News

Attention to vulnerability of Citrix NetScaler(CVE-2017-14602)


Thank you for using NTT Communications Enterprise Cloud service.

The vulnerability of Citrix NetScaler which is provided as ECL2.0 load balancer menu is reported.ECL1.0 and ECL2.0 platforms carry no risk of this attack. If Customer are using a load balancer menu, please collect the latest information on vulnerability and if necessary take countermeasures against it appropriately.

Affected Version

Citrix_NetScaler_VPX_11.0-67.12_Standard_Edition
Citrix_NetScaler_VPX_10.5-57.7_Standard_Edition

Correspondence method

Please check whether access to the management interface (SNIP) is permitted only from a secure network.

If necessary, we recommend to disable administrative access with unnecessary management interfaces (1) and restrict source IP addresses to necessary management interface (2). Please note that Customer can not access NetScaler if Customer disable management access
with all management interfaces.

(1) Disable management access to the management interface (SNIP)
* Communication towards VIP which accepts the client request and transfers it to the backend servers is excluded
/en/files/loadbalancer/20170927/citrix-netscaler-vulnerability-disable-mgmt-en.pdf

(2) Restrict management access to the management interface (SNIP)
/en/files/loadbalancer/20170927/citrix-netscaler-vulnerability-acl-en.pdf

■Reference information (Citrix)
https://support.citrix.com/article/CTX227928