Citrix XenApp and XenDesktop XML Service Interface Remote Code Execution Vulnerability
Severity: : Critical
Advisory Date: 21 de июля de 2015
DESCRIPTION
Citrix XenApp and XenDesktop are prone to a remote code-execution vulnerability.
An attacker can exploit this vulnerability to execute arbitrary code in the context of a service account on the vulnerable server.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1004763
Trend Micro Deep Security DPI Rule Name: 1004763 - Citrix XenApp And XenDesktop XML Service Interface Remote Code Execution Vulnerability
AFFECTED SOFTWARE AND VERSION:
- Citrix XenApp
- Citrix XenDesktop