Citrix Provisioning Services Antivirus Best Practices

The environment may experience one or more of the following symptoms if the antivirus client is impacting either the Target Devices or PVS Servers. - Target Devices running the VDA software may appear power state unknown and no longer registered whenlooking at them via Studio or Director. -...

NetScaler Gateway Rejects RADIUS Accept Request

RADIUS authentication is configured on NetScaler Gateway. RADIUS accepts the authentication and sends the correct message however NetScaler rejects the authentication. The RADIUS log files show that the authentication is accepted. The network trace shows that a message is sent from RADIUS server...

How to Obtain SNMP MIB File for NetScaler SDX Appliance

...

CVE-2015-4000 - Citrix Security Advisory for DHE_EXPORT TLS Vulnerability

Overview A TLS protocol vulnerability has been recently disclosed that could result in attackers being able to intercept and modify SSL/TLS encrypted traffic to servers that support Diffie-Hellman based export cipher suites. This vulnerability is known as 'LogJam' and has been assigned the...

CVE-2015-0235 - Citrix Security Advisory for glibc GHOST Vulnerability

Overview A vulnerability has been recently disclosed in the glibc gethostbyname function. This issue could potentially allow an attacker to inject code into a process that calls the vulnerable function. The issue is known as the GHOST vulnerability and has been assigned the following CVE...

CVE-2014-3566 - Citrix Security Advisory for SSLv3 Protocol Flaw

Description of Problem The recently disclosed protocol flaw in SSLv3, referred to as CVE-2014-3566 or POODLE, could expose some deployments that support SSLv3 to a risk of an active Man in the Middle MITM attack. A successful attack could lead to the disclosure of the information that is being se...

CVE-2014-4700 - Vulnerability in Citrix XenDesktop could result in unauthorized access to another user's desktop

Description of Problem A vulnerability has been identified in Citrix XenDesktop that could result in a user gaining unauthorized interactive access to another user’s desktop. This vulnerability affects a specific, non-default configuration of Citrix XenDesktop 7 all versions up to and including...

CVE-2014-0160 - Citrix Security Advisory for the Heartbleed vulnerability

Overview A vulnerability has been recently disclosed in OpenSSL that could result in remote attackers being able to obtain sensitive data from the process address space of a vulnerable OpenSSL server or client. The issue has been assigned the following CVE identifier and is also known as the...

CVE-2013-6077 - Vulnerability in XenDesktop 7.0 Upgrade Could Result in Policy Bypass

Description of Problem A vulnerability has been identified in Citrix XenDesktop 7.0 that could prevent policy rules from being correctly applied following an upgrade from earlier versions of Citrix XenDesktop. This vulnerability affects deployments of Citrix XenDesktop that have been upgraded fro...

CVE-2012-5161 - Vulnerability in Citrix XenApp could result in arbitrary code execution

Description of Problem A vulnerability has been identified in the XML Service interface of XenApp that could potentially be used by a remote, unauthenticated attacker to execute arbitrary code in the context of a service account on a XenApp server. The vulnerability could potentially be exploited...