Archive for March, 2008
March 10th, 2008
No Comments »
March 10th, 2008
No Comments »
National Cyber Alert System
Cyber Security Bulletin SB08-070
Vulnerability Summary for the Week of March 3, 2008
The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cyber Security Division (NCSD) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD, which contains historical vulnerability information.The vulnerabilities are based on the CVE vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:
- High – Vulnerabilities will be labeled High severity if they have a CVSS base score of 7.0 – 10.0
- Medium – Vulnerabilities will be labeled Medium severity if they have a CVSS base score of 4.0 – 6.9
- Low – Vulnerabilities will be labeled Low severity if they have a CVSS base score of 0.0 – 3.9
Entries may include additional information provided by organizations and efforts sponsored by US-CERT. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletins is compiled from external, open source reports and is not a direct result of US-CERT analysis.
| High Vulnerabilities |
|---|
| Primary Vendor — Product |
Description |
|
CVSS Score | Source & Patch Info | ||
|---|---|---|---|---|---|---|
| Vocera Communications — wireless handsets | Vocera Communications wireless handsets, when using Protected Extensible Authentication Protocol (PEAP), do not validate server certificates, which allows remote wireless access points to steal hashed passwords and conduct man-in-the-middle (MITM) attacks. |
|
7.1 | CVE-2008-1114 FULLDISC OTHER-REF OTHER-REF OTHER-REF BID |
||
| Affiliate Market — Affiliate Market | SQL injection vulnerability in shop/detail.php in Affiliate Market (affmarket) 0.1 BETA allows remote attackers to execute arbitrary SQL commands via the id parameter. |
|
7.5 | CVE-2008-1177 MILW0RM XF |
||
| Beehive Software — SendFile.NET | The outboxWriteUnsent function in FTPThread.class in SendFile.jar for Beehive Software SendFile.NET uses hard-coded credentials for an FTP server, which allows remote attackers to gain privileges. |
|
7.5 | CVE-2008-1079 BUGTRAQ BID |
||
| DESlock — DESlock | DESlock+ 3.2.6 and earlier, when DLMFENC.sys 1.0.0.26 and DLMFDISK.sys 1.2.0.27 are present, allows local users to gain privileges via a certain DLMFENC_IOCTL request to \\.\DLKPFSD_Device that overwrites a pointer, aka the “ring0 link list zero SYSTEM” vulnerability. |
|
7.2 | CVE-2008-1139 MILW0RM FRSIRT SECUNIA |
||
| DESlock — DESlock | DLMFDISK.sys 1.2.0.27 in DESlock+ 3.2.6 and earlier allows local users to gain privileges via a certain DLKFDISK_IOCTL request to \\.\DLKFDisk_Control that overwrites a data structure associated with a mounted pseudo-filesystem, aka the “ring0 SYSTEM” vulnerability. |
|
7.2 | CVE-2008-1140 MILW0RM FRSIRT SECUNIA |
||
| dream4 — Koobi Pro | SQL injection vulnerability in index.php in Koobi Pro 5.7 allows remote attackers to execute arbitrary SQL commands via the categ parameter in a downloads procedure. |
|
7.5 | CVE-2008-1122 MILW0RM |
||
| eazyPortal — eazyPortal | SQL injection vulnerability in index.php in eazyPortal 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the session_vars cookie. |
|
7.5 | CVE-2008-1121 MILW0RM BID SECUNIA |
||
| freshmeat — XWine | w_editeur.c in XWine 1.0.1 for Debian GNU/Linux allows local users to overwrite or print arbitrary files via a symlink attack on the temporaire temporary file. NOTE: some of these details are obtained from third party information. |
|
7.2 | CVE-2008-0930 OTHER-REF SECUNIA |
||
| GNOME — Evolution | Format string vulnerability in the emf_multipart_encrypted function in mail/em-format.c in Evolution 2.12.3 and earlier allows remote attackers to execute arbitrary code via a crafted encrypted message, as demonstrated using the Version: field. |
|
9.3 | CVE-2008-0072 OTHER-REF DEBIAN REDHAT UBUNTU BID FRSIRT SECUNIA |
||
| Google — Android SDK | Integer overflow in the BMP::readFromStream method in the libsgl.so library in Google Android SDK m3-rc37a and earlier, and m5-rc14, allows remote attackers to execute arbitrary code via a crafted BMP file with a header containing a negative offset field. |
|
7.5 | CVE-2008-0986 BUGTRAQ OTHER-REF OTHER-REF BID |
||
| ICQ — Mirabilis ICQ | Format string vulnerability in the embedded Internet Explorer component for Mirabilis ICQ 6 build 6043 allows remote servers to execute arbitrary code or cause a denial of service (crash) via unspecified vectors related to HTML code generation. |
|
9.3 | CVE-2008-1120 OTHER-REF BID FRSIRT SECUNIA |
||
| ImageMagick — GraphicsMagick ImageMagick — ImageMagick |
Heap-based buffer overflow in the ReadPCXImage function in the PCX coder in coders/pcx.c in (1) ImageMagick 6.2.4-5 and 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .pcx file that triggers incorrect memory allocation for the scanline array, leading to memory corruption. |
|
9.3 | CVE-2008-1097 OTHER-REF OTHER-REF |
||
| Joomla — com_garyscookbook Mambo — com_garyscookbook |
SQL injection vulnerability in the Garys Cookbook (com_garyscookbook) 1.1.1 and earlier component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php. |
|
7.5 | CVE-2008-1137 MILW0RM |
||
| Microsoft — Access Microsoft — Jet |
Unspecified vulnerability in Microsoft Access allows remote user-assisted attackers to execute arbitrary code via a crafted .MDB file, possibly related to Jet Engine (msjet40.dll). NOTE: this is probably a different issue than CVE-2007-6026. |
|
8.5 | CVE-2008-1200 OTHER-REF BID |
||
| PHP Web Scripts — Dynamic Photo Gallery | SQL injection vulnerability in album.php in PHP WEB SCRIPT Dynamic Photo Gallery 1.02 allows remote attackers to execute arbitrary SQL commands via the albumID parameter. |
|
7.5 | CVE-2008-1162 MILW0RM OTHER-REF BID SECUNIA |
||
| phpArcadeScript — phpArcadeScript | SQL injection vulnerability in index.php in phpArcadeScript 1.0 through 3.0 RC2 allows remote attackers to execute arbitrary SQL commands via the userid parameter in a profile action. |
|
7.5 | CVE-2008-1163 MILW0RM BID |
||
| phpComasy — phpComasy | SQL injection vulnerability in index.php in phpComasy 0.8 allows remote attackers to execute arbitrary SQL commands via the mod_project_id parameter in a project_detail action. |
|
7.5 | CVE-2008-1164 MILW0RM BID |
||
| Red Hat — enterprise_linux | The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute force attacks by sniffing an unencrypted preshared key (PSK) hash. |
|
7.8 | CVE-2008-1198 OTHER-REF OTHER-REF |
||
| Rising Antivirus International — Rising Web Scan Object | Insecure method vulnerability in the Web Scan Object ActiveX control (OL2005.dll) in Rising Antivirus Online Scanner allows remote attackers to force the download and execution of arbitrary code by setting the BaseURL property and invoking the UpdateEngine method. NOTE: some of these details are obtained from third party information. |
|
9.3 | CVE-2008-1116 MILW0RM BID FRSIRT SECUNIA |
||
| Sarg — Squid Analysis Report Generator | Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator (Sarg) 2.2.3.1 allows remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. NOTE: some of these details are obtained from third party information. |
|
10.0 | CVE-2008-1167 OTHER-REF SECUNIA |
||
| SIMM-Comm — SCI Photo Chat | Directory traversal vulnerability in the embedded HTTP server in SCI Photo Chat Server 3.4.9 and earlier allows remote attackers to read arbitrary files via a “..\” (dot dot backslash) or “../” (dot dot forward slash) in the GET command. |
|
7.8 | CVE-2008-1169 OTHER-REF BID FRSIRT XF |
||
| Sun — JRE Sun — JDK |
Unspecified vulnerability in Sun JDK and Java Runtime Environment (JRE) 6 Update 4 and earlier and 5.0 Update 14 and earlier; and SDK and JRE 1.4.2_16 and earlier; allows remote attackers to access arbitrary network services on the local host via unspecified vectors related to JavaScript and Java APIs. |
|
8.5 | CVE-2008-1195 SUNALERT |
||
| SynCE — vdccm | Unspecified vulnerability in vdccm before 0.10.1 in SynCE (SynCE-dccm) might allow attackers to cause a denial of service via unspecified vectors. |
|
10.0 | CVE-2007-6703 OTHER-REF |
||
| SynCE — SynCE | The Utils::runScripts function in src/utils.cpp in vdccm 0.92 through 0.10.0 in SynCE (SynCE-dccm) allows remote attackers to execute arbitrary commands via shell metacharacters in a certain string to TCP port 5679. |
|
9.3 | CVE-2008-1136 BUGTRAQ OTHER-REF OTHER-REF BID XF |
||
