13. December 2021

deviceTRUST + CVE-2021-44228 – Rest assured, no JAVA involved here!

If you have opened Twitter, LinkedIn or basically anything with Internet access since last Thursday, you will have heard of “log4j” or “Log4Shell”. There are already heaps of very good sources on the details of this security issue. Please refer to those if you wish to get more insight: org CVE – CVE-2021-44228 (mitre.org) org Log4j – Apache Log4j Security […]

Read more
21. October 2021

Printer mapping with deviceTRUST and Microsoft’s patch for CVE-2021-34527 – aka “Printer Nightmare”

Microsoft recently fixed several vulnerabilities in the print spooler and coherent functions. The vulnerabilities, publicly known as “Printer Nightmare” can lead to remote code execution based on the driver installation function. All required Information can be found at the following links: Microsoft’s support site: KB5005010: Restricting installation of new printer drivers after applying the July 6, 2021 updates The official […]

Read more
15. October 2021

Citrix Virtual Apps and Desktops – Virtual channel security configuration for deviceTRUST

Applies to Virtual Apps and Desktops (VAAD) CR 2109 Virtual Apps and Desktops (VAAD) LTSR 1912 CU4 With Citrix Virtual Apps and Desktops CR 2109 and LTSR 1912 CU4, Citrix configures the so called “Virtual channel allow list” to the default value of “enabled”. With this default setting, only the Citrix-internal virtual channels are allowed inside the ICA/HDX protocol. deviceTRUST […]

Read more