Browse to Citrix Workspace app for Windows, LTSR Cumulative Update 3 - Citrix. And click the ^Download Citrix Workspace app for Windows button. To install Citrix Workspace LTSR, run the following command from the command line or from PowerShell. Run choco download citrix-workspace-ltsr -internalize. There is no LTSR version of Citrix Workspace Environment Management (WEM) so you should always upgrade to the latest version of WEM. From Upgrade a deployment at Citrix Docs: In-place upgrades from versions earlier than Workspace Environment Management 4.7 to version 1808 or later are not supported.
- Citrix Workspace App
Description of Problem
A vulnerability has been identified in the automatic update service of Citrix Workspace app for Windows that could result in:
A local user escalating their privilege level to that of an administrator on the computer running Citrix Workspace app for Windows.
A remote compromise of the computer running Citrix Workspace app when Windows file sharing (SMB) is enabled.
The issue has the following identifier:
This vulnerability affects the following supported versions of Citrix Workspace app for Windows:
- Citrix Workspace app 2002, 2006 and 2006.1 for Windows
- Citrix Workspace app 1912 LTSR for Windows (before CU1 Hotfix 1)
Note that this vulnerability was originally reported against a subset of the versions above. However, further investigation has discovered potential variant forms of this attack and the affected versions have been amended accordingly.
This vulnerability does not affect Citrix Workspace app on any other platforms or any supported versions of Citrix Receiver.
This vulnerability only exists if Citrix Workspace app was installed using an account with local or domain administrator privileges. It does not exist when a standard Windows user installed Citrix Workspace app for Windows.
A remote compromise is only possible when the user has enabled Windows file sharing (SMB) and only when the updater service is running. If authentication is required for SMB then an attacker must be able to authenticate before they could exploit this issue.
Users with automatic updates enabled and applied should have already been updated to a fixed version.
What Customers Should Do
The issue has been addressed in the following versions of Citrix Workspace app for Windows:
- Citrix Workspace App 2008 or later
- Citrix Workspace App 1912 LTSR CU1 Hotfix 1 (19.12.1001) and later cumulative updates
Note that these versions have been updated since the original publication of this bulletin.
Citrix strongly recommends that customers check if the version they are running has been automatically updated and, if necessary, upgrade to a fixed version as soon as possible.
The latest version of Citrix Workspace app for Windows is available from the following Citrix website location:
Sunflower audio mac download. Soundflower is a OS X system extension that allows applications to pass audio to other applications. Soundflower is easy to use, it simply presents itself as an audio device, allowing any audio application to send and receive audio with no other support needed. Soundflower is free, open-source, and runs on Mac Intel and PPC computers.
The latest LTSR version of Citrix Workspace app for Windows is available from the following Citrix website location:
Citrix would like to thank Ceri Coburn at Pen Test Partners for working with us to protect Citrix customers during both the initial disclosure of this issue and subsequent variants.
What Citrix Is Doing
Citrix is notifying customers and channel partners about this potential security issue. This article is also available from the Citrix Knowledge Center at http://support.citrix.com/.
Obtaining Support on This Issue
If you require technical assistance with this issue, please contact Citrix Technical Support. Contact details for Citrix Technical Support are available at https://www.citrix.com/support/open-a-support-case.html.
Reporting Security Vulnerabilities
Citrix welcomes input regarding the security of its products and considers any and all potential vulnerabilities seriously. For details on our vulnerability response process and guidance on how to report security-related issues to Citrix, please visit the Citrix Trust Center at https://www.citrix.com/about/trust-center/vulnerability-process.html.
|2020-09-08||Revision of fixed versions|
Citrix Workspace app CommandLine tool is a graphical user interface to help Citrix administrators configuring advanced installation options for Citrix Workspace app.
All options from https://docs.citrix.com/en-us/citrix-workspace-app-for-windows/install.html are shown using checkboxes or lists to ease their selection.
It has been designed to work with Citrix Receiver 4.7 up to Citrix Workspace app 2103.1
Installing Citrix Workspace app CommandLine
Citrix Workspace 1912 Ltsr Download For Mac
How to Use Citrix Workspace app CommandLine
When launching the tool, the below screen is shown
Select the options required to be configured during installation.
The “Store and Device integration” tab allows to configure the stores (using the “Store” button) as well as Start menu or desktop integration.
The “Miscellaneous & Auto Update” tab helps to define settings for the autoupdate feature of Citrix Workspace app, as well as other features (prelaunch, URL redirection, app protection..)
When the mouse is over an option, contextual help is displayed, providing additional information as shown below.
If “Allow stores addition” or “Allow save password” are changed to “Secure and unsecure stores”, the required registry change for this setting is included.
When clicking “Generate CmdLine”, the content of the first textbox (starting by “CitrixWorkspaceApp.exe” or “CitrixReicever.exe” based on selected version) is copied in the clipboard.
When clicking “Save as batch file”, a dialogbox pops up asking for a location to save a batch file. A .cmd file is generated with the content of the two textboxes.
Security Permissions Required by Citrix Workspace app CommandLine
Data Modified by Citrix Workspace app CommandLine
Uninstalling Citrix Workspace app CommandLine
1. Delete the folder where you unzipped the files.
Questions? Concerns? Send any feedback for this tool to [email protected]
Citrix Receiver Workspace 1912 Ltsr Download
This software application is provided to you 'as is' with no representations, warranties or conditions of any kind. You may use and distribute it at your own risk. CITRIX DISCLAIMS ALL WARRANTIES WHATSOEVER, EXPRESS, IMPLIED, WRITTEN, ORAL OR STATUTORY, INCLUDING WITHOUT LIMITATION WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE AND NONINFRINGEMENT. Without limiting the generality of the foregoing, you acknowledge and agree that (a) the software application may exhibit errors, design flaws or other problems, possibly resulting in loss of data or damage to property; (b) it may not be possible to make the software application fully functional; and (c) Citrix may, without notice or liability to you, cease to make available the current version and/or any future versions of the software application. In no event should the code be used to support of ultra-hazardous activities, including but not limited to life support or blasting activities. NEITHER CITRIX NOR ITS AFFILIATES OR AGENTS WILL BE LIABLE, UNDER BREACH OF CONTRACT OR ANY OTHER THEORY OF LIABILITY, FOR ANY DAMAGES WHATSOEVER ARISING FROM USE OF THE SOFTWARE APPLICATION, INCLUDING WITHOUT LIMITATION DIRECT, SPECIAL, INCIDENTAL, PUNITIVE, CONSEQUENTIAL OR OTHER DAMAGES, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. You agree to indemnify and defend Citrix against any and all claims arising from your use, modification or distribution of the code. V1.2.54