Many Proof-of-concept exploits has been released for the unpatched remote-code-execution vulnerability in the Citrix Application Delivery Controller and Citrix Gateway products. Below a list of useful links/quotes/posts on this topic. The vulnerability The vulnerability (CVE-2019-19781), already packs a double-punch in terms of severity: Researchers say it is extremely easy to exploit, and affects all supported versions of Citrix Gateway products and Citrix ADC, a purpose-built networking appliance meant to improve the performance and security of applications delivered over the web. hich Threatpost reported on in December, “The vulnerability allows an unauthenticated remote attacker to execute arbitrary code on the system,”…
Article Link: https://www.andreafortuna.org/2020/01/14/cve-2019-19781-my-clippings-on-the-infamous-citrix-netscaler-vulnerability/