Download Latest Version
UFTC-1.11.iso (2.1 GB)
Get an email when there's a new version of User Friendly Thin Client | 100% Free
| Name | Modified | Size | Downloads / Week |
|---|---|---|---|
| Parent folder | |||
| UFTC-1.11-VHD.7z | 2025-10-19 | 1.6 GB | |
| UFTC-1.11.iso | 2025-10-19 | 2.1 GB | |
| README.md | 2025-10-19 | 2.3 kB | |
| UFTC 1.11 - Security Release - MBR_UEFI - AMD64 source code.tar.gz | 2025-10-19 | 151.1 kB | |
| UFTC 1.11 - Security Release - MBR_UEFI - AMD64 source code.zip | 2025-10-19 | 155.2 kB | |
| Totals: 5 Items | 3.7 GB | 20 | |
This is a security release that fixes a code execution vulnerability on the login screen, updating is strongly recommended. It is identical to release 2.1 without commit [22e00b] (This reverses it back to Debian 12) Both 2.1 and 1.11 share the same 6.12 LTS kernel, hardware support may differ due to version differences in the firmware packages. If this release does not support your hardware and you do not need Citrix check version 2.1 for a possible solution.
- Additional input sanitization has been added to the UI to safely pass the input to the second bash session. This is done in two places, first the login screens input is instantly sanitized before this gets passed further in the program. Second, as an additional safety measure the additionally defined parameters and settings get sanitized right before they pass trough the second bash instance that could previously be tricked into executing code.
- Included Citrix is now updated to 2508
My apologies for not catching the exploit sooner, while I do test for input sanitization issues this bug (that was found during my own extra testing) was specific to the way xfreerdp has to be launched causing it not to trigger in my earlier test runs for these inputs. In subsequent runs I had tried a variety of exploits commands including ones found online and ones suggested by AI none of which triggered originally. Bash has built in protections against exploits like the one I discovered and in most input fields these worked successfully causing the illusion of universal protection across the program. With the added measures and the gained knowledge this should be fully patched in the current and future releases.
ISO: A more traditional installer using clonezilla for those who prefer a premade install medium instead of relying on disk cloning software. Also can be used for PXE deploying and image capture. 7z: VHD + Manuals, you can customize it in a VM and then deploy it your way (For example with Rescuezilla or to a portable USB with Rufus)