Threat Level: green Handler on Duty: Bojan Zdrnja

SANS ISC: Citrix Access Gateway Advanced Access Control remote and local vulnerability reported - SANS Internet Storm Center SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Citrix Access Gateway Advanced Access Control remote and local vulnerability reported
FrSIRT is reporting a serious remotely and locally exploitable vulnerability, Citrix Access Gateway Advanced Access Control LDAP Authentication Bypass, "which could be exploited by attackers to gain unauthorized access to a vulnerable application without supplying valid credentials.". At this time FrSIRT's links to Citrix are dead and I can't find any related information at Citrix.
UPDATE We were notified by Jerry that the FrSIRT links were working as of Saturday evening, September 16. Thanks Jerry.

Patrick

193 Posts

Sign Up for Free or Log In to start participating in the conversation!