Flaw found in Citrix server client

A flaw has been found in Citrix's Presentation Server Client, an application that allows remote users to access corporate servers from outside the office. Versions older than 10.0 could be vulnerable to a buffer overflow which would enable an attacker to compromise a user's machine, according to researcher Karl Lynn of Juniper Networks, who discovered […]

A flaw has been found in Citrix's Presentation Server Client, an application that allows remote users to access corporate servers from outside the office.

Versions older than 10.0 could be vulnerable to a buffer overflow which would enable an attacker to compromise a user's machine, according to researcher Karl Lynn of Juniper Networks, who discovered the flaw. Security advisory organization Secunia has rated the vulnerability as highly critical.

The vulnerability is caused by an error in the support for ICA (Independent Computing Architecture) connections through a proxy server. This may be exploited to execute arbitrary code when a user visits a malicious Web site, Citrix warned in an advisory last week.

CNet

Microsoft, Flaw, Security, Citrix, Server, Client, Flaw