Security

New strains of Vote and Nimda viruses hit the Net

Exterminator looks at a variety of issues this week: Two new versions of the Vote virus and a new Nimda worm have appeared, a Microsoft Exchange 2000 bug adds to the e-mail security vulnerabilities, and Novell has released SP 3 for BorderManager 3.5.


Exterminator brings you weekly updates on bug fixes, virus recovery, service release announcements, and security notices for Windows, Novell, Linux, and other systems.

Microsoft Security Bulletin (MS01-049)
Regarding: Microsoft Exchange 2000
Date posted: Sept. 26, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

An attacker could cause a denial of service event by using Outlook Web Access to search for a nonexistent folder in his or her mailbox. The attacker would have to be an authenticated user, and normal service would resume once the search finished.

Novell issues
Regarding: Novell BorderManager Enterprise Edition 3.5
Date posted: Sept. 25, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

Novell has released Support Pack 3 for BorderManager 3.5. The list of issues SP3 addresses is extensive. As always, Novell recommends installing the fixes as a bundle rather than individually.

Virus updates from Trend Micro
In addition to its usual virus updates, Trend Micro has issued the following security advisory:

"WARNING: A fake e-mail message claiming to come from SecurityFocus' ARIS system and Trend Micro is being used to send what appears to be a Trojan. These messages do not come from SecurityFocus or Trend Micro. Trend Micro does not send e-mails with executable attachments, unless specifically requested to do so by individual customers."

To read the complete advisory, go to http://www.antivirus.com/vinfo/default.asp.

Virus/Worm: TROJ_VOTE.B
Posted: Sept. 26, 2001
Risk: Medium
Information URL: Click here for more information on this virus.

Virus/Worm: TROJ_VOTE.C
Posted: Sept. 27, 2001
Risk: Medium
Information URL: Click here for more information on this virus.

Virus/Worm: PE_NIMDA.A
Posted: Oct. 1, 2001
Risk: Medium
Information URL: Click here for more information on this virus.

Stay current on virus information
Have you been keeping up with the latest virus information and patches from Microsoft and Novell? If not, visit the Exterminator archive for past columns with information on bugs and patches you may have missed.

 

Exterminator brings you weekly updates on bug fixes, virus recovery, service release announcements, and security notices for Windows, Novell, Linux, and other systems.

Microsoft Security Bulletin (MS01-049)
Regarding: Microsoft Exchange 2000
Date posted: Sept. 26, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

An attacker could cause a denial of service event by using Outlook Web Access to search for a nonexistent folder in his or her mailbox. The attacker would have to be an authenticated user, and normal service would resume once the search finished.

Novell issues
Regarding: Novell BorderManager Enterprise Edition 3.5
Date posted: Sept. 25, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

Novell has released Support Pack 3 for BorderManager 3.5. The list of issues SP3 addresses is extensive. As always, Novell recommends installing the fixes as a bundle rather than individually.

Virus updates from Trend Micro
In addition to its usual virus updates, Trend Micro has issued the following security advisory:

"WARNING: A fake e-mail message claiming to come from SecurityFocus' ARIS system and Trend Micro is being used to send what appears to be a Trojan. These messages do not come from SecurityFocus or Trend Micro. Trend Micro does not send e-mails with executable attachments, unless specifically requested to do so by individual customers."

To read the complete advisory, go to http://www.antivirus.com/vinfo/default.asp.

Virus/Worm: TROJ_VOTE.B
Posted: Sept. 26, 2001
Risk: Medium
Information URL: Click here for more information on this virus.

Virus/Worm: TROJ_VOTE.C
Posted: Sept. 27, 2001
Risk: Medium
Information URL: Click here for more information on this virus.

Virus/Worm: PE_NIMDA.A
Posted: Oct. 1, 2001
Risk: Medium
Information URL: Click here for more information on this virus.

Stay current on virus information
Have you been keeping up with the latest virus information and patches from Microsoft and Novell? If not, visit the Exterminator archive for past columns with information on bugs and patches you may have missed.

 

Editor's Picks