Intrusion Prevention



This indicates an attack attempt to exploit a External Entity Injection Vulnerability in Citrix XenMobile Server.
A remote attacker could exploit this vulnerability by sending malicious XML data to the target server. Successful exploitation could result in the disclosure of file content on the target machine.

Affected Products

Citrix XenMobile Server 10.8 before RP2
Citrix XenMobile Server 10.7 before RP3


Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.

CVE References