Citrix Provisioning Services Security Update Released

Citrix has released hotfixes for their Citrix Provisioning Services product to fix possible remotely exploitable security issue.

UPDATE 22 Feb 2011 – There is a commercial-grade exploit available for this now (in the Core Impact pentest product).

References:
[version 5.6] http://support.citrix.com/article/CTX127149
[version 5.1 SP2] http://support.citrix.com/article/CTX127164
[version 5.1 SP1] http://support.citrix.com/article/CTX127155
[version 5.1] http://support.citrix.com/article/CTX127175

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

Leave a Reply