| Vocera Communications — Vocera Communications Badge | Cisco Unified Wireless IP Phone 7921, when using Protected Extensible Authentication Protocol (PEAP), does not validate server certificates, which allows remote wireless access points to steal hashed passwords and conduct man-in-the-middle (MITM) attacks. |
|
7.8 | CVE-2008-1113 FULLDISC FULLDISC OTHER-REF OTHER-REF BID SECTRACK SECUNIA |
| Medium Vulnerabilities |
|---|
| Primary Vendor — Product |
Description |
|
CVSS Score | Source & Patch Info | ||
|---|---|---|---|---|---|---|
| Barryvan Compo — Barryvan Compo Manager | PHP remote file inclusion vulnerability in main.php in Barryvan Compo Manager 0.3 allows remote attackers to execute arbitrary PHP code via a URL in the pageURL parameter. |
|
6.8 | CVE-2008-1126 MILW0RM |
||
| BSD Perimeter — pfSense | Cross-site scripting (XSS) vulnerability in BSD Perimeter pfSense before 1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
|
4.3 | CVE-2008-1182 OTHER-REF BID SECUNIA |
||
| Centreon — Centreon | Directory traversal vulnerability in include/doc/get_image.php in Centreon 1.4.2.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the img parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. |
|
5.0 | CVE-2008-1119 MILW0RM OTHER-REF BID |
||
| Centreon — Centreon | Directory traversal vulnerability in include/doc/index.php in Centreon 1.4.2.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter, a different vector than CVE-2008-1119. |
|
6.8 | CVE-2008-1178 BUGTRAQ OTHER-REF BID SECUNIA XF |
||
| Centreon — Centreon | Multiple cross-site scripting (XSS) vulnerabilities in include/common/javascript/color_picker.php in Centreon 1.4.2.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) name and (2) title parameters. NOTE: some of these details are obtained from third party information. |
|
4.3 | CVE-2008-1179 OTHER-REF BID SECUNIA XF |
||
| Crafty Syntax Live Help — Crafty Syntax Live Help | Multiple cross-site scripting (XSS) vulnerabilities in Crafty Syntax Live Help (CSLH) before 2.14.6 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) livehelp.php, (2) user_questions.php, and (3) leavemessage.php. NOTE: the lostsheep.php vector is covered by CVE-2008-0848. |
|
4.3 | CVE-2008-1183 OTHER-REF BID SECUNIA XF |
||
| Crytek — Crysis | Format string vulnerability in the cryactio function in Crysis 1.1.1.5879 allows remote authenticated users to execute arbitrary code via format string specifiers in the user name, which is triggered when the game character is killed. |
|
6.0 | CVE-2008-1127 MILW0RM BID |
||
| Darwin — Darwin Cosmicperl — Directory Pro Navision — Financials Server |
A certain pseudo-random number generator (PRNG) algorithm that uses XOR and 3-bit random hops (aka “Algorithm X3″), as used in OpenBSD 2.8 through 4.2, allows remote attackers to guess sensitive values such as DNS transaction IDs by observing a sequence of previously generated values. NOTE: this issue can be leveraged for attacks such as DNS cache poisoning against OpenBSD’s modification of BIND. |
|
6.8 | CVE-2008-1146 OTHER-REF OTHER-REF BUGTRAQ BID SECUNIA |
||
| Darwin — Darwin Cosmicperl — Directory Pro Navision — Financials Server |
A certain pseudo-random number generator (PRNG) algorithm that uses XOR and 2-bit random hops (aka “Algorithm X2″), as used in OpenBSD 2.6 through 3.4, Mac OS X 10 through 10.5.1, FreeBSD 4.4 through 7.0, and DragonFlyBSD 1.0 through 1.10.1, allows remote attackers to guess sensitive values such as IP fragmentation IDs by observing a sequence of previously generated values. NOTE: this issue can be leveraged for attacks such as injection into TCP packets and OS fingerprinting. |
|
6.8 | CVE-2008-1147 OTHER-REF OTHER-REF BUGTRAQ BUGTRAQ BUGTRAQ OTHER-REF BID SECUNIA |
||
| Darwin — Darwin Cosmicperl — Directory Pro Navision — Financials Server |
A certain pseudo-random number generator (PRNG) algorithm that uses ADD with 0 random hops (aka “Algorithm A0″), as used in OpenBSD 3.5 through 4.2 and NetBSD 1.6.2 through 4.0, allows remote attackers to guess sensitive values such as (1) DNS transaction IDs or (2) IP fragmentation IDs by observing a sequence of previously generated values. NOTE: this issue can be leveraged for attacks such as DNS cache poisoning, injection into TCP packets, and OS fingerprinting. |
|
6.8 | CVE-2008-1148 OTHER-REF OTHER-REF BUGTRAQ BID SECUNIA |
||
| DESlock — DESlock | DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service (system crash) via a certain ZERO_MEM DLMFENC_IOCTL request to \\.\DLKPFSD_Device, aka the “ring0 link list zero” vulnerability. |
|
4.9 | CVE-2008-1138 MILW0RM FRSIRT SECUNIA |
||
| DESlock — DESlock | Memory leak in DLMFENC.sys 1.0.0.26 in DESlock+ 3.2.6 and earlier allows local users to cause a denial of service (kernel memory consumption) via a series of DLMFENC_IOCTL requests to \\.\DLKPFSD_Device that allocate “link list structures.” |
|
4.9 | CVE-2008-1141 MILW0RM FRSIRT SECUNIA |
||
| DNSSEC-Tools — DNSSEC-Tools | The DNSSEC validation library (libval) library in dnssec-tools before 1.3.1 does not properly check that the signing key is the APEX trust anchor, which might allow attackers to conduct unspecified attacks. |
|
5.0 | CVE-2008-1184 OTHER-REF FEDORA FEDORA FRSIRT SECUNIA SECUNIA |
||
| Dovecot — Dovecot | Dovecot before 1.0.11, when configured to use mail_extra_groups to allow Dovecot to create dotlocks in /var/mail, might allow local users to read sensitive mail files for other users, or modify files or directories that are writable by group, via a symlink attack. |
|
4.1 | CVE-2008-1199 BUGTRAQ MLIST BID XF |
||
| Drupal — Drupal | The Drupal.checkPlain function in Drupal 6.0 only escapes the first instance of a character in ECMAScript, which allows remote attackers to conduct cross-site scripting (XSS) attacks. |
|
4.3 | CVE-2008-1133 OTHER-REF BID SECUNIA |
||
| Flicks Software — Authentix | Cross-site scripting (XSS) vulnerability in editUser.asp in AuthentiX 6.3b1 Trial allows remote attackers to inject arbitrary web script or HTML via the username parameter. |
|
4.3 | CVE-2008-1174 FULLDISC BID SECTRACK SECUNIA |
||
| Flicks Software — Authentix | Cross-site scripting (XSS) vulnerability in AuthentiX 6.3b1 Trial allows remote attackers to inject arbitrary web script or HTML via the username parameter to aspAdmin/deleteUser.asp, a different vector than CVE-2008-1174. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. |
|
4.3 | CVE-2008-1175 SECUNIA |
||
| Flyspray — Flyspray | Multiple cross-site scripting (XSS) vulnerabilities in Flyspray 0.9.9 through 0.9.9.4 allow remote attackers to inject arbitrary web script or HTML via (1) a forced SQL error message or (2) old_value and new_value database fields in task summaries, related to the item_summary parameter in a details action in index.php. NOTE: some of these details are obtained from third party information. |
|
4.3 | CVE-2008-1165 OTHER-REF SECUNIA |
||
| Flyspray — Flyspray | Flyspray 0.9.9.4 generates different error messages depending on whether the username is valid or invalid, which allows remote attackers to enumerate usernames. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. |
|
5.0 | CVE-2008-1166 SECUNIA |
||
| GoAhead Software — GoAhead WebServer GoAhead Software — FS4104-AW Device |
goform/QuickStart_c0 on the GoAhead Web Server on the FS4104-AW (aka rooter) VDSL device contains a password in the typepassword field, which allows remote attackers to obtain this password by reading the HTML source, a different vulnerability than CVE-2002-1603. |
|
5.0 | CVE-2007-6702 MILW0RM |
||
| Google — Android SDK | Heap-based buffer overflow in the GIF library in the WebKit framework for Google Android SDK m3-rc37a and earlier allows remote attackers to execute arbitrary code via a crafted GIF file whose logical screen height and width are different than the actual height and width. |
|
6.8 | CVE-2008-0985 BUGTRAQ OTHER-REF OTHER-REF BID |
||
| IBM — WebSphere MQ | Unspecified vulnerability in IBM WebSphere MQ 6.0.x before 6.0.2.2 and 5.3 before Fix Pack 14 allows attackers to bypass access restrictions for a queue manager via a SVRCONN (MQ client) channel. |
|
6.6 | CVE-2008-1130 AIXAPAR BID FRSIRT SECTRACK SECUNIA |
||
| ImageMagick — GraphicsMagick ImageMagick — ImageMagick |
The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .xcf file that triggers an out-of-bounds heap write, possibly related to the ScaleCharToQuantum function. |
|
6.8 | CVE-2008-1096 OTHER-REF OTHER-REF |
||
| Juniper — Secure Access 2000 | Cross-site scripting (XSS) vulnerability in dana-na/auth/rdremediate.cgi in Juniper Networks Secure Access 2000 5.5 R1 build 11711 allows remote attackers to inject arbitrary web script or HTML via the delivery_mode parameter. |
