The NDVM in Citrix XenClient XT before 2.1.3 and 3.x before 3.1.4 allows remote attackers to execute arbitrary commands by using the UIVM to create a network connection.Referenceshttp://osvdb.org/96749https://exchange.xforce.ibmcloud.com/vulnerabilities/86967http://support.citrix.com/article/CTX138633
