Tuesday, February 16, 2010

NetStorage Security Alert

For those of you who may not have heard, there is a security vulnerability in NetStorare on NetWare 6.5 SP8 and OES2-Linux SP1.  It has been resolved in OES2-Linux SP2  and is available via the patch channel.

For NetWare 6.5 SP8, you'll find the fix at:
http://download.novell.com/Download?buildid=jVmjkdAzJXc~

This is known as NetStorage for NetWare 6.5 sp8 patch 27012010


From TID# 7005282:
There may be a potential security vulnerability with NetStorage that may allow remote attackers to execute arbitrary code on vulnerable installations of Novell NetStorage. Authentication is not required to exploit this vulnerability.
 
NetStorage on both NetWare and OES Linux is affected by this.

If you haven't patched you're servers yet, you might want to plan on it.  This doesn't seem to have a lot of urgency behind it, but it's better to be safe than sorry in this economy.
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)