Vigil@nce: Citrix XenApp, bypassing access policy
March 2012 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
When the Hotfix Rollup Pack 3 is installed, and when Access
Gateway Advanced Edition filters are used, an attacker can bypass
the access policy.
– Severity: 2/4
– Creation date: 12/03/2012
IMPACTED PRODUCTS
– Citrix XenApp
DESCRIPTION OF THE VULNERABILITY
When the Hotfix Rollup Pack 3 is installed, and when Access
Gateway Advanced Edition filters are used, an attacker can bypass
the access policy.
Technical details are unknown.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Citrix-XenApp-bypassing-access-policy-11422