DTLS DDos Attacks: new Citrix ADC / Gateway Firmware available
Related to the article Current DDoS Attacks against Citrix ADC / Gateway, Citrix released yesterday (Jan 5) new firmware images for ADC / Gateway 11.1, 12.1 and 13.0, available on …
Category: Security
Security
Current DDoS Attacks against Citrix ADC / Gateway
Do you remeber December 2019? Or even early January 2020? Those CVE-2019-19781 vulnerability, later known as “Shitrix”? Pretty sure, you will. Well, since Dec 19th we see massive DTLS DDoS …
Citrix ADC / Gateway Security Update
On Sep 17, Citrix released CTX281474 article. There are in total three vulnerabilites found which are fixed by new firmware.
Unpatched Vulnerability with Citrix ADC / Gateway!
Just before xmas holidays, Citrix released CTX267027 announcing a remote code exection vulnerability with their ADC and Gateway products, formerly NetScaler and NetScaler Gateway.
X.509 Certificate Turorial
As we all need to deal with certificate in multiple colors, it may a good idea to have a look at the X.509 Certificate Tutorial, posted on Adam the Automator. …
Citrix License Server Vulnerabilities
Yesterday, Sep 25, Citrix reported multiple Dnieal-of-Service vulnerabilities with License Server for Windows and VPX, so an attacker may be able to enforce a vendor service shutdown: CVE-2018-20031: A Denial …
SD-WAN Multiple Security Updates
Yesterday (Oct, 22 2018), Citrix released CTX236992 which describes multiple security vulnerabilites with Citrix SD-WAN. Those may allow an attacker to get access to the SD-WAN appliance’s management interface. The …
NetScaler ADC / Gateway Security Updates
There are some security patches needed to fix new vulnerabilities found with NetScaler ADC and NetScaler Gateway, see CTX232161 article. Please find below the the corresponding CVEs covered by the …
Meltdown & Spectre Processor Vulnerabilities
When it comes to the latest security vulnerabilities, these days we hear about things like “Meltdown”, “Spectre” and “Side Chain Vulnerabilities”, all with reference to CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754. Citrix, …
NetScaler 10.5 to 12.0 affected by two TLS Vulnerabilities
Yesterday, Citrix released two Security Bulletins related to TLS vulnerabilities with Citrix NetScaler v10.5 up to 12.0. These are: CTX230238 (CVE-2017-17382): TLS Padding Oracle Vulnerability in Citrix NetScaler Application Delivery …