Citrix Studio < 7.6.1000 Insecure Access Policy Configuration (CTX213045)
Medium Nessus Plugin ID 92038
SynopsisThe remote host is affected by a security bypass vulnerability.
DescriptionThe version of Citrix Studio, bundled with Citrix XenApp or XenDesktop, is prior to 7.6.1000. It is, therefore, affected by an unspecified security bypass vulnerability. An unauthenticated, remote attacker can exploit this to set Access Policy rules on the XenDesktop Delivery Controller, resulting in an insecure Access Policy configuration.
SolutionSee vendor advisory for update information.