Citrix

 

Register / Login Home    Forums    Presentation Server 4.0    Latest Posts    Latest News    PSP

 Citrix Site Navigation

 Citrix Home

 Citrix Forums

 Citrix Latest Posts

 Citrix Latest Citrix News

 Citrix Presentation Server 4.5

  Citrix Presentation Server 4.5 Guides

  Citrix PS 4.5 White Papers

  Citrix PS 4.5 Hotfixes

  Citrix PS 4.5 My Experiences

 Citrix Presentation Server 4

  Citrix Installing / Configuring

  Citrix Citrix Guides

  Citrix Citrix Tips

  Citrix Citrix White Papers

  Citrix Hotfixes

  Citrix My Personal Experiences

 Citrix Misc

  Citrix Citrix Web Interface

  Citrix Pre Presentation Server 4.0

  Citrix Citrix Security Bulletins
  Citrix Citrix Client
  Citrix Citrix cca
  Citrix Citrix Printing

  Citrix ICA File
  Citrix Citrix RSS Feeds

  Citrix Contact Us

  Citrix Signup Citrix Newsletter

 
 
 Citrix Site Partners

  Citrix Citrix
  Citrix PSP
  Citrix Xbox

  Citrix Flex Developers
  Citrix Travel In Europe
  Citrix Online Hotel Reservations
  Citrix News of software
  Citrix Resources
  Citrix Linkdiy
  Citrix Web Site Development
  Citrix Fix computer problem
  Citrix Fix slow computer
  Citrix Stop Snoring

  Citrix Citrix Tips


Welcome to Citrix Guide. I hope you find our citrix articles useful

 

 Vulnerability in Advanced Access Control could result in policy bypass
 Citrix Guide Forums > Technical Library > Citrix Security Bulletins
  #1 (permalink)  
Old 04-01-2007, 10:43 AM  Vulnerability in Advanced Access Control could result in policy bypass

citrix citrix is offline

Administrator

  
Join Date: May 2006
Posts: 305

Submit Article To > Submit to Digg Submit to Reddit Submit to Furl Submit to Del.icio.us Submit to Jeqq Submit to Spurl

Vulnerability in Advanced Access Control could result in policy bypass
Severity: Medium
Description of Problem
When using Advanced Access Control, users that login in a specific way may be able to gain access to resources in violation of configured policies.
This vulnerability is present in:
  • • Access Gateway 4.2 with Advanced Access Control 4.2 (currently known as Access Gateway 4.2 Advanced Edition)
    • Advanced Access Control Option 4.0 (previously Access Gateway Enterprise 4.0)
Access Gateway Standard Edition and Access Gateway Enterprise Edition are not vulnerable to this issue.
What Customers Should Do
A hotfix has been released to address this issue. Citrix recommends that affected customers install the hotfix which can be downloaded from the following locations:
Advanced Access Control Option 4.0:
EN - http://support.citrix.com/article/CTX110293
FR - http://support.citrix.com/article/CTX111605
GE - http://support.citrix.com/article/CTX111603
JA - http://support.citrix.com/article/CTX111606
ES - http://support.citrix.com/article/CTX111604
Access Gateway 4.2 Advanced Edition:
EN - http://support.citrix.com/article/CTX110439
FR - http://support.citrix.com/article/CTX111609
GE - http://support.citrix.com/article/CTX111607
JA - http://support.citrix.com/article/CTX111610
ES - http://support.citrix.com/article/CTX111608
What Citrix Is Doing
Citrix is proactively notifying customers and channel partners about this potential security issue. An article containing the information in this bulletin is available from the Citrix Knowledge Base at http://support.citrix.com/.
Obtaining Support on this Issue
If you require technical assistance with this issue, please contact Citrix Technical Support. Information for contacting Citrix Technical Support is available at http://support.citrix.com/.
Reporting Security Vulnerabilities to Citrix
Citrix welcomes input regarding the security of its products and considers any and all potential vulnerabilities very seriously. If you would like to report a security issue to Citrix, please compose an e-mail to secure@citrix.com containing the exact version of the product in which the vulnerability was found and steps to reproduce the vulnerability.

Source
__________________
PSP
>> Vulnerability in Advanced Access Control could result in policy bypass Reply With Quote
Reply

Vulnerability in Advanced Access Control could result in policy bypass « Previous Thread | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT. The time now is 09:17 PM.


Powered by vBulletin Version 3.6.0
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
LinkBacks Enabled by vBSEO 3.0.0 RC8


GamesAdda - HealthNews - Cheat Zone - Simple Directory - PSP Forum - PSP News - PSP Downloads - Computing Tips - Contact Us - Citrix Guide - Archive - Top

Citrixguide.com is not endorsed by or affiliated with Citrix Systems, Inc. or any of it’s subsidiaries. Installing/Configuring Citrix ::
Citrix Guides :: Citrix Tips/Advanced Concepts :: Citrix White Papers :: Citrix Hotfixes :: Citrix My Experiences :: Citrix Forums