|
4.3 | CVE-2008-1180 BUGTRAQ OTHER-REF BID SECUNIA XF |
||
| Juniper — Secure Access 2000 | Juniper Networks Secure Access 2000 5.5 R1 (build 11711) allows remote attackers to obtain sensitive information via a direct request for remediate.cgi without certain parameters, which reveals the path in an “Execute failed” error message. |
|
5.0 | CVE-2008-1181 BUGTRAQ BID SECTRACK |
||
| KCWiki — KCWiki | Multiple PHP remote file inclusion vulnerabilities in KCWiki 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the page parameter to (1) minimal/wiki.php and (2) simplest/wiki.php. |
|
6.8 | CVE-2008-1170 BUGTRAQ |
||
| Learn2 — STRunner | Multiple stack-based buffer overflows in the Learn2 Corporation STRunner (aka Street Technologies) ActiveX control in iestm32.dll allow remote attackers to execute arbitrary code via unspecified vectors. |
|
6.8 | CVE-2007-6252 CERT-VN |
||
| Light httpd — Light httpd | mod_cgi in lighttpd 1.4.18, when a fork failure occurs, sends the source code of CGI scripts instead of a 500 error, which might allow remote attackers to obtain sensitive information. |
|
5.0 | CVE-2008-1111 OTHER-REF OTHER-REF |
||
| MoinMoin — MoinMoin | Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.5.8 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) certain input processed by formatter/text_gedit.py (aka the gui editor formatter); (2) a page name, which triggers an injection in PageEditor.py when the page is successfully deleted by a victim in a DeletePage action; or (3) the destination page name for a RenamePage action, which triggers an injection in PageEditor.py when a victim’s rename attempt fails because of a duplicate name. NOTE: the AttachFile XSS issue is already covered by CVE-2008-0781, and the login XSS issue is already covered by CVE-2008-0780. |
|
4.3 | CVE-2008-1098 OTHER-REF OTHER-REF OTHER-REF |
||
| MoinMoin — MoinMoin | _macro_Getval in wikimacro.py in MoinMoin 1.5.8 and earlier does not properly enforce ACLs, which allows remote attackers to read protected pages. |
|
5.0 | CVE-2008-1099 OTHER-REF OTHER-REF |
||
| Net Activity Viewer — Net Activity Viewer | Untrusted search path vulnerability in src/mainwindow.c in Net Activity Viewer 0.2.1 allows local users with Net Activity Viewer privileges to execute arbitrary code via a malicious gksu program, which is invoked during the Restart As Root action. |
|
4.7 | CVE-2008-1132 OTHER-REF SECUNIA |
||
| Omegasoft — INterneSErvicesLosungen | OMEGA (aka Omegasoft) INterneSErvicesLosungen (INSEL) 7 supports authentication with a cookie that lacks a shared secret, which allows remote attackers to login as an arbitrary user via a modified cookie. |
|
6.4 | CVE-2008-1134 BUGTRAQ BID XF |
||
| Omegasoft — INterneSErvicesLosungen | OMEGA (aka Omegasoft) INterneSErvicesLosungen (INSEL) 7 generates different responses depending on whether or not a username is valid in a failed login attempt, which allows remote attackers to enumerate valid usernames. |
|
5.0 | CVE-2008-1135 BUGTRAQ BID XF |
||
| phpBB — 123 Flash Chat Module | ** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in the 123 Flash Chat Module for phpBB allow remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter to (1) 123flashchat.php and (2) phpbb_login_chat.php. NOTE: CVE disputes this issue because $phpbb_root_path is explicitly set to “./” in both programs. |
|
6.8 | CVE-2008-1171 BUGTRAQ BUGTRAQ VIM |
||
| phpMyAdmin — phpMyAdmin | phpMyAdmin before 2.11.5 accesses $_REQUEST to obtain some parameters instead of $_GET and $_POST, which allows attackers in the same domain to override certain variables and conduct SQL injection and Cross Site Request Forgery (CSRF) attacks by using crafed cookies. |
|
5.1 | CVE-2008-1149 OTHER-REF |
||
| phpMytourney — phpMytourney | PHP remote file inclusion vulnerability in tourney/index.php in phpMyTourney 2 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. |
|
6.8 | CVE-2008-1128 BUGTRAQ BID |
||
| Podcast Generator — Podcast Generator | Multiple PHP remote file inclusion vulnerabilities in Podcast Generator 1.0 BETA 2 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the absoluteurl parameter to (1) components/xmlparser/loadparser.php; (2) admin.php, (3) categories.php, (4) categories_add.php, (5) categories_remove.php, (6) edit.php, (7) editdel.php, (8) ftpfeature.php, (9) login.php, (10) pgRSSnews.php, (11) showcat.php, and (12) upload.php in core/admin/; and (13) archive_cat.php, (14) archive_nocat.php, and (15) recent_list.php in core/. |
|
6.8 | CVE-2008-1124 MILW0RM |
||
| Podcast Generator — Podcast Generator | Multiple directory traversal vulnerabilities in Podcast Generator 1.0 BETA 2 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) theme_path parameter to core/themes.php and the (2) filename parameter to download.php. |
|
5.0 | CVE-2008-1125 MILW0RM |
||
| QEMU — QEMU | Qemu 0.9.1 and earlier does not perform range checks for block device read or write requests, which allows guest host users with root privileges to access arbitrary memory and escape the virtual machine. |
|
4.7 | CVE-2008-0928 MLIST OTHER-REF FEDORA FEDORA SECUNIA |
||
| Sarg — Squid Analysis Report Generator | Cross-site scripting (XSS) vulnerability in Squid Analysis Report Generator (Sarg) 2.2.3.1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. |
|
4.3 | CVE-2008-1168 SECUNIA |
||
| Sitebuilder — SiteBuilder Elite | Multiple PHP remote file inclusion vulnerabilities in SiteBuilder Elite 1.2 allow remote attackers to execute arbitrary PHP code via a URL in the CarpPath parameter to (1) files/carprss.php and (2) files/amazon-bestsellers.php. |
|
6.8 | CVE-2008-1123 MILW0RM |
||
| Sun — Solaris | Unspecified vulnerability in Sun Solaris 8 directory functions allows local users to cause a denial of service (panic) via an unspecified sequence of system calls or commands. |
|
4.9 | CVE-2008-1115 SUNALERT FRSIRT |
||
| Sun — JRE Sun — JDK |
Unspecified vulnerability in the Virtual Machine for Sun Java Runtime Environment (JRE) and JDK 6 Update 4 and earlier, 5.0 Update 14 and earlier, and 1.4.2_16 and earlier allows remote attackers to gain privileges via an untrusted application or applet, a different issue than CVE-2008-1186. |
|
6.0 | CVE-2008-1185 SUNALERT |
||
| Sun — JRE Sun — JDK |
Unspecified vulnerability in the Virtual Machine for Sun Java Runtime Environment (JRE) and JDK 5.0 Update 13 and earlier, and 1.4.2_16 and earlier, allows remote attackers to gain privileges via an untrusted application or applet, a different issue than CVE-2008-1185. |
|
6.0 | CVE-2008-1186 SUNALERT |
||
| Sun — JRE Sun — JDK |
Unspecified vulnerability in Sun Java Runtime Environment (JRE) and JDK 6 Update 4 and earlier, 5.0 Update 14 and earlier, and 1.4.2_16 and earlier allows remote attackers to cause a denial of service (JRE crash) and possibly execute arbitrary code via unknown vectors related to XSLT transforms. |
|
6.0 | CVE-2008-1187 SUNALERT |
||
| Sun — JRE Sun — JDK |
Multiple buffer overflows in Java Web Start in Sun JDK and JRE 6 Update 4 and earlier, and 5.0 Update 14 and earlier, allow remote attackers to execute arbitrary code via unknown vectors, a different issue than CVE-2008-1189. |
|
6.0 | CVE-2008-1188 SUNALERT |
||
| Sun — JRE Sun — JDK |
Buffer overflow in Java Web Start in Sun JDK and JRE 6 Update 4 and earlier, 5.0 Update 14 and earlier, and 1.4.2_16 and earlier allows remote attackers to execute arbitrary code via unknown vectors, a different issue than CVE-2008-1188. |
|
6.0 | CVE-2008-1189 SUNALERT |
||
| Sun — JRE Sun — JDK |
Unspecified vulnerability in Java Web Start in Sun JDK and JRE 6 Update 4 and earlier, 5.0 Update 14 and earlier, and 1.4.2_16 and earlier allows remote attackers to gain privileges via an untrusted application, a different issue than CVE-2008-1191. |
|
6.0 | CVE-2008-1190 SUNALERT |
||
| Sun — JRE Sun — JDK |
Unspecified vulnerability in Java Web Start in Sun JDK and JRE 6 Update 4 and earlier allows remote attackers to create arbitrary files via an untrusted application, a different issue than CVE-2008-1190. |
|
6.0 | CVE-2008-1191 SUNALERT |
||
| Sun — JRE Sun — JDK |
Unspecified vulnerability in the Java Plug-in for Sun JDK and JRE 6 Update 4 and earlier, 5.0 Update 14 and earlier, 1.4.2_16 and earlier, and 1.3.1_21 and earlier allows remote attackers to bypass the same origin policy and “execute local applications” via unknown vectors. |
|
6.0 | CVE-2008-1192 SUNALERT |
||
| Sun — JRE Sun — JDK |
