#MSMQ

New Flaws in Citrix Virtual Apps Enable RCE Attacks via MSMQ Misconfiguration

by

November 12, 2024 at 10:15AM Researchers revealed vulnerabilities in Citrix Virtual Apps and Desktop, potentially allowing unauthenticated remote code execution through misconfigured permissions in the Session Recording component. Citrix has issued hotfixes for affected versions (CVE-2024-8068 and CVE-2024-8069). Microsoft warns against using BinaryFormatter due to its security risks related to deserialization. ### Meeting Takeaways – … Read more

Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing

by

June 11, 2024 at 05:36PM Microsoft has issued urgent patches for critical vulnerabilities in its Windows operating system. The most severe flaw, CVE-2024-30080, allows for remote code execution in the Microsoft Message Queuing component. Additionally, there are numerous code execution issues in Microsoft Office, Windows services, and a remote code execution vulnerability in Windows WiFi … Read more