News: Cexx forums, with volunteers dedicated to helping you remove malware and stay protected
 
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
October 31, 2014, 05:22:59
Pages: [1]   Go Down
  Print  
Topic: Citrix XenServer - Shellshock Security Update  (Read 72 times)
0 Members and 1 Guest are viewing this topic.
« on: October 13, 2014, 03:57:33 »
AplusWebMaster Offline
Global Moderator WWW

Karma: 501
Posts: 8367



FYI...

Citrix XenServer - Shellshock Security Update
- https://support.citrix.com/article/CTX200223
Updated: Oct 10, 2014 - "A number of security vulnerabilities have been identified in the ‘bash’ component of Citrix XenServer. These issues include those known as ‘Shellshock’ and have the following identifiers:
CVE-2014-6271, CVE-2014-6277, CVE-2014-6278, CVE-2014-7169, CVE-2014-7186 and CVE-2014-7187.
These issues affect all supported versions of Citrix XenServer up to and including Citrix XenServer 6.2 Service Pack 1. In deployments where the Citrix XenServer host is configured to use DHCP for the host IP address allocation, this issue could allow an attacker with access to the management network to compromise the Citrix XenServer host.
Mitigating Factors: Customers that do not use DHCP to assign IP addresses to their Citrix XenServer hosts are not at risk.
What Customers Should Do: Hotfixes have been released to address these issues. Citrix recommends that affected customers install the relevant hotfixes..."

- http://atlas.arbor.net/briefs/index#-1948560475
High Severity
9 Oct 2014

 Exclamation Exclamation
Logged

This machine has no brain.
....... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.
 
Pages: [1]   Go Up
  Print  
 
Jump to:  

Powered by SMF 1.1.20 | SMF © 2013, Simple Machines Page created in 0.153 seconds with 19 queries.