Developers: | Citrix Systems |
Date of the premiere of the system: | 2013 |
Last Release Date: | 2020/08/12 |
Technology: | Mobile Device Management (MDM), Virtualization |
Content |
Main article: Mobile Device Management (MDM), Enterprise Mobility Management (EMM), Mobile device management
2020: Elimination of the vulnerability allowing to read any files which are outside a root directory of the Web server
The expert of Positive Technologies Andrey Medov detected vulnerability in a management system for the corporate mobile devices Citrix XenMobile. The company reported about it on August 11, 2020. Upon transition to specially created address the malefactor could read any files which are outside a root directory of the Web server including files of a configuration and encryption keys of confidential data. Operation of vulnerability does not require authorization.
Vulnerability with identifier CVE-2020-8209 was revealed in the Citrix XenMobile Server component. It belongs to the class Path Traversal (an exit out of directory limits) and is connected with insufficient verification of input data.
Operation of this vulnerability allows to obtain information which can be useful when overcoming perimeter as the domain account for connection to LDAP is often stored in a configuration file — the expert of Positive Technologies Andrey Medov tells. — The removed malefactor can use data retrieveds for authentication on other external resources of the company: in corporate mail, VPN, web applications. Besides, having read the configuration file attacking can get access to important data, for example to the password from the database (by default — from local PostgreSQL, in certain cases — from deleted with SQL Server). However, considering that the database is in corporate perimeter and outside not to be connected to it, this vector can be used unless in the difficult attacks, for example by means of the accomplice in the company. |
Vulnerabilities are subject to Citrix XenMobile from version 10.8 till 10:12 a.m. The Citrix company released upgraded version of a product in which this error is corrected, and recommends to set it as soon as possible.
2016
Citrix XenMobile 10.3.5
XenMobile 10.3.5 (it is released at the beginning of May, 2016) continues to strengthen the option Citrix MAM which allows IT specialists to distribute applications in a protect mode without the need for registration of personal devices in a corporate system of Mobile Device Management (MDM). This opportunity is key advantage for employees who reluctantly register the personal devices in the system of the company and install the client software programs MDM. It also represents advantage to those companies which have no right to install the client software program MDM on devices of users because of need of preserving of confidentiality.
Citrix also represents Secure Forms, a new feature of XenMobile which allows business managers and IT specialists easily and just to digitalize certain workflows, transforming traditional paper documents to the protected mobile mini-applications without the need for writing of a branching program code. Using new functionality it will be possible to accelerate accomplishment of routine tasks in a protect mode: police officers will be able quickly to write out penalties for speeding, the medical personnel will be able quickly to prepare requests and statements, specialists of control of check of airplanes and the staff of insurance companies will be able to transform reporting documentation to simple mobile applications in use which will allow to refuse paper document flow and to increase productivity of work.
One click on the button IT specialists will have an opportunity to publish mini-applications which the users registered in XenMobile on the smartphones and tablets can use. Using Secure Forms specialists will be able to configure a configuration and to apply necessary politicians of protection in the same way, as well as during the work with other mobile applications of Citrix.
XenMobile 10.3 with the unified support of the user devices
XenMobile 10.3 transfers functions of the unified control of end devices to the forefront. For the first time, thanks to XenMobile, IT specialists had an opportunity to easily manage and carry out the accounting of a broad spectrum of mobile devices, including notebooks under management Windows and Mac, using the single console. Besides, the latest version of XenMobile still maintains the amplest opportunities of the choice for clients and provides exclusive flexibility of work, thanks to support of the latest iOS Android versions 9, for Work Samsung KNOX, Windows 10 and Windows 10 Mobile.
There passed time when for work standard corporate notebooks and smartphones were used. We live in the world focused first of all on mobility therefore personal and working information is stored on the same device. Still the concept of use of personal devices in the working purposes therefore the companies should make so that employees had the protected mobile access to applications and data on any device and in any network develops.
