Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:DIR:CITRIX-ADC-GW-RCE |
|---|---|
Severity |
Major |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Citrix ADC & Gateway Remote Code Execution |
Release Date |
2020/01/16 |
Update Number |
3244 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Citrix ADC & Gateway Remote Code Execution
This signature detects attempts to exploit a known vulnerability against Citrix ADC & Gateway. A successful attack can lead to arbitrary code execution.
Extended Description
An issue was discovered in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. They allow Directory Traversal.
Affected Products
- Citrix application_delivery_controller_firmware 10.5
- Citrix application_delivery_controller_firmware 11.1
- Citrix application_delivery_controller_firmware 12.0
- Citrix application_delivery_controller_firmware 12.1
- Citrix application_delivery_controller_firmware 13.0
- Citrix gateway_firmware 13.0
- Citrix netscaler_gateway_firmware 10.5
- Citrix netscaler_gateway_firmware 11.1
- Citrix netscaler_gateway_firmware 12.0
- Citrix netscaler_gateway_firmware 12.1
References