Citrix Receiver 4.9 Remote Code Execution Vulnerability

Summary

Citrix Workspace App before 1904 for Windows has Incorrect Access Control.

Credit:

The information has been provided by Ollie Whitehouse
The original article can be found at: https://support.citrix.com/article/CTX251986


Details

Citrix Receiver is prone to a remote code-execution vulnerability.This allows a remote attacker to exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts may result in a denial-of-service condition. 

Vulnerable Systems:

  • Citrix Receiver 4.9

CVE Information:
CVE-2019-11634

Disclosure Timeline:
Publish Date:05/22/2019

Categories: News