Citrix NetScaler / Access Gateway安全绕过漏洞
Citrix NetScaler / Access Gateway安全绕过漏洞
发布日期:2013-04-25
更新日期:2013-04-28
受影响系统:
Citrix Access Gateway 9.x
Citrix NetScaler 9.x
描述:
--------------------------------------------------------------------------------
CVE(CAN) ID: CVE-2013-2767
Citrix NetScaler是一款网络流量管理产品,Citrix Access Gateway是一款通用的SSL VPN设备。
Citrix NetScaler / Access Gateway存在安全漏洞,可使远程攻击者未经授权即可访问网络资源。
<*来源:HyeongKwan Lee
链接:http://secunia.com/advisories/53200/
http://support.citrix.com/article/CTX137238
*>
建议:
--------------------------------------------------------------------------------
厂商补丁:
Citrix
------
Citrix已经为此发布了一个安全公告(CTX137238)以及相应补丁:
CTX137238:Vulnerability in Citrix NetScaler Access Gateway Enterprise Edition Could Result in Unauthorized Access to Network Resources
链接:http://support.citrix.com/article/CTX137238
补丁下载:https://www.citrix.com/downloads/netscaler-adc/firmware.html
评论暂时关闭