Citrix ADC β Unexpected Treasure
Reading Time: 10 minutes Β TL;DR Setting secure rules for the RelayState parameter is a MUST when configuring Citrix Application Delivery Controller (ADC) and Citrix Gateway as SAML Service Provider, because an attacker can exploit a chain of three low-risk vulnerabilities to compromise victimsβ accounts. By luring users to a malicious domain, attackers can steal session cookies and gain unauthorized [β¦]