Critical Security Alert For Most NetScaler Devices

by Daniel Ruiz, Senior Solutions Architect

Overview

During the week of September 18th the Citrix NetScaler team reported the discovery of a critical security vulnerability and removed all affected NetScaler firmware from their download site.  As of September 25th, Citrix has replaced the software with new builds that contain the necessary fixes.

A new security bulletin has been released and can be found at https://support.citrix.com/article/CTX227928. Similarly, a CVE-2017-14602 has been released.

Helient can help you address this critical issue by:

  • Performing an investigation and assessment of your existing NetScaler environment to determine its suitability for the deployment of the new firmware
  • Preparing detailed documentation with all key settings of the existing NetScaler configuration
  • Auditing your environment for best practices security configuration per Citrix guidelines
  • Preparing and executing a plan to expedite the installation of the appropriate replacement firmware and remediation of any security issues identified
  • Providing handoff back to operations personnel, whether our Managed Services team or your staff

Next Steps

Please contact Helient if you require any assistance or have any important questions on NetScaler.