Unspecified vulnerability in Java Runtime Environment Image Parsing Library in Sun JDK and JRE 6 Update 4 and earlier, and 5.0 Update 14 and earlier, allows remote attackers to gain privileges via an untrusted application. |
|
6.0 | CVE-2008-1193 SUNALERT |
||
| Sun — JRE Sun — JDK |
Stack-based buffer overflow in Java Web Start (javaws.exe) in Sun JDK and JRE 6 Update 4 and earlier and 5.0 Update 14 and earlier; and SDK and JRE 1.4.2_16 and earlier; allows remote attackers to execute arbitrary code via a crafted JNLP file. |
|
6.0 | CVE-2008-1196 SUNALERT |
||
| TorrentTrader — TorrentTrader Classic TorrentTrader — TorrentTrader |
Cross-site request forgery (CSRF) vulnerabilities in account-inbox.php in TorrentTrader Classic 1.08 allow remote attackers to perform certain actions as other users, as demonstrated by sending messages. |
|
4.3 | CVE-2008-1172 BUGTRAQ XF |
||
| TorrentTrader — TorrentTrader Classic TorrentTrader — TorrentTrader |
Cross-site scripting (XSS) vulnerability in account-inbox.php in TorrentTrader Classic 1.08 allows remote attackers to inject arbitrary web script or HTML via the msg parameter. . |
|
4.3 | CVE-2008-1173 BUGTRAQ BID SECUNIA XF |
||
| WEBrick — WEBrick | Directory traversal vulnerability in WEBrick 1.8 before 1.8.5-p115 and 1.8.6-p114, and 1.9 through 1.9.0-1, when running on systems that support backslash (\) path separators or case-insensitive file names, allows remote attackers to access arbitrary files via (1) “..%5c” (encoded backslash) sequences or (2) filenames that match patterns in the :NondisclosureName option. |
|
5.0 | CVE-2008-1145 OTHER-REF |
||
| XRMS CRM — XRMS | Cross-site scripting (XSS) vulnerability in admin/users/self.php in XRMS CRM allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: some of these details are obtained from third party information. |
|
4.3 | CVE-2008-1129 BUGTRAQ BID SECUNIA |
||
| XWine — XWine | w_export.c in XWine 1.0.1 on Debian GNU/Linux sets insecure permissions (0666) for /etc/wine/config, which might allow local users to execute arbitrary commands or cause a denial of service by modifying the file. |
|
6.3 | CVE-2008-0931 OTHER-REF SECUNIA |
| Low Vulnerabilities |
|---|
| Primary Vendor — Product |
Description |
|
CVSS Score | Source & Patch Info | ||
|---|---|---|---|---|---|---|
| Adobe — Acrobat Reader | acroread in Adobe Acrobat Reader 8.1.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files related to SSL certificate handling. |
|
3.7 | CVE-2008-0883 OTHER-REF BID FRSIRT SECUNIA |
||
| Affiliate Market — Affiliate Market | Cross-site scripting (XSS) vulnerability in function/sideblock.php in Affiliate Market (affmarket) 0.1 BETA allows remote attackers to inject arbitrary web script or HTML via the sideblock4 parameter. |
|
2.6 | CVE-2008-1176 MILW0RM XF |
||
| Drupal — Drupal | Cross-site scripting (XSS) vulnerability in Drupal 6.0 allows remote authenticated users to inject arbitrary web script or HTML via titles in content edit forms. |
|
3.5 | CVE-2008-1131 OTHER-REF BID SECUNIA |
||
| F5 — Firepass 4100 | Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass 4100 SSL VPN 5.4.1 through 5.5.2 and 6.0 through 6.0.1, when pre-logon sequences are enabled, allow remote attackers to inject arbitrary web script or HTML via the query string to (1) my.activation.php3 and (2) my.logon.php3. |
|
2.6 | CVE-2007-6704 BUGTRAQ BUGTRAQ OTHER-REF OTHER-REF BID BID OSVDB OSVDB SECTRACK SECUNIA XF XF |
||
| Sun — JRE Sun — JDK |
Multiple unspecified vulnerabilities in the color management library in Sun JDK and JRE 6 Update 4 and earlier, and 5.0 Update 14 and earlier, allows remote attackers to cause a denial of service (crash) via unknown vectors. |
|
3.5 | CVE-2008-1194 SUNALERT |
Last updated March 10, 2008
March 7th, 2008
No Comments »
Check out the links below to my latest EMC document additions:
March 7th, 2008
No Comments »
To all:
We have a healthy mix of Cisco events coming up over the next several weeks. The next generation wireless event is live in the Cisco Richfield office next week. The remaining 4 events are scheduled webinars. Wireless, ASA capabilities, PCI compliance, and WAN acceleration will all be reviewed. We encourage you to participate! Have a safe weekend.
Sincerely,
|
||||||||||
FREE ASA Technical Training every Friday – Customers Welcome!
ASA Technical Series: In addition to the Power of PIX Plus webcast series we will be running an ASA Technical JumpStart Series for Partners. These 60 to 90 minute webcasts are ideal for the IT security team/individual that are looking for deep dive technical information regarding specific features, functionality, and configuration of the ASA 5500 series.
Pre-Registration is Required – All webcasts outlined below start at 2:00PM EST/1:00PM CST
March-7 ASA 8.0 Overview and Live Product Demo
March 7th, 2008
No Comments »
 |
 |
 |
 |
March 12, 2008 |  |
 |
 |
 |
| Upcoming Forum Scheduled For Wednesday, March 12, 2008 | |
|
You should attend the Vulnerability Expert Forum if you
Topics To Be Discussed
|
March 7th, 2008
No Comments »
Ever wonder what Information Security will look like 10 years from now? Will it evolve or be radically different from today? Information Security as we know it may not exist; it may simply be embedded into everything. Or Web services may upend traditional enterprise security.
The editors of SearchFinancialSecurity.com compiled an e-guide addressing these specific questions. They asked some of the best and brightest minds in the business what they see ahead and the answers were far ranging: everything from attacks masked heavily with encryption to zombification of corporate networks. Some predict radical changes while others foresee more of the same.
Security luminary and CTO, BT Counterpane, Bruce Schneier; Former White House Cyper-Security Advisor, Howard Schmidt; Vice President, CSO, Sun MicroSystems Whitfield Diffie; and creater of SNORT, Martin Roech, all with their own predictions, all compiled here to help you prepare your organization for what’s to come. Activate your membership today and take a peak at what the future may hold.
http://go.techtarget.com/r/3215543/6160272
ABOUT SEARCHFINANCIALSECURITY.COM
Launched this past January, SearchFinancialSecurity.com is THE information resource for IT pros in the financial industry charged with securing their organizations infrastructure. This free website combines all the technical information you’ve always received from Information Security magazine, with advice, analysis and news tailored to the specific challenges you face as a security pro in the financial industry.
Activate your membership today and receive exclusive access to a variety of complimentary resources including webcasts, white papers, expert articles, breaking industry news updated daily, security-specific email updates by topic and so much more.
http://go.techtarget.com/r/3215544/6160272
___________________________________________________________________
ABOUT THIS E-NEWSLETTER
This e-newsletter is published by SearchSecurity.com, a targeted Web site from TechTarget, the IT Media ROI Experts. TechTarget offers magazines, Web sites, e-newsletters, Webcasts and conferences for enterprise IT professionals.
Copyright 2008 TechTarget. All rights reserved.
____________________________________________________________________
Contact us:
SearchSecurity.com
Member Services
117 Kendrick Street, Suite 800
Needham, MA 02494
March 7th, 2008
No Comments »
<FRIDAY>
Each Friday, we present a short list of the hottest whitepapers, webcasts and research available. Information you can use to solve problems that crept up this week or throughout the year, and to prepare for the challenges you’ll face in 2008. We also dish out interesting facts, quotes and other brain candy. (Hint: The fun stuff is near the bottom, so don’t forget to scroll.) Have a great weekend!
Stratus Technologies: Taming the Hydra – Issues Impacting Business Continuity
We live in an unpredictable world–but your users don’t need to know that.
Microsoft Dynamics: Enabling Real-World SOA to connect your business vision with software
Rejected, bloated, unorganized and irrelavent is no way to go through life. (For your SOA project, that is.)
Trend Micro: Your Enterprise Is Only as Secure as Your Macs
And you thought only PCs were at risk…
Sophos: Safe and Productive Browsing in a Dangerous Web World – The Challenge for Business
6 top hacker tricks–and how to work around them.
Credant Technologies: Advances in Endpoint Data Security
New technology to meet your security, operations and compliance needs.
