CVE-2011-2883

Name of the Vulnerable Software and Affected Versions Citrix Access Gateway Enterprise Edition versions 8.1 through 8.1-67.7 Citrix Access Gateway Enterprise Edition versions 9.0 through 9.0-70.5 Citrix Access Gateway Enterprise Edition versions 9.1 through 9.1-96.4

Description The issue allows man-in-the-middle attackers to execute arbitrary code via HTTP header data referencing a DLL that was signed with a crafted certificate. This is due to the NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx attempting to validate signed DLLs by checking the certificate subject, not the signature.

Recommendations For Citrix Access Gateway Enterprise Edition versions 8.1 through 8.1-67.7, update to version 8.1-67.7 or later. For Citrix Access Gateway Enterprise Edition versions 9.0 through 9.0-70.5, update to version 9.0-70.5 or later. For Citrix Access Gateway Enterprise Edition versions 9.1 through 9.1-96.4, update to version 9.1-96.4 or later.