Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Citrix MetaFrame Server Detection

Medium

Synopsis

The remote host may give an attacker information useful for future attacks.

Description

The remote host is running Citrix MetaFrame Server. Citrix MetaFrame is a web-based application that allows and facilitates connections to other systems. There is a flaw in many versions of Citrix MetaFrame that allows authenticated users to elevate access by creating macros within Microsoft Office documents.

Solution

Ensure that this instance of Citrix MetaFrame is allowed with respect to corporate policies and guidelines. In addition, ensure that the Citrix MetaFrame server is patched to the latest revision.