Akamai Technologies: The 2008 Handbook of Application Delivery
If you’re still stuck in the olden days of stovepiped IT functions, this detailed e-book may hold the key to your transformation.
Aerohive Networks: Craig Mathias Explores Advances in WLAN Architecture and Aerohive’s Controllerless Approach
The smarter way to structure wireless.
Apple Music Event 2001 – The First Ever iPod Introduction
A portable handheld device that can hold 1,000 songs? Nah, it’ll never fly.
On this day in 2006, Apple Inc. was granted the patent to the iPod. And in 1876, Alexander Graham Bell was granted a patent for an invention he called the telephone. Happy Birthday actresses Rachel Weisz (1971) and Wanda Sykes (1964), singer Taylor Dayne (1962), former tennis champion Ivan Lendl (1960), actor Bryan Cranston (1956), former Pittsburgh Steelers Lynn Swann (1952) and Franco Harris (1950), studio exec Michael Eisner (1942) and Tammy Faye Bakker (1942-2007), TV personality Willard Scott (1934), astronomers Henry Draper (1837-1882) and John Herschel (1792-1871). RIP moviemaker Stanley Kubrick (d. 1999) and philosopher Aristotle (322 BC).
“Statistics: The only science that enables different experts using the same figures to draw different conclusions.”
– Evan Esar
</FRIDAY>
IDG Connect is a service of IDG Communications, Inc., part of International Data Group–the world’s leading technology media and event company. IDG Communications’ company brands include CIO, CSO, Computerworld, GamePro, InfoWorld, ITworld, Macworld, Network World, and PC World, as well as technology-related events including LinuxWorld Conference & Expo, Macworld Conference & Expo, and DEMO.
As a customer of one of the IDG Communications brands, you became eligible to receive email from IDG Connect. For more information, read the IDG Privacy Statement.
If you would like more information about the opportunity to promote your (client’s) research assets through IDG Connect, to access the synchronized audience of the world’s most powerful family of technology brands, please visit us here.
IDG Connect, 3 Speen Street, Framingham, MA 01701 
March 7th, 2008
No Comments »
|
|||
|
|
|||
|
Your source for the latest news and support information |
|||
|
|||
|
|
|||
| DABCC Radio
Virtualization Security Podcast with Greg Ness from Blue Lane Technologies – March 6, 2008 – Episode 41 In episode 41, Douglas Brown interviews Greg Ness, Vice President of Marketing at Blue Lane Technologies. Doug and Greg will discuss Blue Lane’s virtualization security solution, VirtualShield. Greg also gives us a detailed explanation of why virtualization security is important, the pros and cons of virtualization security, and a glimpse in to the future of virtualization security. This is a must listen to podcast for anyone who has deployed and/or is thinking of deploying a virtualization solution. http://www.dabcc.com/podcastdetail.aspx?id=48 Presentation Virtualization Resources Citrix SpeedScreen Progressive Display Delivers PACS Images You may have already seen the Tolly Group’s report on how SpeedScreen Progressive Display enables delivery of PACS images to healthcare workers over a variety of network types. But for me it is even more exciting to hear from customers actually experiencing this technology in the field. Recently I learned of a hospital network using XenApp 4.5 (formerly known as Presentation Server) to delivery radiography images from their Agfa IMPAX 6.2 image and information management system. http://www.dabcc.com/article.aspx?id=7188 How Do I Know If Citrix “RAVE” Is Working? Recently I published a video blog post about RAVE (Remote Audio & Video Extensions), the technology behind SpeedScreen Multimedia Acceleration. RAVE supports high quality playback of media streams that can be decoded by a media player that uses DirectShow or DirectX Media Objects (DMO). A question came in from the field asking how a customer can determine whether SpeedScreen Multimedia Acceleration is functioning. So here are some handy tips for verifying whether RAVE is working or not. In addition, you’ll find a helpful troubleshooting article in our Knowledge Center. http://www.dabcc.com/article.aspx?id=7199 What is the Future of XenApp for UNIX (MetaFrame for Unix) As a follow up to Carlo’s post on XenApp for UNIX, I would like to discuss our future for the UNIX product. XenApp for UNIX is a fully supported, maintained and enhanced product. Since we released Presentation Server for UNIX 4.0, the product has been following an incremental feature delivery model. http://www.dabcc.com/article.aspx?id=7198 Citrix White Paper – “Migration To Citrix Presentation Server 4.5 Made Simple, Quick And Reliable” Why and how to migrate to Citrix Presentation Server 4.5 with enteo Management Suite for Citrix Presentation Server. With Citrix Presentation Server 4.5, Citrix Systems, Inc. delivers an exciting new version of their Presentation Server product, with many new features including but not limited to: http://www.dabcc.com/article.aspx?id=7195 Citrix White Paper – “enteo Citrix Presentation Server Migration Accelerator (Version 1.0)” The following white paper details information on how to install and maintain the enteo Citrix Presentation Server Migration Accelerator. The enteo Citrix Presentation Server Migration Accelerator is a wizard driven builder, which collects several software product files, product license keys and other information needed for creating an ISO file. You can either use this ISO directly in VMware or you can burn it to a DVD and use it on a separate hardware. http://www.dabcc.com/article.aspx?id=7194 Xceedium GateKeeper Review – Policy Citrix Security Solution At Summit in January I ran into an interesting Citrix partner – Xceedium. It’s a security company with an appliance product, called GateKeeper, that is complementary to XenApp. It enforces security policy by providing compartmentalization and containment. http://www.dabcc.com/article.aspx?id=7189 Citrix Announces GoToAssist Express Beta Citrix Online has introduced Citrix GoToAssist Express Beta, inviting small businesses and individual consultants to participate in the final development of its new remote support solution. GoToAssist Express has been designed specifically to enable small businesses and professionals to provide instant, Web-based support to their customers. http://www.dabcc.com/article.aspx?id=7190 Citrix Web Interface Analyze Centre A few Glance at Free articles ago I already wrote about Thomas Kötzings Web Interface modifications. These modifications are changing the behavior of the default Citrix Web Interface, but Thomas also created a nice another add-on for the Web Interface answering one of the most asked questions about the usage of Web Interface: How many requests is the Web Interface server handling in a time frame? http://www.dabcc.com/article.aspx?id=7180 What’s in Citrix’s Project Delaware? Before I get into Delaware details, let me give you the inside scoop on the project name. For those who haven’t figured it out by now, all our XenApp releases are named after rivers. Project Delaware will be the first major release to support Windows Server 2008 and we have been working on this release for almost 2 years. It has been a great journey and we know its importance. http://www.dabcc.com/article.aspx?id=7187 Citrix Delivery Center Helps Customers Transform Datacenters Into Delivery Centers Citrix Systems, Inc. announced Citrix Delivery Center, a new overarching product family brand for its market-leading application delivery infrastructure solutions. The Citrix Delivery Center product family features four primary product lines: Citrix XenServer™, Citrix XenDesktop™, Citrix® NetScaler® and Citrix XenApp™ – the new name for Citrix Presentation Server™. Citrix also unveiled a new tool called Citrix Workflow Studio designed to help customers unlock the full power of Citrix Delivery Center by orchestrating communications across multiple Citrix products as well as third-party solutions. http://www.dabcc.com/article.aspx?id=7170 Citrix-Based Training Software Now Available As Freeware – sepagoCLASSROOM A challenge in IT administration is to familiarize users with in-house applications in the enterprise. This challenge grows with the individuality of the applications, with the number of users to be trained, and with the number of sites across which these are distributed. A solution for this problem is sepagoCLASSROOM, based on Citrix Presentation Server technology, which can now be downloaded as freeware from the manufacturer’s home page http://www.sepago.de/e/sepagoCLASSROOM.html http://www.dabcc.com/article.aspx?id=7161 Citrix Releases Desktop Virtualization Beta – Citrix XenDesktop Today Citrix released a beta of their desktop virtualization solution they call XenDesktop. The Citrix XenDesktop Beta enables you to experience an end-to-end desktop virtualization system and gives you insight into how XenDesktop delivers the best end-user experience and lowest TCO. http://www.dabcc.com/article.aspx?id=7159 Ericom announces FREE Presentation Virtualization solution that enhances Windows Server 2008 Terminal Services Ericom Software, a leading global provider of Application Access and Virtualization solutions and a Microsoft Gold Certified Partner, today announced a special version of its flagship product line – PowerTerm WebConnect for Windows Server 2008 – that provides enhancements to Microsoft’s newest Terminal Services release. These enhancements are available now for FREE and are distributed through a download from Ericom’s website at www.ericom.com/ws08. http://www.dabcc.com/article.aspx?id=7156 First look at Citrix Web Interface 5.0 Citrix web guru Thomas Koetzing just released an amazing article giving us all a glimpse at Citrix’s Web Interface 5.0! Microsoft has release Windows Server 2008 in February of 2008 and Citrix will follow with their release of Presentation Server 5.0 (Delaware) that is targeted for the new Windows server generation. With each new full release of Presentation Server, the product components are also updated to support the new version. http://www.dabcc.com/article.aspx?id=7151 Announcing DABCC Virtualization Blogs! I’m very happy to announce DABCC Virtualization Blogs and my personal blog that I call, “Doug’s Virtualization Ramblings”!!! http://www.dabcc.com/article.aspx?id=7143 How to Add a Printer Driver Mapping through Citrix MFCOM The following article brings back memories for me. Way back in 2002 when I first started learning MFCOM and started working on a project I called “Project Compatibility” I learned how to add a printer driver mapping via VB using MFCOM and now I see there is an awesome article teaching all of you guys the same thing but with a script. This is really handy so I hope you find it useful!! http://www.dabcc.com/article.aspx?id=7136 