And for support of this trend XenMobile 10.3 gives to IT specialists and business users exclusive flexibility of work, reliable protection and broad functionality within the complete solution for management of corporate mobility (Enterprise Mobility Management, EMM).
Full support of Windows 10 OS
Windows 10 became one of the most popular the version of operating systems of Microsoft corporation. Thanks to support by the solution XenMobile of phones, tablets, desktop PCs and notebooks running Windows 10, the companies receive a system for control of all devices based on Windows 10, both corporate, and personal gadgets of employees. In this regard WorxMail and WorxWeb are available to phones based on Windows 10 and provide a comprehensive protection, including security of the stored and transmitted data, using our ciphered data warehouse and integration with NetScaler Gateway.
Fact-finding technical version of WorksForms
Mobile application development can be connected with big monetary and time expenditure and can create certain difficulties. Moreover, it is not necessary to create the separate application for each workflow or a task. In this regard we submit the fact-finding technical version of WorxForms, allowing owners of the companies to change idea of modern applications – specialists will be able easily and just to create mobile business applications without the need for development of a program code.
Fact-finding technical version of WorxChat
Out-of-pocket for the protected joint work, available today, the companies and IT departments could not ensure high performance functioning in the mobile mode. For this reason we submit the fact-finding technical version of WorxChat allowing IT specialists to give to employees the protected mobile application for communication which is integrated with other office applications of Worx Apps of Citrix company and uses usual Microsoft Lync.
Security and functionality for mobile users and IT departments
Some of examples of advantages which XenMobile offers customers can give implementation in TBI, group which updates, adjusts and supports utility services in the Netherlands. TBI executed standardization of the solutions for management of corporate mobility using XenMobile for mobile device management within all company 3 years ago.
At the moment in the company hundreds of tablets and smartphones based on iOS, by Android and Windows are used. Such XenMobile functions as centralized operation and settings the politician, allowed TBI to improve protection and to save capabilities of joint work of employees. It gave the chance to cut down expenses on management and security of corporate mobile devices.
This version of XenMobile continues to introduce innovations and more protected technologies for increase in comfort of work of users and IT departments. Representing the heterogeneous EMM solution, XenMobile allows IT departments to manage the different devices and operating environments used in smartphones, notebooks and tablets.
Besides, for providing the high level of performance outside office, XenMobile offers within the solution, strongly adapted protected mobile applications, the including WorxMail, WorxWeb, WorxTasks and WorxNotes, with a possibility of ensuring the protected interaction which are closely integrated with Citrix ShareFile for data protection which can be stored both in cloud environments, and on the platform of the customer.
XenMobile 10.3 also provides the improved support of Samsung KNOX and Google Android for Work that gives the chance to users not to refuse application of Android devices and-applications in corporate environment.
And what is the most important, thanks to the protected separation of corporate and personal information and management of mobile applications without registration of the device, employees are ready to use own devices for work since they can carry out working tasks quicker and more effectively.
2015
Citrix expanded the list of applications in XenMobile
On June 10, 2015 the Citrix company announced expansion of a line of applications as a part of XenMobile.
Worx Home for mobile control
The Worx Home application interacts with XenMobile for ensuring execution the politician for devices and applications of Worx, at the same time providing access to uniform app store.
WorxMail - for the protected mobile e-mail
WorxMail is the application providing placement of e-mail, calendar and contacts in a separate container.
Screenshot of application window, 2014
WorxWeb for safe web access
WorxWeb is the browser providing to users access to the websites on the Internet and the intranet and protected according to IT policy.
WorxNotes
WorxNotes is the protected application of a business class for creation of notes which is integrated with e-mail and the calendar for convenient mobile work.
- WorxNotes allows to create, synchronize and exchange safely notes with specific user groups thanks to mailing using "a one click of the button" and integration with Outlook.
- Helps to find and store notes by means of integration of WorxNotes and ShareFile.
WorxDesktop
WorxDesktop is the application for the protected remote access allowing to get access to a desktop from the mobile device.
