BibbleCoDear oh _dear_, Citrix. The most retro -- no, the most *vintage* exploit I've seen for years.
https://github.com/assetnote/exploits/blob/main/citrix/CVE-2023-4966/exploit.py
#Shitrix
JRT 
#Shitrix is a gift that keeps on giving!
#Citrix Bleed: Leaking Session Tokens with CVE-2023-4966
https://www.assetnote.io/resources/research/citrix-bleed-leaking-session-tokens-with-cve-2023-4966?trk=feed-detail_comments-list_comment-text
#Citrix Bleed: Leaking Session Tokens with CVE-2023-4966
https://www.assetnote.io/resources/research/citrix-bleed-leaking-session-tokens-with-cve-2023-4966?trk=feed-detail_comments-list_comment-text
Citrix Bleed: Leaking Session Tokens with CVE-2023-4966
It's time for another round Citrix Patch Diffing! Earlier this month Citrix released a security bulletin which mentioned "unauthenticated buffer-related vulnerabilities" and two CVEs. These issues affected Citrix NetScaler ADC and NetScaler Gateway.
Erich M.@percepticon Geh, ned schon wieder #Shitrix
DrRetro
Mark SemmlerUnd wieder ein #Shitrix - Bug. Leute, patcht Eure #CITRIX - Installationen JETZT!
Mehr Infos zB vom #BSI: https://www.bsi.bund.de/SharedDocs/Cybersicherheitswarnungen/DE/2022/2022-283832-1032.pdf?__blob=publicationFile&v=3
Mehr Infos zB vom #BSI: https://www.bsi.bund.de/SharedDocs/Cybersicherheitswarnungen/DE/2022/2022-283832-1032.pdf?__blob=publicationFile&v=3
Tig3rch3n
Caitlin CondonAnyone seeing #Shitrix #CVE202227510 exploitation yet?
Raphael
CERT.atCitrix Gateway und Citrix ADC jetzt patchen
https://cert.at/de/aktuelles/2022/11/citrix-gateway-und-citrix-adc-jetzt-patchen #ITSecurity #Citrix #Shitrix
https://cert.at/de/aktuelles/2022/11/citrix-gateway-und-citrix-adc-jetzt-patchen #ITSecurity #Citrix #Shitrix
@gossithedog mainly VPN Gateways affected but ye.. btw i have to manage a Netscaler here lol
#Shitrix i love it!
#Shitrix i love it!