Introduce this release to a test environment for evaluation before deploying it to a production environment. Therefore, this release might cause undesirable and unknown side effects. Testing of this release was targeted only at the affected functionality, and regression and stress testing were minimal. The fix(es) or enhancement(s) contained in this limited release will be included in a future public release of this product. Contact Citrix technical support to obtain the installer package. This limited release plug-in is available only upon request.
Important Disclaimer - Limited Release Plug-in Citrix cannot guarantee that problems resulting from the incorrect use of Registry Editor can be solved. Using Registry Editor incorrectly can cause serious problems that may require you to reinstall your operating system. Caution! This release may require you to edit the registry.Caution! After installing this version of the plug-in, you can no longer downgrade to an earlier version of the plug-in.Any known issues in Version 12.1 of the product, except for the specific issues resolved in this private online plug-in, still apply. Version 12.1 of the plug-in supports integration with Citrix Receiver 1.1, 1.2, and 2.0.
#CITRIX PLUGIN 12.1 SOFTWARE#
This private software solution is based on Version 12.1 of the Citrix online plug-in.If you are not affected by this issue in your organization, there is no benefit to installing this hotfix.
#CITRIX PLUGIN 12.1 WINDOWS#
With earlier versions of the plug-in, attempts to launch applications from the Web Interface using Windows Internet Explorer 9 fail with a sharing violation.
#CITRIX PLUGIN 12.1 UPGRADE#
Solution For versions 11.1.x, 12.1.x and 13.0.x, upgrade to 11.1.65.20, 12.1.62.23 and 13.0.82.41, or later, respectively.Filenames: CitrixOnlinePluginFull.exe, CitrixOnlinePluginWeb.exe, OnlinePlug-inMetaData.xmlįor: Citrix Online Plug-in 12.1 for Windows Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. It is, therefore, affected by multiple vulnerabilities: - Network-based denial-of-service from within the same Layer 2 network segment (CVE-2020-8299) - SAML authentication hijack through a phishing attack to steal a valid user session (CVE-2020-8300) Please refer to advisory CTX297155 for more information. Description The remote Citrix ADC or Citrix NetScaler Gateway device is version 11.1.x prior to 11.1.65.20, 12.1.x prior to 12.1.62.23 or 13.0.x prior to 13.0.82.41. Synopsis The remote device is affected by multiple vulnerabilities. Severity display preferences can be toggled in the settings dropdown. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. The calculated severity for Plugins has been updated to use CVSS v3 by default.