RES Software Unveils Free User Workspace Management Solution, Available For Download Today RES Software today announced the availability of RES PowerFuse 2008 Express Edition, a free version of its flagship solution RES PowerFuse 2008. http://www.dabcc.com/article.aspx?id=7131 Microsoft Releases The RDP Specifications To The Public Have you ever wanted to know how Microsoft’s Remote Desktop Protocol (RDP) works on the inside? Well now you can. Microsoft has just made the specifications of RDP freely available for download, all 30,000 pages of it. This move by Microsoft has even been reported at The New York Times and CNN. http://www.dabcc.com/article.aspx?id=7120 How to Integrate Terminal Services ‘08 RemoteApps and SharePoint With Server 2008 you can publish icons to a web part in SharePoint and launch applications over Terminal Services from within that web experience. This is fantastic for any organization that might want to ensure applications are available for remote users but are uncertain about the consistency of user’s home machines. http://www.dabcc.com/article.aspx?id=7119 Server / Application / Desktop Virtualization Resources AU REVOIR LAYER 4 (IPS): VMsafe and Cannes Last month I blogged that 2008 would become The Year of Virtsec; last week at Cannes VMware announced their VMsafe initiative; this week the blogs and press are buzzing with what may indeed be the IT industry’s equivalent of the Beatles first appearance on Ed Sullivan. The turnout, the enthusiasm and the security leadership articulated by VMware has set the stage for a substantial shift in data center security. http://www.dabcc.com/article.aspx?id=7193 VMworld Europe 2008 – Virtual and Physical Management This is the 4th VMworld conference that I’m attending representing Microsoft. And it’s the first time I’ve heard/seen acknowledgment from VMware that if virtualization isn’t everywhere (which it’s not) then management of the non-VM layer is important. http://www.dabcc.com/article.aspx?id=7186 VMworld Europe 2008 – Stay Safe Today Day 2 began with Dr. Mendel Rosenblum’s keynote, which Alessandro outlined here. And the security pat-down to get through the door foreshadowed the latter portion of Mendel’s keynote, which focused on a new security initiative by VMware. Called VMsafe, this initiative allows security software vendors (like McAfee – maybe even Microsoft Forefront one day) to write their anti-malware and other security software to ESX Server hypervisor API. http://www.dabcc.com/article.aspx?id=7185 VMware VMotion and VLAN Security Xensploit, as it’s called, is the recently demonstrated exploit that allows virtual machines (VMs) that are “in flight” during a live migration (XenMotion in Citrix XenServer, VMotion in VMware ESX Server) to be manipulated. If you haven’t yet read the PDF that describes Xensploit, I highly encourage that you take a look at it. It’s very enlightening as to exactly what can be done to an in-flight VM. http://www.dabcc.com/article.aspx?id=7191 Moving Past the Virtualization Hype It’s only natural, I suppose. When wireless networking started to become popular, it was decried as insecure and everyone was warned against using it. When mobile computing started to take off, it was proclaimed a terrible security risk, and organizations were warned against it. And now it’s happening with server virtualization. Of course, since VMware is the lead player in this realm, they are the ones with the target on their back. http://www.dabcc.com/article.aspx?id=7179 VMware’s VMsafe: The Good, the Bad, the Bubbly… Back in August before VMworld 2007, I wrote about the notion that given Cisco’s investment in VMware, we’d soon see the ability for third parties to substitute their own virtual switches for VMware’s. Further, I discussed the news that VMware began to circulate regarding their release of an API originally called Vsafe that promised to allow third party security and networking applications to interact with functions exposed by the Hypervisor. http://www.dabcc.com/article.aspx?id=7184 VMWare’s VMSafe: Security Industry Defibrilator….Making Dying Muscle Twitch Again As I mentioned in a prior posting, VMware’s VMsafe has the potential to inject life back into the atrophied and withering heart muslce of the security industry and raise the prognosis from DOA to the potential for a vital economic revenue stream once more. http://www.dabcc.com/article.aspx?id=7183 Citirx XenServer Family Includes Three Virtualization Products The Citrix XenServer Product Family enables businesses to deploy high-performance Windows and Linux virtual machines, and manage them and their related storage and networking resources from a single management console. http://www.dabcc.com/article.aspx?id=7182 Desktop Virtualization (VDI) Announcements at VMworld Europe 2008 Back in 2006, I speculated that one day VMware would allow hosted virtual desktops to be “checked out” and used offline. Lo and behold, one of the announcements that has come out of VMworld Europe 2008 is just that very thing (quoting from VMware’s web site): http://www.dabcc.com/article.aspx?id=7178 IBM Presents ‘Virtualization-Ready’ Blade Server IBM today announced a new blade server with an embedded VMWare hypervisor, allowing clients to adopt virtualization quickly and easily. The new BladeCenter HS21 XM with the embedded VMware ESX 3i hypervisor will help customers accelerate server virtualization or upgrade to more advanced virtualization capabilities while providing a high level of reliability and simplifying system management. http://www.dabcc.com/article.aspx?id=7176 The Virtualization Challenge, Part 2: Making the Case Part 1 of this five-part series defines the various types of virtualization. This installment looks at the business reasons for virtualizing your IT system. How will virtualization contribute to your top or bottom line? How much can you save? http://www.dabcc.com/article.aspx?id=7175 Should Storage Virtualization Always Be Part Of A Virtual Processing Environment? John Joseph, VP of Marketing of Dell EqualLogic Storage, and I had a short, but interesting dicussion about the place virtual storage should have in a well designed virtualized environment. If one is attempting to abstract functions away from the underlying physical platform, it simply makes sense to do the same for functions such as storage. http://www.dabcc.com/article.aspx?id=7174 Parallels Releases Public Beta of Parallels Server Parallels, Inc. today announced that Beta 2 of its Parallels Server hardware virtualization solution is now available for immediate public download at www.parallels.com/server/beta. http://www.dabcc.com/article.aspx?id=7173 Desktop Virtualization Nears Inflection Point We surveyed 50 CIOs from IT departments of Fortune 1000 or equivalent companies regarding their future expectations for their PC infrastructure. The results of our survey and our channel checks reinforce our thesis that desktop virtualization is now becoming a critical component of many companies’ desktop replacement strategies. Specifically, the average utilization of traditional desktops are expected to decline from 87.8% currently to 74.3% in five years, while survey respondents indicated that virtual desktops would grow from 1.6% of deployments to 8.5% in five years. http://www.dabcc.com/article.aspx?id=7162 CollabNet® Virtualization Offering Cuts IT Infrastructure Costs by Half CollabNet, the leading provider of solutions for distributed software development and the company behind Subversion®, the world’s best Software Configuration Management tool, today announced version 1.5 of CollabNet Centralized & Unified Build, Integration, Test (CUBiT). CUBiT simplifies software development through real-time creation and management of virtualized build and test environments for globally distributed teams. Unlike generic virtualization solutions, CUBiT provisions both virtualized and physical servers while bringing significant advantages such as the versioning and central management of system configurations from development to test and deployment. This minimizes the risk for configuration errors between the different stages. http://www.dabcc.com/article.aspx?id=7169 Six Keys To Virtualization Project Success With server virtualization being all the rage, it can be very tempting to jump into it with a “build it and they will come” mentality. This could be risky, since recent surveys have indicated that a sizable number of adopters aren’t able to determine if their projects were successful. http://www.dabcc.com/article.aspx?id=7171 Microsoft’s Turner: Our Virtualization Is More Versatile When he wasn’t making people in the audience laugh, Microsoft CEO Steve Ballmer spent last night’s keynote at the Cebit trade show talking about technology trends and how Microsoft is leveraging them for a greener, more productive future. Microsoft COO Kevin Turner, in a keynote speech Tuesday, did essentially the same thing. http://www.dabcc.com/article.aspx?id=7168 Is VMware a Sinking Ship? When VMware’s stock took a nosedive last month, the headlines were grim. “VMware Smashed,” said one; “The Party’s over,” said another. My favorite of these claimed that VMware had suffered through a “Wall Street Chainsaw Massacre.” http://www.dabcc.com/article.aspx?id=7167 Microsoft’s Hyper-V: Why All The Fuss? In the field of server virtualization, the current focus of attention is the impending release of Hyper-V, Microsoft’s long awaited hypervisor technology (due to ship six months after the launch of Windows Server 2008). But what exactly is a hypervisor? More importantly, why is Microsoft’s implementation causing such a stir, and how will Hyper-V fit into the increasingly competitive server virtualization market? http://www.dabcc.com/article.aspx?id=7163 VKernel Introduces First Virtual Appliance to Immediately Find Capacity Bottleneck Issues in VMware ESX Environments VKernel Corporation announced today its Capacity Bottleneck Analyzer Virtual Appliance, which immediately identifies current and future capacity bottlenecks to ensure the performance of VMware ESX environments. http://www.dabcc.com/article.aspx?id=7160 Controlling Virtualization Sprawl Server virtualization has brought many benefits to businesses during the past few years. Organizations have been able to lower the number of physical servers and ultimately reduce hardware and maintenance costs. With virtual servers, IT departments have been able to respond to the technical needs of their organizations more quickly and deploy a system at only a fraction of the time that it would take to deploy a physical device. Without a doubt, server virtualization has exceeded the expectations of many organizations, consistently delivering a healthy ROI. http://www.dabcc.com/article.aspx?id=7138 Is VMware Killing the Storage