Citrix XenApp Online Plug-in / Receiver Code Execution Vulnerability
Last Update Date:
13 Sep 2012 10:14
Release Date:
13 Sep 2012
5159
Views
RISK: Medium Risk
TYPE: Operating Systems - VM Ware
A vulnerability has been identified in Citrix XenApp Online Plug-in and Citrix Receiver, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an unspecified error.
Successful exploitation may allow execution of arbitrary code, but requires tricking a user into opening a malicious file from an SMB or WebDAV share.
Impact
- Remote Code Execution
System / Technologies affected
- Citrix Receiver for Windows versions 3.2 and prior
- Citrix XenApp Online Plug-in for Windows versions 12.1 and prior
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Update to a fixed version.
http://support.citrix.com/article/CTX134681
Vulnerability Identifier
Source
Related Link
Share with