Over the past few months I've encountered Citrix in many occasions. I wrote this paper better detailing how one might subvert the security functions in place to run applications they should most likely not be running. I Think I have uncovered a flaw in the way Citrix publishes applications, but to talk with their technicians, it would have costed me 400$. Maybe this paper will change the way they handle security incidents.
It can be found at http://sh0dan.org/files/hackingcitrix.txt -wire _____________________________ For the best comics, toys, movies, and more, please visit <http://www.tfaw.com/?qt=wmf> ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
