Citrix XenMobile Worx components for iOS: Worx Home for iOS version 8.7 uses a vulnerable version of OpenSSL.
CITRIX 4.5 FOR MAC ANDROID
Wrapped Android applications make use of the underlying Android version of OpenSSL, Citrix advises customers to check with their device vendors to ensure that the underlying Android version is not vulnerable to CVE-2014-0160. Citrix has released a new version of the MDX Toolkit & SDK for iOS and Android Build MDX Toolkit this can be found on the Citrix website at the following address. Outgoing micro VPN network connections to Access Gateway from iOS applications that were wrapped, or Worx SDK enabled, with this version will be encapsulated in a TLS connection that uses a vulnerable version of OpenSSL. Enterprise-ready mobile apps on the Worx App Gallery that use this version of Worx SDK also use a vulnerable version of OpenSSL.
These patches can be found on our website at the following locations: Citrix recommends customers deploy these patches as soon as possible. An updated version of this component has been released to address this issue. HDX RealTime Optimization Pack for Microsoft Lync 2010: This component is vulnerable to CVE-2014-0160.The following sections of this advisory provide impact information on each product.
The issue has been assigned the following CVE identifier and is also known as the Heartbleed vulnerability:Ĭitrix has analyzed the impact of this issue on currently supported products. A vulnerability has been recently disclosed in OpenSSL that could result in remote attackers being able to obtain sensitive data from the process address space of a vulnerable OpenSSL server or client.
0 kommentar(er)
