Tag: MacOS

MacOS Local Privilege Escalation Exploitable through Cisco AnyConnect Secure Mobility Client

Cisco Leave a comment

On May 26, 2020, Apple released a security update for MacOS Catalina, Mojave, and High Sierra. Part of this update addressed a local privilege escalation vulnerability (CVE-2020-9817).

Cisco has determined that Cisco AnyConnect Secure Mobility Client releases 4.10.00093 and earlier could be used to exploit this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-mac-priv-esc-VqST2nrT

Security Impact Rating: Informational

Related:

  • No Related Posts

Receiver for Mac Support on macOS Sierra (macOS 10.12) Beta Builds

Citrix Leave a comment

This article is intended for Citrix administrators and technical teams only.



Non-admin users must contact their company’s Help Desk/IT support team and can refer to CTX297149 for more information.


The Citrix Receiver for Mac team is working on product updates to support the upcoming release of macOS Sierra (macOS 10.12) in Fall 2016. Citrix is committed to provide zero-day compatibility for Receiver for Mac when Sierra is generally available. Zero-day compatibility means Receiver for Mac will operate with the new operating system platform from Apple at release.

In addition to zero-day compatibility, Citrix is reviewing new features that take advantage of Sierra. We will keep our customers informed as we learn more about the changes needed to support any of the new features.

The Sierra beta is available to the general public. Based on our early assessment of the current beta, we are aware of issues making ICA connections over SSL using Receiver 12.1.100 for Mac. Citrix has started to fix gaps and areas of incompatibilities with Sierra to ensure our commitment to Zero-day compatibility.

Receiver for Mac 12.2 (available August 1, 2016) does not suffer from the SSL issue on Sierra. Be aware however that Sierra beta is still not a supported platform. If Apple releases a new Sierra beta that causes Receiver for Mac to stop working, there is no guarantee that we will release a fix before the official release of Sierra. Citrix recommends that our customers not install the Sierra beta in production.

Related:

  • No Related Posts

Storefront – generating event viewer warning – ” The Receiver for Windows package file could not be found at the path”

Citrix Leave a comment
Updated the Web.config file with the correct path for the MAC receiver client on the storefront server.


1. Navigate to the following path on the storefront server C:inetpubwwwrootCitrix(storename)Web

2. Open the Web.config file.

3. Locate the Win32 and macOS file paths and update accordingly.

<pluginAssistant enabled=”true” upgradeAtLogin=”false” showAfterLogin=”false”>

<win32 path=”http://downloadplugins.citrix.com/Windows/CitrixReceiverWeb.exe” />

<macOS path=”http://downloadplugins.citrix.com/Mac/CitrixReceiverWeb.dmg”

Related:

  • No Related Posts

Error while downloding the Citrix Gateway Plugin from Downloads Tab of ADC : Forbidden you don't have permission to access

Citrix Leave a comment
Fixed with 13.0 build 41.20 where the Citrix Access gateway plugin file for MAC OS X is present under /var/netscaler/gui/vpns/scripts/mac directory despite upgrading through CLI with or without creating a director under /var/nsinstall.

Follow the below steps:

With 13.0 build 41.20:

===================

1) Copy 13.0 build 41.20 package to /var/nsinstall via CLI.

2) Extracted the package directly under /var/nsinstall ( NOTE: No need to create any directory under /var/nsinstall to save Citrix ADC firmware package)

3) Ran ./installns

RESULT: Access the NetScaler through GUI > Download Tab > Clicked on “ Download Citrix Gateway Plug-in for Mac OS X” or “Download Citrix Gateway Plug-in for Windows” > Should be able to download the files

MAC or Vista Folder found under : / var/netscaler/gui/vpns/scripts/

Work-Around for build blow 13.0

==========================

Upgrade or Downgrade through CLI by creating a folder under /var/nsinstall or upgrade or downgrade Citrix ADC firmware prior to 13.0 via GUI.

Related:

  • No Related Posts

[Storefront 3.x, 1912 or higher versions] : Storefront upgrade failing with “There was an error adding user accounts in the Administrators local group to the CitrixStorefrontAdministrators local group.”

Citrix Leave a comment
Error Details:

“There was an error adding user accounts in the Administrators local group to the CitrixStorefrontAdministrators local group. See the log files described in the article ‘Troubleshoot Storefront’ in the Storefront product documentation. Try adding these user accounts manually, then reboot the server and re-run the installer.”

From the Storefront installer log file, could see following exceptions:

Related:

  • No Related Posts

Alt+Tab Does Not Pass Through the VDI in ICA Session

Citrix Leave a comment

Caution! Refer to the Disclaimer at the end of this article before using Registry Editor.

To resolve this issue change the following registry key on the client machine:

32-bit OS:

Key: HKEY_LOCAL_MACHINESOFTWARECitrixICA ClientEngineLockdown ProfilesAll RegionsLockdownVirtual ChannelsKeyboard

Type: REG_SZ

Name: TransparentKeyPassthrough

Value: Remote

64-bit OS:

HKEY_LOCAL_MACHINESOFTWAREWOW6432NodeCitrixICA ClientEngineLockdown ProfilesAll RegionsLockdownVirtual ChannelsKeyboard

Type: REG_SZ

Name: TransparentKeyPassthrough

Value: Remote

Related:

Random machines will remain Off after a Restart Schedule is completed

Citrix Leave a comment

MaxShutdownDelayMin is defaulted to a value of 10 minutes.

Inspecting Event Viewer and CDF traces captured from the DDC, you will notice the powered off machine has exceeded the shutdown timeout period:

Worker(SID) failed to reboot/shutdown within allowed time

Related:

Receiving “Legacy System Extension” Dialog Box After Upgrading To macOS Catalina 10.15.4+

Citrix Leave a comment
USB Generic redirection is the main component utilizing kernel extensions. Apple is deprecating the use of Kernel extensions in upcoming releases of macOS.

The warning is to inform us before moving forward with the deprecation.

In the event Apple deprecates it in the next release, only Generic USB redirection will be affected, and will not allow the use of said feature.

Related:

SEP installer for Mac OS X Catalina fails

Symantec Community Leave a comment
I need a solution

Hi,

we are testing the new SEP 14.2.2MP1 and the installer for Catalina keeps giving me an error ‘The application “Symantec Endpoint Protection Installer” can’t be opened’. I checked in ‘System Preferences|Security & Privacy’ if the installer needs special permission but it is not listed there. Anyone else has seen this issue and how can it be resolved?

Thanks

0

Related:

Crashing issue with MacOS 10.15.2 and SEP 14.2.5323 RU2

Symantec Community Leave a comment
I need a solution

We are have a major problem with all our new Macs running 10.15.2 and the new SEP, once all software is installed everything runs fine, however as soon as a USB-C adaptor is connected and and ethernet cable is attached the mac stops responding, the fans cut-in and the mac shuts down, we have tried this on all our new macs with the same outcome, HELP 🙁

0

Related: