New hotfixes for XenApp Commands for Citrix XenApp 6.0 and 6.5

Citrix has released hotfix DSCXACmd650WX64001 for XenApp 6.5 and DSCXACmd600W2K8R2X64004 gfor XenApp 6.0.

Here you can find the fixes which come with these releases:

DSCXACmd600W2K8R2X64004 for XenApp 6.0

HDX Monitor 3.0 tool released

HDX Monitor 3.0 is a helpful monitoring and diagnostic tool for HDX components.

Background

HDX Monitor 3.0 tool provides detailed information about the various HDX technologies, their performance, and diagnostics information. The following are the HDX technologies covered by this tool:

  • Thinwire (Graphics)
  • Direct 3D (Graphics)
  • Media Stream (aka RAVE)
  • Flash
  • Audio
  • USB Devices
  • Mapped Client Drives (CDM)
  • Branch Repeater
  • Printer
  • Client
  • Smart Card
  • Scanner
  • System

Prerequisites

  • XenApp 6.5 or greater or XenDesktop 5.5 or greater.
  • This tool may be installed on any machine on the same domain as the target system including the XenDesktop VDA or XenApp Server.

Download

Download the tool here.

Vulnerability in Citrix XenApp could result in arbitrary code execution

A vulnerability has been identified in the XML Service interface of XenApp that could potentially be used by a remote, unauthenticated attacker to execute arbitrary code in the context of a service account on a XenApp server. The vulnerability could potentially be exploited by sending a specially crafted packet to the vulnerable component.

This vulnerability affects Citrix XenApp versions 6.5 both with, and without, Feature Pack 1.

This vulnerability has been assigned the following CVE:

• CVE-2012-5161

Mitigating Factors

In order to exploit this issue, the attacker would need to be able to access the XML Service interface. In a normal deployment, the XML Service would not be directly exposed to the Internet.

What Customers Should Do

Hotfixes have been released to address this issue. Citrix strongly recommends that all customers install these hotfixes, which can be downloaded from the following locations:

Citrix XenApp 6.5 for Windows Server 2008 R2 with Feature Pack 1: CTX135025 – Hotfix XA650R01W2K8R2X64033 – For Citrix XenApp 6.5 for Windows Server 2008 R2 – English

Customers that are not able to upgrade to XenApp 6.5 with Feature Pack 1 may use the hotfix for the release version of XenApp 6.5 which is available at the following location: Citrix XenApp 6.5 for Windows Server 2008 R2: CTX135499 – Hotfix XA650W2K8R2X64036 – For Citrix XenApp 6.5 for Windows Server 2008 R2 – English

Read more about this vulnerability here.

Hotfix XA650W2K8R2X64036 for Citrix XenApp 6.5 released

Citrix has released a new hotfix today for XenApp 6.5.

New Fixes in This Release

  1. When changing the XML server’s logon control to prohibit logons, the Citrix XML Service might become unresponsive. As a result, connected users might not be able to enumerate applications and for authenticated users, the sessions might fail to launch.[From XA650W2K8R2X64036][#LA1787]
  2. This fix addresses a security vulnerability. For more information, see Knowledge Center article CTX135066.[From XA650W2K8R2X64036][#LA2089]
  3. This fix addresses a security vulnerability. For more information, see Knowledge Center article CTX135066.[From XA650W2K8R2X64036][#LA2325] Continue reading “Hotfix XA650W2K8R2X64036 for Citrix XenApp 6.5 released”

Hotfix XA650R01W2K8R2X64033 for Citrix XenApp 6.5 released

Citrix has released a new hotfix for XenApp 6.5.

XA650R01W2K8R2X64033 has the following fixes:

  1. When changing the XML server’€™s logon control to prohibit logons, the Citrix XML Service might become unresponsive. As a result, connected users might not be able to enumerate applications and for authenticated users, the sessions might fail to launch.

    [From XA650R01W2K8R2X64033][#LA1787]

  2. This fix addresses a security vulnerability. For more information, see Knowledge Center article CTX135066.

    [From XA650R01W2K8R2X64033][#LA2089]

  3. This fix addresses a security vulnerability. For more information, see Knowledge Center article CTX135066.

    [From XA650R01W2K8R2X64033][#LA2325]

  4. This fix addresses an issue that prevents “restricted users” (those configured with permissions to log on specifically to non-XenApp servers) from launching applications published on XenApp servers from the Web Interface.

    [From XA650R01W2K8R2X64033][#LA2678]

Fixes from Replaced Hotfixes

  1. The Citrix XML Service might become unresponsive after running continuously for several days.

    [From XA650R01W2K8R2X64005][#LA1139]

To download this hotfix or read more about the installation of this hotfix click here.

Citrix released XenApp Manager

XenApp Manager is a light weight administration app, available from the Windows Store, that lets XenApp administrators perform  session management tasks on their Citrix XenApp 6.5 farms.

From their Windows 8 desktop, laptop or tablet device, administrators can swiftly and smoothly browse, search, disconnect and reset Citrix HDX and Microsoft RDP sessions on Citrix environments with up to 10,000 sessions, managing up to 10 farms at once.

When you are ready to start managing live XenApp environments, just apply XenApp 6.5 FP1 with hotfix DSCXACmd650WX64001 (available below)  to the server used for remote management.  No other servers in the farm require this hotfix.  The XenApp Manager app requires that your device be on the corporate network or connected via a VPN.

XenApp Manager has the following features: Continue reading “Citrix released XenApp Manager”

Advanced Printing Configuration in XenApp 6.x and XenDesktop 5.x

In previous releases of XenApp, a registry flag called DefaultPrnFlags was used to modify advanced printing options. It was a single DWORD in which a particular hexadecimal value was set if an option was turned on. If two or more options were desired, the corresponding values were added together and the resultant value was stored in the registry. DefaultPrnFlags has been removed in XenApp 6.0, but the functionality it supported is still available for both XenApp and XenDesktop environments.

One of the features introduced in XenApp 6.x and XenDesktop 5.x is Active Directory integration for policies. There are many new settings that can be configured using these policy objects. Most of the functionality previously provided with DefaultPrnFlags can now be set using these policy settings. Refer to documentation on policy configuration for more information about configuring these policy settings. Continue reading “Advanced Printing Configuration in XenApp 6.x and XenDesktop 5.x”

Attempts to stream 32-bit apps fail after XA runs for a few days

Citrix has found a bug in Application Streaming client (offline client 6.7) when a XenApp server runs for several days, attempts to stream 32-bit applications fail. This is caused when Driver Mode Injection is enabled on the Streaming Client, installed on a XenApp server.

To disable Driver Mode Injection, specify the ‘DisableDriverModeInjection’ value in HKEY_LOCAL MACHINESoftwareCitrixRADE (32-bit) and HKEY_LOCAL_MACHINESoftwareWow6432nodeCitrixRADE (64bit) and set it to 1. By default, without this value, Driver Mode Injection is enabled.

  • If this value is found and is set to 1, then driver mode injection is disabled
  • If this value is found and set to value other than 1, driver mode injection is enabled
  • If this value is not found, driver mode injection is enabled

This value can be changed at runtime and does not need server restart. It affects the subsequent application launches.

Read the original article here.

Some XenApp 6.5 ZDC Replication Calculations

James Denne, a fellow Citrite, has written this great blog post I would like to share with you tonight.

With the approaching end of life date for XenApp 5, one of my customers is currently designing their XenApp 6.5 farm and asked for some assistance calculating the amount of data that would be replicated between each zone data collector.

 

Let’s detail the existing environment:

  • XenApp 5 Feature Pack 2
  • Hotfix Rollup Pack 7
  • 350 servers
  • 14 zones in 10 countries globally.
  • Core farm infrastructure (SQL publisher datastore, licence server) located in the same datacentre as the “UK 5″ zone.

Here are the zone names and the average number of user logons per day.

Read his entire post here.

Lifecycle milestone update to XenApp 5 for server 2008

In late September, Microsoft announced a change to their lifecycle support for the Windows Server 2008 operating system. This change added 18 months to the Windows Server 2008 mainstream support, moving its end of mainstream support date from Jul 9, 2013 to Jan 13, 2015. You can find more information about this lifecycle milestone change from the Microsoft lifecycle page.

As a result of this change to the Windows Server 2008, Citrix has also adjusted the end of life for XenApp 5 for Windows Server 2008 by 18 months, to Jan 13, 2015. This change was made to XenApp 5 for Windows Server 2008 because we understand many customers fully leverage the Microsoft platform during Microsoft’s Mainstream Support period.

Read more about Cris Lau’s blog here.