Citrix XenDesktop 4.x / 5.x / 7.x Unauthorized Access (CTX139591)
Medium Nessus Plugin ID 76571
SynopsisThe remote host is affected by an unauthorized access vulnerability.
DescriptionThe remote host is running a version of Citrix XenDesktop that is affected by an unauthorized access vulnerability. A flaw exists that could result in a user gaining unauthorized access to another user's desktop.
Note that this vulnerability only affects configurations when pooled random desktop groups are enabled and the 'ShutdownDesktopsAfterUse' setting is set to the non-default state of disabled.
SolutionApply the appropriate hotfix or set 'ShutdownDesktopsAfterUse' to enabled.