- Opens any programs for a desktop in the full-screen mode (CAD programs, Illustrator, Quicken and so forth)
- Provides access to all files and applications from any of computers
- Provides access to internal networks and corporate resources by means of a tunnel of a virtual private network (VPN)
WorxEdit
WorxEdit is the simple tool in use for work on mobile devices helping to edit documents, pivot tables and the presentations.
- Opens and helps to browse, create and edit the Microsoft Word, Excel and PowerPoint files
- Supports joint work with other people, a possibility of change control
WorxTasks
WorxTasks is the simple management tool in use time, safely managing and synchronizing tasks and lists of the planned affairs of Microsoft Outlook on the mobile device of the user.
- Helps to manage the list of affairs integrated with WorxMail
- The identical principle of work on mobile devices and desktops with Outlook Tasks integration
ShareFile for safe transfer and file synchronization
The ShareFile application allows mobile users to transfer, synchronize and edit files.
GoToAssist - for a first mobile line support
The GoToAssist application simplifies support by means of instant access to help desk "one contact". Mobile users can leave requests for maintenance or request support in real time from the devices.
XenMobile will support Android for Work
On March 10, 2015 Citrix announced cooperation increase with Google implementation of support in XenMobile of the Android for Work tool kit.
In plans of Citrix and Google to offer the companies and public institutions the solution protected, scaled, focused on applications providing the high level of satisfaction of users for by means of providing new opportunities for work quality improvement.
In modern business life users use smartphones, tablets and notebooks, both for work, and in the private life that creates difficulties for IT departments on the way of preserving of borders between personal and working content. But users need the protected mobile workplace providing access to corporate applications, data and services on any device and in any network.
XenMobile the complex EMM solution for tablets, smartphones and desktops on the platform Android. Android for Work offers the selected working profile with restrictions on data exchange that guarantees protection of both working data, and personal information. Sharing of technologies creates advantages of the strengthened protection and control. Support continuation Samsung KNOX, Citrix provides use of a set of functions together with Android for Work for more effective management and control of Samsung Galaxy devices.
"Within joint strategy Citrix also Google cooperate on a broad set of initiatives in the field of mobility, virtualizations applications and cloud environments to create the mobile workplace, best in the class, which will provide support of business functions with devices Android and Chrome", – noted Sergey Halyapin, the head of department of the Citrix system engineers in Russia and the CIS countries.
The version of XenMobile Enterprise Mobility Management is released
On February 9, 2015 the Citrix company announced the new version of the solution XenMobile for management systems for corporate mobility (Enterprise Mobility Management, EMM).
XenMobile 10 optimizes functionality of mobile systems for the end user, at the same time automating and simplifying processes of implementation and Itsistemami's management. The structure of the solution includes the updates of opportunities of line workflows which are a part of a packet of XenMobile for the integrated applications increasing productivity of work. New features help to use most effectively mobile devices for the business purposes.
Architecture of XenMobile Enterprise Mobility Management, 2014
In this version Itotdelam version is offered unified Emmplatforma, facilitating deployment and management of mobile applications, data and devices, providing flexible and safe scaling, support of work of the growing number of the employees working in the mobile mode.
Advantages
XenMobile has bigger functionality, security and flexibility of each aspect of design and product development, in comparison with other similar solutions, developers consider.
- The increased productivity is reached thanks to workflows, "optimized under requirements of the companies".
- XenMobile offers the most full range of the business applications providing to mobile users optimal opportunities for work. The functionality of a product covers a set of the improvements giving to experienced users ampler opportunities, creation of new workflows using a set of the integrated business applications of XenMobile.
- This version of XenMobile provides a self-service portal (Self Service Portal) for management of important tasks, for example, of tracking, blocking and removal of data on the lost or stolen devices. According to the tests which are carried out by Citrix company therefore the number of requests for service of the mobile users sent to a support service that, in turn, Itotdelov cuts down operating expenses decreases by 20% and gives to end users the chance to independently control the work.
- End-to-end protection reduces the risks arising at deployment of corporate mobile systems.
