[THIN] Re: Did anyone spot this Access Gateway Security Article ?
- From: "Joe Shonk" <joe.shonk@xxxxxxxxx>
- To: thin@xxxxxxxxxxxxx
- Date: Wed, 15 Nov 2006 18:18:30 -0700
This was fixed in 4.5, along with the memory leak issue.
Joe
On 11/15/06, Rick Mack <Rick.Mack@xxxxxxxxxxxxxx> wrote:
Hi M,
Funny thing is that the article describing rev 4.23 (CTX108902) doesn't
say a thing about security fixes.
Oh well, I guess the good news is it doesn't effect CAG only users :-(
The Thin List is bloody quiet. Is there anyone else out there? Jim?
regards,
Rick
Ulrich Mack
*Volante Systems, a division of Commander*
------------------------------
*From:* thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] *On
Behalf Of *M
*Sent:* Thursday, 16 November 2006 9:59 AM
*To:* Thin@xxxxxxxxxxxxx
*Subject:* [THIN] Did anyone spot this Access Gateway Security Article ?
Not sure if there is a problem with the list tonight. I dont seem to be
getting any emails .. or its very quiet.
I spotted this on the Citrix web site.
When using Advanced Access Control with an Access Gateway appliance,
unauthenticated remote users may be able to gain access to data on the
Access Gateway appliance. The information disclosed could potentially lead
to a compromise of the appliance.
http://support.citrix.com/article/CTX111695
------------------------------
This e-mail, including all attachments, may be confidential or
privileged. Confidentiality or privilege is not waived or lost because this
e-mail has been sent to you in error. If you are not the intended recipient
any use, disclosure or copying of this e-mail is prohibited. If you have
received it in error please notify the sender immediately by reply e-mail
and destroy all copies of this e-mail and any attachments. All liability
for direct and indirect loss arising from this e-mail and any attachments is
hereby disclaimed to the extent permitted by law.
------------------------------
- Follow-Ups:
- [THIN] Re: Did anyone spot this Access Gateway Security Article ?
- From: Jeff Pitsch
- References:
Other related posts:
- » [THIN] Did anyone spot this Access Gateway Security Article ?
- » [THIN] Re: Did anyone spot this Access Gateway Security Article ?
- » [THIN] Re: Did anyone spot this Access Gateway Security Article ?
- » [THIN] Re: Did anyone spot this Access Gateway Security Article ?
- » [THIN] Re: Did anyone spot this Access Gateway Security Article ?
- » [THIN] Re: Did anyone spot this Access Gateway Security Article ?
- » [THIN] Re: Did anyone spot this Access Gateway Security Article ?
- » [THIN] Re: Did anyone spot this Access Gateway Security Article ?
Hi M, Funny thing is that the article describing rev 4.23 (CTX108902) doesn't say a thing about security fixes. Oh well, I guess the good news is it doesn't effect CAG only users :-( The Thin List is bloody quiet. Is there anyone else out there? Jim? regards, Rick Ulrich Mack *Volante Systems, a division of Commander* ------------------------------ *From:* thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] *On Behalf Of *M *Sent:* Thursday, 16 November 2006 9:59 AM *To:* Thin@xxxxxxxxxxxxx *Subject:* [THIN] Did anyone spot this Access Gateway Security Article ? Not sure if there is a problem with the list tonight. I dont seem to be getting any emails .. or its very quiet. I spotted this on the Citrix web site. When using Advanced Access Control with an Access Gateway appliance, unauthenticated remote users may be able to gain access to data on the Access Gateway appliance. The information disclosed could potentially lead to a compromise of the appliance. http://support.citrix.com/article/CTX111695 ------------------------------ This e-mail, including all attachments, may be confidential or privileged. Confidentiality or privilege is not waived or lost because this e-mail has been sent to you in error. If you are not the intended recipient any use, disclosure or copying of this e-mail is prohibited. If you have received it in error please notify the sender immediately by reply e-mail and destroy all copies of this e-mail and any attachments. All liability for direct and indirect loss arising from this e-mail and any attachments is hereby disclaimed to the extent permitted by law. ------------------------------
- [THIN] Re: Did anyone spot this Access Gateway Security Article ?
- From: Jeff Pitsch