MetaFrame Conferencing Manager Keyboard And Mouse Control Issue
Tuesday, 15 March 2005 by Michel Roth
A new vulnerability was identified in Citrix MetaFrame Conferencing Manager, which may be exploited by attackers to bypass certain security features. MetaFrame Conferencing Manager allows the conference host to determine which attendees can control the keyboard and mouse. In some situations conference attendees are able to gain control over the keyboard and mouse even though they have not been granted the rights to do so.

Note :Attackers would not be in a position to exploit this vulnerability unless they had already gained access to the conference. Conference users must be explicitly invited to the conference by the conference organizer before they can gain access to a conference.

Solution: Hotfix MCM300W012

Read more here.

Related Items:

Announcing BriForum Europe (18 April 2006)
BriForum 2007 Interactive Conference Guide (4 April 2007)
Citrix Solution Conference 2006 Round-up (16 November 2006)
Citrix MetaFrame Password Manager "Reveal Password" Policy Bypass (15 March 2005)
Citrix Solutions Conference Benelux 2005 (4 October 2005)
Help out Brian Madden! (17 March 2006)
BriForum Europe 2006 Call For Papers (6 June 2006)
Citrix iForum pre-conference announcements (22 October 2007)
Citrix Presentation Server And MetaFrame Print Provider Buffer Overflow Vulnerability (24 January 2007)
BriForum 2007 Website Is Live (2 November 2006)
Comments (0)add feed
Show/Hide comment formtoggle
password
 

busy