Except security of mobile devices, applications and data warehouses, the new version of XenMobile provides updates which help to secure interaction of devices, network gateways and servers. The updated product supports strict authentication for the applications using the adaptive authentication on the basis of an algorithm RSA (RSA Adaptive Authentication) representing the main platform of riskoriyentirovanny authentication and detection of fraud. The advanced algorithm of coding of FIPS 140.2 which is based on standards of security of the U.S. Government is supported. In particular, functions improve coding of connections of devices with network and networks with the server, do safe connections with the managing console.
This version of XenMobile simplifies administration tasks Itresursov, registration, providing services, setup and deployment, fault recovery of all mobile stack of devices, infrastructure and applications. In this version the solution integrates a server framework of mobile device management (Mobile Device Management, MDM) with infrastructure of management of mobile applications (Mobile Application Management, MAM).
Itadministratora receive the uniform level of management, the allowing control of devices and applications from one virtual server.
"XenMobile of Citrix company is more, than complex Emmresheniye. For example, thanks to integration of Worx and ShareFile services this solution offers broad functionality which will be attractive to the companies wishing to invest in the concept of corporate mobility. All this will allow them to increase considerably performance of work of employees without the need for implementation of separate solutions of different type. The innovation products Citrix do the company by one of the few leading suppliers as consolidation of components increases ease of use and managements of a product, providing at the same time high functionality", - Sergey Halyapin, the head of department of the Citrix system engineers in Russia and the CIS countries comments on news.
2014: XenMobile updating
On June 18, 2014 the Citrix company announced emergence of upgraded version of the Citrix XenMobile system.
The structure of the new version of Citrix XenMobile includes additional support OS Windows Phone 8, improvements, work-related and scaling. The applications preparing for release, including WorxNotes, WorxEdit and WorxDesktop will help users to use more productively the tablets and phones with preserving of reliable control from IT services.
"Technologies became an integral part of our worker and private life therefore Citrix did everything possible in order that independently delete obstacles in a way to corporate mobility, thus, clients of the company can select when where and how to work", - Oleg Ivanov, the area director of Citrix in Russia and the CIS countries noted. Citrix offers a wide choice of functionality and solutions which are necessary for creation universal, of the protected and personalized mobile jobs, including technologies of virtualization of applications and desktops, technologies of management of mobile applications and devices, technologies of data exchange, synchronization and creation of cloud networks".
2013
Citrix XenMobile Enterprise
Corporate edition of the Citrix XenMobile platform integrates mobile devices, applications, data management, the unified corporate app store, useful programs for increase in mobile performance and an online service of support "in one click" in the full solution for the organization of corporate mobile services.
E-mail, the Internet browser, the application for safe data exchange, synchronization and editing are a part of XenMobile Enterprise. From other offers which are present at the market, the solution Citrix differs in perfectly implemented integration of all these mobile services. At the same time Citrix provided the new shop of mobile applications created especially for XenMobile and focused on applications for business. It will include more than 80 applications from the leading developers — almost three times more, than at other technology developers in this market. Ensuring corporate mobile access is not just connection of devices. It is about change of business processes, performance improvement and protection of intellectual property. The staff of the companies even more often demands secure and comfortable access to applications and data from any mobile devices. They need mobile, Windows - web and the SaaS-applications which can be received without problems from the unified app store of the company. They want to have an opportunity to browse, edit, synchronize and exchange data, being en route. The support available from any mobile device is necessary for them online. Exactly thanks to a wide choice of the safe mobile technologies covering device management, applications and data, applications for increase in mobile performance and live support, it is possible to call Citrix XenMobile Enterprise the only thing in the market the solution providing all necessary for the organization of corporate mobile access.
- Support of the wide range of devices. Citrix supports the widest range of devices, from desktop computers, notebooks, smartphones and tablets to video cameras and USB drives, compatible to Android. XenMobile expanded the range of devices, having provided support of new "smart" displays of Viewsonic based on Android. They are delivered with already preset XenMobile, allowing IT personnel to deliver and protect remotely applications and data on these devices.
