KLA10110
ACE vulnerability in Citrix
Updated: 05/22/2020
Detect date
?
08/11/2010
Severity
?
Critical
Description

An unspecified vulnerability was found in Citrix products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at a point related to the ICA graphics packet via a specially designed HTML or ICA document.

Affected products

Citrix Xenapp & Xendesktop Online plug-in versions 11.1 and earlier for Windows
Citrix Xenapp & Xendesktop Online plug-in versions 10.0 and earlier for MacOS
Citrix ICA Client versions 11.0 and earlier for Linux
Citrix ICA Client versions 8.62 and earlier for Solaris
Citrix Receiver versions 11.0 and earlier for Windows Mobile  

Solution

Update to latest version

Original advisories

Citrix bulletin

Impacts
?
ACE 
[?]
Related products
Citrix ICA Clients
Citrix XenApp
Citrix Receiver for Windows
CVE-IDS
?
CVE-2010-29909.3Critical