Citrix patches holes in XenDesktop and XenApp
Source: Heise.de added 16th Nov 2020
The updates fill two gaps. One of these can be used to remotely inject and execute code.
Citrix provides security updates for the virtualization products XenDesktop and XenApps. These remove two loopholes, one of which is (CVE – 2020 – 8270) can be used to smuggle in and execute code remotely (Remote Code Execution, RCE). To do this, however, the affected system must offer Windows file shares that the attacker can access.
The manufacturer provides further information and download links for hotfixes here: CTX 285059: Citrix Virtual Apps and Desktops Security Update.
(ju)
media: Heise.de keywords: Windows
Related posts
Notice: Undefined variable: all_related in /var/www/vhosts/rondea.com/httpdocs/wp-content/themes/rondea-2-0/single-article.php on line 88
Notice: Undefined variable: all_related in /var/www/vhosts/rondea.com/httpdocs/wp-content/themes/rondea-2-0/single-article.php on line 88
Related Products
Notice: Undefined variable: all_related in /var/www/vhosts/rondea.com/httpdocs/wp-content/themes/rondea-2-0/single-article.php on line 91
Warning: Invalid argument supplied for foreach() in /var/www/vhosts/rondea.com/httpdocs/wp-content/themes/rondea-2-0/single-article.php on line 91