX119315	12/12/08	12/14/08	7,138
Vulnerability in Citrix Web Interface 5.0 for Java Application Servers could result in failure to terminate Web Interface user sessions Severity : Medium Description of Problem A vulnerability has been identified in Citrix Web Interface 5.0 for Java Application Servers that could result in the disconnection pro... CTX118768	10/24/08	10/27/08	7,802	Unrated
Vulnerability in Citrix Presentation Server for Windows could result in privilege escalation Severity : Low Description of Problem A vulnerability has been identified in Citrix Presentation Server for Windows that could result in an authenticated interactive user escal... CTX116310	9/29/08	9/29/08	7,020	Unrated
Vulnerability in Access Gateway Standard and Advanced Edition Appliance firmware could result in DNS Cache Poisoning Severity: Medium Description of Problem A vulnerability has been identified in the Access Gateway Standard and Advanced Edition appliance firmware that could affect the functionality of ... CTX118183	9/2/08	9/14/08	6,175
Vulnerability in NetScaler and Access Gateway Enterprise Edition could result in DNS Cache Poisoning Severity: High Description of Problem A vulnerability has been identified in the Citrix NetScaler and Access Gateway Enterprise Edition appliances that could result in Domain Name System (DNS... CTX117991	7/24/08	8/21/08	8,027
Privilege Escalation Vulnerability in Citrix Deterministic Network Enhancer (dne2000.sys) Severity : Low Description of Problem A vulnerability has been identified in the Citrix Deterministic Network Enhancer (DNE) which, when exploited, could result in an escalation of p... CTX117751	7/18/08	7/18/08	6,778
Cross-site scripting vulnerability in XenServer XenAPI HTTP Interfaces Severity : Low Description of Problem A cross-site scripting vulnerability has been identified in XenServer’s XenAPI HTTP interfaces. When a specially constructed URL is sent to... CTX117814	7/16/08	7/16/08	4,635
Vulnerability in Citrix Presentation Server could result in cryptographic settings not being correctly enforced Severity : Medium Description of Problem The ICA protocol offers configurable encryption capabilities, known as SecureICA and ICA Basic encryption, that can be used to secure t... CTX114893	5/12/08	5/14/08	9,004
Vulnerability in Citrix Presentation Server could allow authenticated users to gain unauthorized access to a desktop session Severity : Medium Description of Problem Citrix Presentation Server provides access control to both published applications and published desktops. Under specific circumstances,... CTX116941	5/12/08	5/14/08	14,774
Vulnerability in Access Gateway Standard Edition and Advanced Edition appliance firmware could result in authentication bypass Severity : High Description of Problem A vulnerability exists in Access Gateway that, in certain configurations, could allow unauthenticated access to network resources. ... CTX116930	5/9/08	5/12/08	7,593
Vulnerabilities in Access Gateway Advanced Edition could allow redirection to arbitrary web sites Severity : Medium Description of Problem Vulnerabilities have been identified in Access Gateway Advanced Edition that may allow an attacker to redirect a user to an arbitrary w... CTX113816	7/19/07	4/23/08	11,337
Vulnerabilities in Access Gateway Advanced Edition could result in information disclosure and session hijacking Severity : Medium Description of Problem When using Access Gateway Advanced Edition, residual information left on the client device could allow an attacker to gain unauthorized... CTX113814	7/19/07	4/23/08	13,734
Vulnerability in Citrix Presentation Server could result in unauthorized code execution Severity : Medium Description of Problem: If an authorized user can be lured into invoking an ICA connection to Citrix Presentation Server, it may be possible for an attacker t... CTX115245	11/14/07	3/28/08	17,913
Credential Handling Weakness in Presentation Server Client for Windows Severity : Low Description of Problem Under some circumstances, the Citrix Presentation Server Client for Windows may leave residual credential information in the client proces... CTX116227	3/10/08	3/10/08	8,783
Weakness in Citrix Presentation Server and Citrix Desktop Server installer could result in credentials being logged Severity : Low Description of Problem Under specific circumstances, the installation process for Citrix Presentation Server 4.5 and Citrix Desktop Server 1.0 could result in da... CTX116228	2/27/08	2/27/08	7,694
Vulnerability in Presentation Server's IMA Service could result in arbitrary code execution. Severity : High Description of Problem The IMA service is used by Citrix Presentation Server for inter-sever and management communications. Sending a specifically crafted packe... CTX114487	1/15/08	1/15/08	24,478
Cross-site scripting vulnerability in legacy versions of Citrix Web Interface Severity : Medium Description of Problem A cross-site scripting vulnerability has been identified in the on-line help of legacy versions of Citrix Web Interface. This vuln... CTX115283	12/18/07	12/18/07	5,719
Weakness in Citrix EdgeSight for Endpoints and Citrix EdgeSight for Presentation Server could result in information disclosure Severity : Low Description of Problem A weakness has been identified in Citrix EdgeSight for Presentation Server server and Citrix EdgeSight for Endpoints server. This weaknes... CTX115281	12/4/07	12/4/07	5,035	Unrated
Vulnerability in the web-based Configuration Utility of NetScaler and Access Gateway Enterprise Edition Description Citrix is releasing this Security Bulletin in response to recently published information relating to security issues affecting NetScaler and Access Gateway Enterprise Edi... CTX115496	11/29/07	11/29/07	6,131	Unrated

1
2
3
Next >

Knowledge Center

Advanced Search

Products

XenApp

XenDesktop

XenServer

Essentials for Hyper-V

NetScaler Application Delivery

Knowledge Resources

Resources

Please sign in to access your feeds, alerts and all other subscriptions.
Subscribe to Feed
Receive Security Alerts