- The business applications increasing mobile performance. Citrix provided a collection of business applications Worx Mobile Apps, including such solutions of Citrix as WorxMail, WorxWeb, Citrix ShareFile, GoToMeeting and Podio™ and also the applications developed by the third-party companies compatible to Worx by means of simple and powerful tools of SDK developer. IT specialists can select Worx-compatible applications from new gallery of the Worx App Gallery applications and to bring them to devices of users using XenMobile.
- Viewing and editing documents on any mobile devices. Integration of ShareFile into XenMobile allows to browse, edit and exchange documents by means of the protected container on mobile devices. Employees get free mobile access to the corporate data which are stored in a cloud or on own servers including corporate network storages and SharePoint. Thanks to free access to corporate data from devices of any types and to the built-in mobile editor of content, it is possible to edit, comment and add the signature in a free form.
- Access to online support to one contact. Integration of customer service of GoToAssist Service Desk and Remote Support into XenMobile Enterprise allowed Citrix to simplify to mobile users access to support and to guarantee to the companies smooth operation and high performance of their mobile employees. Access to one contact opens for them the vital opportunity to quickly receive the help. Users can create requests tickets in customer service and open chats with support directly on the mobile devices. They can pass to a full-fledged remote session of communication with a support service, and technical specialists have a possibility of complete diagnostics of the account of the user for problem solving with devices and applications. Specialists of a support service can browse and control far off devices if it is authorized their operating systems, for more effective and complete problem solving.
XenMobile MDM release
The Citrix company presented at the beginning of 2013 the solution for management of the corporate park of the mobile devices XenMobile MDM opening for users freedom in the choice of the used devices and the allowing IT to provide to departments requirements of controllability and compatibility. XenMobile MDM supplements the set of applications of Citrix among which Citrix CloudGateway, Citrix NetScaler, Citrix XenDesktop, GoToMeeting, GoToAssist, Citrix ShareFile and Citrix Podio, providing the companies with the complete solution for all problems of corporate mobile environment.
Users demand freedom in the choice of the devices used for work and applications and wish to have access to the mail and documents where they were. Therefore the organizations need the solution which will satisfy requests of employees, meeting at the same time to the requirements of IT for security. XenMobile MDM provides a basis for the solution of these tasks through cast, configuring and security of corporate and personal access devices. The solution is constructed on highly safe architecture and is directly integrated with a public key infrastructure and Microsoft Active Directory and also systems information security and management tools events.
Using XenMobile MDM, users can independently register the devices, and IT services – to appoint the rights and to install applications automatically on big groups of devices. The staff of IT can create black and white lists of applications, reveal and limit the cracked devices and also in whole or in part block the lost and stolen devices.
In addition to XenMobile MDM Citrix offers a packet of Mobile Solutions Bundle for management of corporate mobile infrastructure (EMM). The packet includes the products XenMobile MDM and CloudGateway, removing need of use of multivendor solutions. It integrates the management system for mobile infrastructure leading in the market with the innovation management system for mobile applications and provides five key EMM functions.
- Corporate MDM is cast, configuring and security for corporate and user devices.
- Safe e-mail, the browser and the application for data exchange from Citrix ensure comfortable functioning and level of controllability, necessary for IT of department, and control.
- The containers for mobile applications centralizing management and control of security from IT for any mobile applications created by third-party or internal producers.
- The unified app store providing to users uniform access point to all applications — mobile, a web, SaaS and Windows for all platforms and devices.
- Management of identification, uniform input and access control based on scenarios facilitates IT access control and considerably simplifies a system for users.
Feature of the Citrix XenMobile mobile solution is that corporate applications are separated from personal on the mobile device belonging to the user. The special technology MDX which allows to exchange data between corporate applications of a packet, such as program of e-mail WorkMail, WorkWeb browser, corporate service of file sharing ShareFile, etc. is for this purpose used, but to block transfer of corporate information in user applications. Thus, the company can guarantee that its data will not flow away via the mobile device of the employee. And the system administrator can interrupt at any time access for any user, block his access to corporate data.