The US Department of Homeland Security (DHS) has warned of an easily exploitable security bug in Citrix's Presentation Server Client that could leave users open to attack by malicious websites.
Security firm Secunia said the bug is "highly critical" because of its wide distribution and ease of exploitation.
Citrix Presentation Server allows companies to make applications available for use from central servers. The problem is with a feature allowing the Citrix client to connect to the server via a proxy server using the Independent Computing Architecture (ICA) protocol, according to an advisory from US-CERT, part of the DHS
Read the entire article here, Citrix client lays open security hole