Security

Make Padlock Fix for GroupWise a priority

This week, Exterminator's attention is on Novell. The company has released an important Padlock Fix, which it recommends you apply immediately if you're running GroupWise. In other news: Windows has another memory leak, and Trend Micro lists new viruses.


Exterminator brings you weekly updates on bug fixes, virus recovery, service release announcements, and security notices for Windows, Novell, Linux, and other systems.

Microsoft Security Bulletin (MS01-043)
Regarding: Windows NT 4.0 and Windows 2000
Date Posted: Aug. 14, 2001
Patch URL: Click here to download the WinNT patch.
Patch URL: Click here to download the Win2K patch.
Information URL: Click here for more information.

The NNTP Service in WinNT 4.0 and Win2K contains a memory leak. News postings with a particular construction cause memory to be lost. An attacker could exploit this vulnerability, resulting in a denial of service. NT admins don't need to take action unless the NT 4.0 Option Pack has been installed.

Novell issues
Regarding: BorderManager, OnDemand
Date Posted: Aug. 10, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

This download contains updates to the BorderManager 3.5 and 3.6 Proxy Cache, ACL components, and Snapins. These updates allow BorderManager to authenticate parent and forward proxies.

Regarding: Novell Clients
Date Posted: Aug. 13, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

A modified version of the same patch from last week, this download adds new functionality to Novell clients, allowing determination of the closest route to the server containing the requested data. It comes with an IP Costing White Paper, which Novell strongly suggests you read.

Regarding: GroupWise
Date Posted: Aug. 14, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

Novell has discovered a serious security issue with GroupWise 5.5 and 6.0 and has issued this Padlock Fix to address the problem. The company urges applying the fix immediately. It is available as a fix-only download, Support Pack 3 with the Padlock Fix, or multilingual Support Pack 3a. The links above are for the fix-only download. For the full selection, click here.

Virus updates from Trend Micro
Virus/Worm: TROJ_NEWSAGENT.A
Posted: Aug. 10, 2001
Risk: Low
Information URL: Click here for more information on this virus.

Virus/Worm: TROJ_ICMPBOMB.A
Posted: Aug. 13, 2001
Risk: Low
Information URL: Click here for more information on this virus.

Virus/Worm: CODERED.C
Posted: Aug. 14, 2001
Risk: Low
Information URL: Click here for more information on this virus.

Stay current on virus information
Have you been keeping up with the latest virus information and patches from Microsoft and Novell? If not, visit the Exterminator archive for past columns with information on bugs and patches you may have missed.

 

Exterminator brings you weekly updates on bug fixes, virus recovery, service release announcements, and security notices for Windows, Novell, Linux, and other systems.

Microsoft Security Bulletin (MS01-043)
Regarding: Windows NT 4.0 and Windows 2000
Date Posted: Aug. 14, 2001
Patch URL: Click here to download the WinNT patch.
Patch URL: Click here to download the Win2K patch.
Information URL: Click here for more information.

The NNTP Service in WinNT 4.0 and Win2K contains a memory leak. News postings with a particular construction cause memory to be lost. An attacker could exploit this vulnerability, resulting in a denial of service. NT admins don't need to take action unless the NT 4.0 Option Pack has been installed.

Novell issues
Regarding: BorderManager, OnDemand
Date Posted: Aug. 10, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

This download contains updates to the BorderManager 3.5 and 3.6 Proxy Cache, ACL components, and Snapins. These updates allow BorderManager to authenticate parent and forward proxies.

Regarding: Novell Clients
Date Posted: Aug. 13, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

A modified version of the same patch from last week, this download adds new functionality to Novell clients, allowing determination of the closest route to the server containing the requested data. It comes with an IP Costing White Paper, which Novell strongly suggests you read.

Regarding: GroupWise
Date Posted: Aug. 14, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

Novell has discovered a serious security issue with GroupWise 5.5 and 6.0 and has issued this Padlock Fix to address the problem. The company urges applying the fix immediately. It is available as a fix-only download, Support Pack 3 with the Padlock Fix, or multilingual Support Pack 3a. The links above are for the fix-only download. For the full selection, click here.

Virus updates from Trend Micro
Virus/Worm: TROJ_NEWSAGENT.A
Posted: Aug. 10, 2001
Risk: Low
Information URL: Click here for more information on this virus.

Virus/Worm: TROJ_ICMPBOMB.A
Posted: Aug. 13, 2001
Risk: Low
Information URL: Click here for more information on this virus.

Virus/Worm: CODERED.C
Posted: Aug. 14, 2001
Risk: Low
Information URL: Click here for more information on this virus.

Stay current on virus information
Have you been keeping up with the latest virus information and patches from Microsoft and Novell? If not, visit the Exterminator archive for past columns with information on bugs and patches you may have missed.

 

Editor's Picks

Free Newsletters, In your Inbox