Citrix Licensing Server 11.x Administration Console contains multiple unspecified vulnerabilities in third-party components. An attacker could gain access to the licensing administrative interface or cause a denial of service against licensing components. Exploitation requires interaction with an administrator authenticated to the Licensing Server (e.g. clicking a crafted link).
Citrix Licensing Server 11.6
Security Bypass, Disclosure of Information, Denial of Service Condition These vulnerabilities could allow an attacker to gain access to otherwise restricted components, gain access to potentially sensitive information, or cause a denial of service against components.
BeyondTrust Prevention and Detection:
- BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.
- Retina Audit 31250 - Citrix License Server Admin Components Multiple Vulnerabilities (20110222) - Win
- Retina Audit 34481 - Citrix License Server Admin Components Vulnerabilities (20110222) - UNIX
Restrict access to the Administration Console port. Administrators should avoid untrusted websites or suspicious URLs.