lo folks,
I'm doing a security assessment for a company who is running citrix metaframe XP on 3 servers. All of the employee's may use specific 'published applications' such as access 2000/word office what have you. I'm by no means a Citrix Ninja but I have a pretty good understanding of how it works. Now... During my assessment I downloaded an ICA file and modified the [ProgramName] to cmd.exe (I could have also done explorer.exe but I decided to run explorer from cmd.exe). Anyways, So I modify the ica client file locally, then click it, login as a user which I've compromised.... now here comes my mis-understanding, and I may need to ask the client again. But, I maybe loggging in with someone who has 'desktop' access but I highly doubt it. So my question is, can any of these users modify the ICA client files to execute whatever application they want on the remote host? Only 3 users that I'm aware of actually have 'Desktop' rights (all administrators). So Any help would be appreciated I'm rather unsure how to approach the client at this point. Thank you for your time,
-heh
PS. If you think about this, this is pretty scary, any user, or a user you would only want executing certian applications can run explorer? or cmd? Talk about 'insta-server-root.' Lets hope I am mistaken some where....
I'm doing a security assessment for a company who is running citrix metaframe XP on 3 servers. All of the employee's may use specific 'published applications' such as access 2000/word office what have you. I'm by no means a Citrix Ninja but I have a pretty good understanding of how it works. Now... During my assessment I downloaded an ICA file and modified the [ProgramName] to cmd.exe (I could have also done explorer.exe but I decided to run explorer from cmd.exe). Anyways, So I modify the ica client file locally, then click it, login as a user which I've compromised.... now here comes my mis-understanding, and I may need to ask the client again. But, I maybe loggging in with someone who has 'desktop' access but I highly doubt it. So my question is, can any of these users modify the ICA client files to execute whatever application they want on the remote host? Only 3 users that I'm aware of actually have 'Desktop' rights (all administrators). So Any help would be appreciated I'm rather unsure how to approach the client at this point. Thank you for your time,
-heh
PS. If you think about this, this is pretty scary, any user, or a user you would only want executing certian applications can run explorer? or cmd? Talk about 'insta-server-root.' Lets hope I am mistaken some where....