Industry? That seems to be the message still coming out of Virtual Iron. I thought Ed Walsh’s conversation about this had died off a long time ago. Apparently I was mistaken since it came up at a customer again yesterday. Ed is the CEO and President of Virtual Iron. He gave a talk at Storage Decisions late last year that appeared on YouTube. He also recorded a rather humorous “cocktail hour” talk and posted it to YouTube as well. Both say basically the same thing – VMware is killing the storage industry. I really have a hard time believing that. http://www.dabcc.com/article.aspx?id=7137 VKernel Collaborates with VMware on First Virtualization Solution Acceleration Kit VKernel Corporation, a provider of easy-to-use and quick-to-deploy virtual appliances for managing virtual server environments, announced today the VKernel Solution Acceleration Kit, a collaborative effort with VMware to quickly enable VMware Authorized Consultants (VACs) to build services for accelerating their customers’ virtual infrastructure adoption and operational readiness. http://www.dabcc.com/article.aspx?id=7158 A Printer Virtualization Layer for All Virtualized Solutions Companies with virtualization strategies can utilize resources more efficiently, simplify the system administration, and make applications or desktops centrally available for PCs or thin clients. Virtualization becomes problematic with printing: All printer drivers in use must be made available to every desktop and must be updated. A remedy to this is the printer virtualization layer developed by ThinPrint, which the company will present at CeBIT. http://www.dabcc.com/article.aspx?id=7154 Virtualization Shakes Up Backup Strategy Virtualization is causing customers to rethink their backup strategies, with technology that combines pieces of traditional and well-understood enterprise backup with some pieces that are unique in the virtualized world. http://www.dabcc.com/article.aspx?id=7152 VMware’s Performance Team Releases Two New Papers One of the claims to fame of VMware’s virtualization products have been their ability to perform very well over the last few years – creating a benchmark, in my mind, for others to reach and achieve with their own platforms. http://www.dabcc.com/article.aspx?id=7150 Symantec Introduces Virtualization with Messaging Defense New Virtual Edition of Symantec Mail Security 8300 Appliance Allows Users to Instantly Add or Remove Antispam and Antivirus Capa http://www.dabcc.com/article.aspx?id=7148 Will VMware Really Become The Next Netscape? The answer is simple, if VMware is not careful they absolutely will become the next Netscape. That being said, the more I think about this question, the more I can think of ways for VMware to thwart the Microsoft and friends attack. VMware needs to “go to the mattresses” they need to fight back and VMware has the capabilities and so far they seem to have the will and determination to do so. http://www.dabcc.com/article.aspx?id=7142 Sanbolic Announces Support for Windows Server 2008 Hyper-V in Melio FS 2008 Sanbolic, Inc., a leading developer of software to simplify and share SAN storage, today announced the availability of Melio 2008 and LaScala 2008, as well as support for Microsoft Windows Server 2008 Hyper-V. Hyper-V is Microsoft’s new hypervisor-based server virtualization solution, which will be available as part of select versions of Windows Server 2008 later this year. Hyper-V is currently available in Beta. Melio and LaScala have added support for Windows Server 2008, which was released earlier this month. http://www.dabcc.com/article.aspx?id=7146 Neterion Delivers Industry’s First IOV Compliant 10 Gbps Ethernet Adapter for Virtualized Data Centers Neterion, Inc., the industry leader in 10 Gigabit Ethernet (10 GbE) adapters for server and storage environments, today announced its third generation X3100 Series adapters at VMworld in Cannes, France. Neterion’s X3100 Series eliminates the I/O bottleneck by enabling multiple guest OS’s of a virtual environment to share one physical adapter through the use of physically separate I/O channels — while preserving all the advantages of virtualization, including mobility and manageability. http://www.dabcc.com/article.aspx?id=7145 Microsoft Updates their MSI Utility for Microsoft Application Virtualization Microsoft have just updated their MSI utility for Microsoft Application Virtualization (SoftGrid). The MSI Utility for Microsoft Application Virtualization is a new tool designed to extend virtual application deployment in certain key scenarios. In cases where a computer running Microsoft System Center Virtual Application Server is not available, the MSI Utility allows delivery of sequenced applications directly to Microsoft SoftGrid Application Virtualization for Desktops and Microsoft SoftGrid Application Virtualization for Terminal Services. http://www.dabcc.com/article.aspx?id=7141 Kidaro Unveils Virtual Desktops for Enterprise Disaster Recovery Kidaro unveiled the Kidaro Desktop DR solution for rapid disaster recovery of employee desktop access. With the Kidaro Desktop DR solution, enterprises can maximize business continuity by distributing corporate-controlled virtual desktops on DVDs, USB drives, or over the Web. http://www.dabcc.com/article.aspx?id=7133 Server Virtualization Performance Test Results Released Automated web load and stress testing software developer, Web Performance (WPI), has released its latest investigative research on the leading virtualization software, VMware ESX Server 3. http://www.dabcc.com/article.aspx?id=7132 Novell to Acquire Data Center Management Leader PlateSpin Novell today announced it has entered into a definitive agreement to acquire PlateSpin Ltd. This acquisition will extend Novell’s leadership position in the next-generation data center by providing the only solution to dynamically deliver business critical services across both physical and virtual infrastructures. http://www.dabcc.com/article.aspx?id=7127 Two Vulnerabilities Found In VMware Virtualization Products Security researchers have uncovered a pair of vulnerabilities in VMware software, which is used to run multiple versions of an operating system on a single computer. One flaw affect a server version of the software, the other is found in desktop software. http://www.dabcc.com/article.aspx?id=7126 VMware Brings Unprecedented Levels of Automation to the Datacenter with Virtual Machine Management Products VMware, Inc. today showcased four new virtual machine management products that bring unprecedented automation of IT service delivery and business continuity to the datacenter. These products extend the VMware virtualization platform by automating previously error-prone, slow and manual processes. http://www.dabcc.com/article.aspx?id=7124 Citrix Releases Citrix Provisioning Server XenApp Integration Utility Citrix support just released a free utility to help you with installing Citrix XenApp (Presentation Server) inside a Citrix Provisioning Server for Datacenters Virtual Disk. It details the steps necessary to install and configure XenApp with a Provisioning Server implementation. http://www.dabcc.com/article.aspx?id=7123 Better Living Through Virtualization, But Why? With every new technology introduction there is an understanding curve that tracks somewhere loosely along the adoption lifecycle. Sometimes very loosely. The Virtualization Revolution is no stranger to this phenomenon of a mixed level of understanding throughout the industry. http://www.dabcc.com/article.aspx?id=7122 Veeam Software Announces Management Suite for VMware Veeam Software, innovative provider of systems management tools for VMware ESX Server environments, today announced the Veeam Management Suite for VMware, a comprehensive suite designed to address many of the common challenges faced by ESX administrators. The Veeam Management Suite for VMware works with and extends VMware VirtualCenter to help simplify the management of virtual environments — thereby reducing costs, increasing productivity and mitigating risk. http://www.dabcc.com/article.aspx?id=7118 How Virtualization Solves Real Problems Virtualization, lately the “it” thing in information technology, comes in many forms and flavors. It’s really best thought of as shorthand for separating hardware and software and thereby achieving all kinds of goodness. http://www.dabcc.com/article.aspx?id=7117 NetApp Automates VMware Backup Network Appliance last week unveiled software that it said can ease backup and storage management tasks for corporate IT operations running VMware virtual servers. http://www.dabcc.com/article.aspx?id=7113 Microsoft Windows Server / Desktop Resources segago Updates their “How to Choose a Windows Profile Solution (Version 1.5 of the User Profile Whitepaper)” segago’s Nicholas Dille just released an update to his “How to Choose a Windows Profile Solution” white paper. Due to the evolving strategies for delivering applications as well as desktops, Nicholas decided to expand on the issue of evaluating user profile management solutions and the subtleties involved in this process. http://www.dabcc.com/article.aspx?id=7200 Windows Vista SP1 Improves Speed Up to 86% Faster Is Windows Vista SP1 really the shot in the arm your Vista system needs? We’ve spent many hours strapped to our benchmarking system in a caffeine and pizza fuelled haze to uncover these very interesting results. http://www.dabcc.com/article.aspx?id=7177 Download Windows Server 2008 Reviewers Guide Microsoft just released the Windows Server 2008 Reviewers Guide for download! The Windows Server 2008 Reviewers Guide provides a comprehensive technical overview of the innovative features and functions that make Windows Server 2008 the next-generation Microsoft Windows Server operating system and successor to Microsoft Windows Server 2003. http://www.dabcc.com/article.aspx?id=7115 |
|||
|
|
|||
Sponsored Links:
|
|||
|
|
|||
That is what I have for you this week. As always, please support DABCC by visiting my partners. Visit their sites please!!! These are the guys that make DABCC.com possible! I would also like to add that I only partner will stellar companies!!! Thanks, DB Douglas A. Brown |
March 7th, 2008
No Comments »
National Cyber Alert System
Technical Cyber Security Alert TA08-066A
Sun Updates for Multiple Vulnerabilities in Java
Original release date: March 6, 2008
Last revised: –
Source: US-CERT
Systems Affected
Sun Java Runtime Environment versions
- JDK and JRE 6 Update 4 and earlier
- JDK and JRE 5.0 Update 14 and earlier
- SDK and JRE 1.4.2_16 and earlier
- SDK and JRE 1.3.1_21 and earlier
Overview
Sun has released alerts to address multiple vulnerabilities affecting the Sun Java Runtime Environment. The most severe of these vulnerabilities could allow a remote attacker to execute arbitrary code.
