Enterprise Software

Download critical patches for GroupWise WebAccess and IE

Novell announced a serious vulnerability in its GroupWise WebAccess application this week, and Microsoft released a new patch that fixes three IE vulnerabilities. Here are the details, along with news from TrendMicro that the SirCam virus has resurfaced.


Exterminator brings you weekly updates on bug fixes, virus recovery, service release announcements, and security notices for Windows, Novell, Linux, and other systems.

Microsoft Security Bulletin (MS01-051)
Regarding: Microsoft Internet Explorer
Date posted: Oct. 10, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

This patch corrects three Internet Explorer (IE) vulnerabilities:
  • How IE deals with dotless IP addresses, which could cause IE to apply fewer security restrictions
  • How IE handles third-party sites, which could allow an attacker to manipulate those sites under the guise of a user
  • How IE invokes Telnet sessions, which could allow an attacker to place an executable file on the user's system

Novell issues
Regarding: BorderManager Enterprise Edition 3.6
Date posted: Oct. 12, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

Here's Support Pack 1a for BorderManager 3.6. It is designed for systems running NetWare 6. If you're using NetWare 4.x or 5.x and have already installed Support Pack 1, you don't need this one.

Regarding: GroupWise
Date posted: Oct. 15, 2001
Patch URL: Click here to download the patch for GroupWise 5.5 Enhancement Pack.
Patch URL: Click here to download the patch for GroupWise 6.
Information URL: Click here for more information.

A vulnerability has been found with GroupWise (GW) WebAccess through which an attacker could view files on a system running the component. This vulnerability affects both GW 5.5 Enhancement Pack and GW 6.

Virus updates from Trend Micro
Virus/Worm: TROJ_SIRCAM.A
Posted: Oct. 11, 2001
Risk: Medium
Information URL: Click here for more information on this virus.

Virus/Worm: TROJ_BADTRANS.A
Posted: Oct. 12, 2001
Risk: Medium
Information URL: Click here for more information on this virus.

Virus/Worm: JS_EXCEPTION.C
Posted: Oct. 12, 2001
Risk: Low
Information URL: Click here for more information on this virus.

Virus/Worm: TROJ_RUSH.A
Posted: Oct. 15, 2001
Risk: Low
Information URL: Click here for more information on this virus.

Stay current on virus information
Have you been keeping up with the latest virus information and patches from Microsoft and Novell? If not, visit the Exterminator archive for past columns with information on bugs and patches you may have missed.

 

Exterminator brings you weekly updates on bug fixes, virus recovery, service release announcements, and security notices for Windows, Novell, Linux, and other systems.

Microsoft Security Bulletin (MS01-051)
Regarding: Microsoft Internet Explorer
Date posted: Oct. 10, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

This patch corrects three Internet Explorer (IE) vulnerabilities:
  • How IE deals with dotless IP addresses, which could cause IE to apply fewer security restrictions
  • How IE handles third-party sites, which could allow an attacker to manipulate those sites under the guise of a user
  • How IE invokes Telnet sessions, which could allow an attacker to place an executable file on the user's system

Novell issues
Regarding: BorderManager Enterprise Edition 3.6
Date posted: Oct. 12, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

Here's Support Pack 1a for BorderManager 3.6. It is designed for systems running NetWare 6. If you're using NetWare 4.x or 5.x and have already installed Support Pack 1, you don't need this one.

Regarding: GroupWise
Date posted: Oct. 15, 2001
Patch URL: Click here to download the patch for GroupWise 5.5 Enhancement Pack.
Patch URL: Click here to download the patch for GroupWise 6.
Information URL: Click here for more information.

A vulnerability has been found with GroupWise (GW) WebAccess through which an attacker could view files on a system running the component. This vulnerability affects both GW 5.5 Enhancement Pack and GW 6.

Virus updates from Trend Micro
Virus/Worm: TROJ_SIRCAM.A
Posted: Oct. 11, 2001
Risk: Medium
Information URL: Click here for more information on this virus.

Virus/Worm: TROJ_BADTRANS.A
Posted: Oct. 12, 2001
Risk: Medium
Information URL: Click here for more information on this virus.

Virus/Worm: JS_EXCEPTION.C
Posted: Oct. 12, 2001
Risk: Low
Information URL: Click here for more information on this virus.

Virus/Worm: TROJ_RUSH.A
Posted: Oct. 15, 2001
Risk: Low
Information URL: Click here for more information on this virus.

Stay current on virus information
Have you been keeping up with the latest virus information and patches from Microsoft and Novell? If not, visit the Exterminator archive for past columns with information on bugs and patches you may have missed.

 

Editor's Picks