Vulnerability in Access Gateway Standard Edition and Advanced Edition appliance firmware could result in authentication bypass

By Edwin

A vulnerability exists in Access Gateway that, in certain configurations, could allow unauthenticated access to network resources.

This vulnerability is present in all versions of the Access Gateway Standard Edition (up to and including 4.5.7) and Advanced Edition (up to and including 4.5 HF2).

Access Gateway Enterprise Edition is not affected by this vulnerability.

It’s strongly recommended by Citrix to upgrade to  the appliance firmware to version 4.5.7 Rev A. This firmware upgrade can be obtained from the following location: http://support.citrix.com/article/CTX117001 

Appliance firmware versions 4.5.5, 4.5.6 and 4.5.7 should apply a patch to their current appliance firmware to correct this vulnerability. Please be aware that applying these files could cause some custom software configurations to become non-functional

Post to Twitter Tweet This Post

This entry was posted on Tuesday, May 13th, 2008 at 7:47 am and is filed under Citrix Products. You can follow any responses to this entry through the RSS 2.0 feed.

Leave a Reply

Archives

Blogroll

Tags

AAC Administrator Advanced Access Control Application delivery Brian madden Briforum CAG Chicago Citrix Citrix Products CPS CUG DUCUG Dutch Citrix User Group EPA client Eshgro hotfix hyper-v ICA Ictivity IIS Licensing Microsoft Products NetScaler Netscaler.vpx Powershell Profiles RES RES Powerfuse SBC Scripting Terminal Server thinapp Tools VDI VMware vSphere Windows 7 Xen XenApp XenApp 5.0 XenApp plugin XenDesktop XenDesktop 4 XenServer

Twitter

    Adverts