I. Description
The Sun Java Runtime Environment (JRE) allows users to run Java applications in a browser or as standalone programs. Sun has released updates to the Java Runtime Environment software to address multiple vulnerabilities. Further details about these vulnerabilities are available in the US-CERT Vulnerability Notes Database.
Sun released the following alerts to address these issues:
- 233321 Two Security Vulnerabilities in the Java Runtime Environment Virtual Machine
- 233322 Security Vulnerability in the Java Runtime Environment With the Processing of XSLT Transformations
- 233323 Multiple Security Vulnerabilities in Java Web Start May Allow an Untrusted Application to Elevate Privileges
- 233324 A Security Vulnerability in the Java Plug-in May Allow an Untrusted Applet to Elevate Privileges
- 233325 Vulnerabilties in the Java Runtime Environment image Parsing Library
- 233326 Security Vulnerability in the Java Runtime Environment May Allow Untrusted JavaScript Code to Elevate Privileges Through Java APIs
- 233327 Buffer Overflow Vulnerability in Java Web Start May Allow an Untrusted Application to Elevate its Privileges
II. Impact
The impacts of these vulnerabilities vary. The most severe of these vulnerabilities allows a remote attacker to execute arbitrary code.
III. Solution
Apply an update from Sun
These issues are addressed in the following versions of the Sun Java Runtime environment:
- JDK and JRE 6 Update 5 or later
- JDK and JRE 5.0 Update 15 or later
- SDK and JRE 1.4.2_17 or later
- SDK and JRE 1.3.1_21 and earlier
If you install the latest version of Java, older versions of Java may remain installed on your computer. If these versions of Java are not needed, you may wish to remove them. For instructions on how to remove older versions of Java, refer to the following instructions from Sun.
Disable Java
Disable Java in your web browser, as specified in the Securing Your Web Browser document. While this does not fix the underlying vulnerabilities, it does block a common attack vector.
IV. References
- US-CERT Vulnerability Notes for Sun Alerts – <http://www.kb.cert.org/vuls/byid?searchview&query=SUNJAVA_020608>
- Securing Your Web Browser – <http://www.us-cert.gov/reading_room/securing_browser/>
- Sun Alert 233321 – <http://sunsolve.sun.com/search/document.do?assetkey=1-66-233321-1>
- Sun Alert 233322 – <http://sunsolve.sun.com/search/document.do?assetkey=1-66-233322-1>
- Sun Alert 233323 – <http://sunsolve.sun.com/search/document.do?assetkey=1-66-233323-1>
- Sun Alert 233324 – <http://sunsolve.sun.com/search/document.do?assetkey=1-66-233324-1>
- Sun Alert 233325 – <http://sunsolve.sun.com/search/document.do?assetkey=1-66-233325-1>
- Sun Alert 233326 – <http://sunsolve.sun.com/search/document.do?assetkey=1-66-233326-1>
- Sun Alert 233327 – <http://sunsolve.sun.com/search/document.do?assetkey=1-66-233327-1>
- Java SE Technologies at a Glance – <http://java.sun.com/javase/technologies/>
- Java SE Security – <http://java.sun.com/javase/technologies/security/index.jsp>
- Can I remove older versions of the JRE after installing a newer version? – <http://www.java.com/en/download/faq/5000070400.xml>
Feedback can be directed to US-CERT.
Produced 2008 by US-CERT, a government organization. Terms of use
March 6, 2008: Initial release
Last updated March 06, 2008
March 6th, 2008
No Comments »
This Microsoft Document resides HERE.
Changing the SQL Server Administrator Login
When using Windows NT integrated security with SQL Server, the SQL Server login information must be identical to the Windows NT account information. Therefore, if you change the Windows NT password of the domain account that the SQL Server is logged on with, then you also must update the password in the following SQL Server services: MSSQLServer, SQLServerAgent, MSDTC, and the MODTBAD Office Developer DCOM component.
If you change a password, it must be updated on the server, the developer workstation, and the client computers. If the password is not updated for the SQL Server Agent, Access Workflow Designer cannot start and stop the agent automatically. Access Workflow Designer also uses the agent to manage time-out events for team solutions, so it is critical this service be set up properly.
Any time you change a password, it should be updated in the following locations:
- Changing the sa Password on the Server
- Changing the User ID for MODTBAD
- Changing the sa Password on the Client
Changing the sa Password on the Server
During installation of the Access Workflow Designer server components, you enter the user name and password of the Windows NT domain. When using Windows NT integrated security, this same account information is used by SQL Services. When you change the Windows NT password for that log on, it also must be changed for SQL Server services. For information about changing the password when using MSDE, see Changing the sa Password on the Client.
To set up SQL Server services to log on under a different user account
- On the Start menu, point to Settings, and then click Control Panel.
- Double-click Services.
- Double-click MSSQLServer, SQLServerAgent, or MSDTC. You must update the information for each of these services.
- In the Services dialog box, in the Login area, select This account, and then enter or update the account information.
- Click OK. Update the other services listed in step 3 as required.
- Click Close.
Important If Microsoft Full-Text Search is installed on the computer, do not change the MSSQLServer account information in the Services application in Control Panel. Although the Search service is assigned to the local system account, it also tracks the MSSQLServer service account. You must change the MSSQLServer service account in SQL Server Enterprise Manager for the Microsoft Search service to stay synchronized.
Changing the User ID for MODTBAD
During installation of the Access Workflow Designer server components, you enter the user name and password of the Windows NT domain account that the Access Workflow Designer executable (MODTBAD.exe) uses to log on to the domain. Generally, this is the same account used by the SQL Server Services. If this is the case, when you change the Windows NT password for that log on, it also must be changed for MODTBAD.exe.
To change the User ID for MODTBAD
- From the Start menu on the server, select Run, and then type DCOMCNFG.
- If you have never run DCOMCNFG before and Office is installed on the server, you may see two messages asking if you want to register Msohelp.exe. Click Yes for both messages.
- On the Team Solutions tab, select MODTBAD.
- Click Properties, and then select the Identity tab.
- Under This user, type or browse for the user whose password has changed.
- Enter and confirm the new password.
- Click OK.
- Restart the server.
Note The Windows NT domain account used for the MODTBAD identity must have system administrator permissions on the server. However, this account does not have to be the same account used by SQL Server.
Changing the sa Password on the Client
You have a variety of options for updating the SQL Server Agent password on the clients. The method you specify depends on the tools available on the client computer.
If the SQL Server Enterprise Manager is available on the client computer, you can change the sa password directly. For details, follow the procedure in Changing the sa Password on the Server.
If Access is available on the client computer, update the password using the Security option on the Tools menu in an Access data project.
If you are using MSDE on the client, there is no user interface for changing the sa password for the SQL Server Agent. You can update the password by accessing the client computer remotely using SQL Server Enterprise Manager on the server.
To change the sa password on the client using Access
- From the Tools menu in your Access data project, select Database Security.
- On the Server Logins tab, select sa, and then click Edit.
- Change the password, and click OK.
You can connect to the client computer remotely to use SQL Server Enterprise Manager to modify the client settings as long as you have created a server alias for your client computer. For details, see Using MSDE with Windows 95/98.
To change the sa password on the client computer without SQL Server Enterprise Manager
- In the SQL Server Enterprise Manager, right-click the SQL Server Group, and select New SQL Server Registration. If the registration wizard launches, clear the Always run this wizard option, and click OK.
- Type the name of your client computer, or click Browse to display a list of computer names.
- Under Connection, select Use SQL Server authentication, enter sa in the Login Name field and the sa password, and click OK.
- Expand the client computer node you just added, and then expand the Management node.
- Right-click SQL Server Agent, and select Properties.
- On the Connection tab, enter the appropriate Password for SysAdmin login ID.
- Click OK.
After you have changed the client settings, you must synchronize your offline subscription by opening your solution in Internet Explorer and selecting Tools and then Synchronize. A dialog box appears in which you can enter the new password.
