CitrixËùÓвúÆ·´æÔÚ´úÂëÖ´Ðзì϶·çÏÕ¹«¸æ

°ä²¼¹¦·ò 2020-01-09

·ì϶±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2019-19781£¬Î£ÏÕ¼¶±ð£ºÑϳÁ£¬CVSS·ÖÖµ£º9.8


Ó°Ïì°æ±¾


Citrix ADC and Citrix Gateway version 13.0 all supported builds

Citrix ADC and NetScaler Gateway version 12.1 all supported builds

Citrix ADC and NetScaler Gateway version 12.0 all supported builds

Citrix ADC and NetScaler Gateway version 11.1 all supported builds

Citrix NetScaler ADC and NetScaler Gateway version 10.5 all supported builds


·ì϶¸ÅÊö


Citrix Systems Citrix ADC and NetScaler GatewayµÈ¶¼ÊÇÃÀ¹ú˼½Üϵͳ£¨Citrix Systems£©¹«Ë¾µÄ²úÆ·¡£Citrix ADC and NetScaler GatewayÊÇÒ»¿îÀûÓý»¸¶½ÚÔìÆ÷¡£¸Ã²úÆ·ÓµÓÐÀûÓý»¸¶½ÚÔìºÍ¸ºÔØƽºâµÈÖ°ÄÜ¡£


°²È«×¨¼ÒÔÚCitrix Application Delivery ControllerºÍCitrix Gateway²úÆ·Öз¢ÏÖÒ»¸öÑϳÁµÄ´úÂëÖ´Ðзì϶£¬¸Ã·ì϶ʹ158¸ö¹ú¶ÈµÄ³¬¹ý8Íò¼Ò¹«Ë¾Ãæ¶Ô·çÏÕ¡£ÓÉÓÚÀûÓø÷ì϶µÄ¹¥»÷ÕßÎÞÐèÉí·ÝÑéÖ¤¼´¿É½Ó¼û¹«Ë¾µÄÄÚ²¿ÍøÂ磬Òò¶ø¸Ã·ì϶ÓÈÆäΣÏÕ¡£³É¹¦ÀûÓø÷ì϶¿Éµ¼ÖÂËÁÒâ´úÂëÖ´ÐС£


·ì϶ÑéÖ¤


POC£ºÄ¿Ç°¹«¿ªÁ˲¿ÃÅPOC£¬¿ÉÔÚÊÜÓ°ÏìµÄ°æ±¾ÉÏͨ¹ýδÊÚȨµÄGETÒªÇóÖ´ÐÐĿ¼±éÀú¡£


GET /vpn/../vpns/services.html


GET /vpn/../vpns/cfg/smb.conf


ÈôÊÇ·µ»Ø HTTP/1.1 403 Forbidden ÔòÒѽ¨¸´¡£


ÖÁÓÚÈôºÎÔì³ÉÔ¶³Ì´úÂëÖ´ÐУ¬ÆäÖ»°ä²¼Á˲¿ÃÅϸ½Ú£¬Ä¿Ç°²¢Î´·¢ÏÖ¹«¿ªµÄÄܹ»ÀûÓõÄPOC¡£


½¨¸´½¨Òé


Ö»¹ÜCitrixÉÐδ°ä²¼Ð¹̼þÀ´½â¾ö¸ÃÎÊÌ⣬µ«¸Ã¹«Ë¾ÒÑ°ä²¼ÁËÒ»Ì×Õë¶Ô¶ÀÁ¢ÏµÍ³ºÍ¼¯ÈºµÄ»º½â´ëÊ©£¬²¢Ç¿ÁÒ½¨ÒéÊÜÓ°ÏìµÄ¿Í»§Ñ¡È¡ËüÃÇ£ºhttps://support.citrix.com/article/CTX267679¡£


²Î¿¼Á´½Ó


https://www.bleepingcomputer.com/news/security/critical-citrix-flaw-may-expose-thousands-of-firms-to-attacks/