Skip to main content

Citrix XenApp Online Plug-in / Receiver Code Execution Vulnerability

Last Update Date: 13 Sep 2012 10:14 Release Date: 13 Sep 2012 5159 Views

RISK: Medium Risk

TYPE: Operating Systems - VM Ware

TYPE: VM Ware

A vulnerability has been identified in Citrix XenApp Online Plug-in and Citrix Receiver, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an unspecified error.

Successful exploitation may allow execution of arbitrary code, but requires tricking a user into opening a malicious file from an SMB or WebDAV share.


Impact

  • Remote Code Execution

System / Technologies affected

  • Citrix Receiver for Windows versions 3.2 and prior
  • Citrix XenApp Online Plug-in for Windows versions 12.1 and prior

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.


Vulnerability Identifier


Source


Related Link