The folks at F-Secure issued a bulletin today highlighting a buffer overflow in the web console feature of F-Secure Anti-Virus for Microsoft Exchange and F-Secure Internet Gatekeeper. F-Secure rates this vulnerability as high in the cases where the web console is configured to only allow connections from localhost or specific trusted hosts and critical if configured to allow connections from all hosts. They have released patches, the table below is taken directly from their advisory.
Patch availability:
--------------------------------- Jim Clausing, jclausing /at\ isc dot sans dot org I will be teaching next: Reverse-Engineering Malware: Malware Analysis Tools and Techniques - SANS DFIR Summit & Training 2022 |
Jim 423 Posts ISC Handler Jun 1st 2006 |
||||||||||||||||
Thread locked Subscribe |
Jun 1st 2006 1 decade ago |
Sign Up for Free or Log In to start participating in the conversation!