The ALTI-MAX1000 server configuration is changing beginning in May 2009. The product part number for the new server is ALTI-MAX1000-B1.
The ALTI-MAX1000-B1 server uses the same CPU processor as the ALTI-MAX1000 but with the following changes:
•
1GB memory
•
Windows XP PRO operating system
Ship date for the new configuration is May 2009.
AltiGen Communications Announces Alti-Max1000-B1 Server to Begin Shipping
April 28, 2009
1 Comment | 
Altigen, Business Computer Support, Business Phone Solutions, Cisco, HP, Hewlett-Packard, Home Computer Support, Hosted VoIP, Internet Telephony Magazine, Microsoft, Microsoft Access 2003, Microsoft Exchange 2003, Microsoft Exchange 2007, Microsoft Exchange 2007 Voice Integration, Microsoft Office Communications Server 2007, Microsoft SQL Server 2005, Microsoft SQL Server 2008, Microsoft Small Business Server 2008, Microsoft Windows Essential Business Server 2008, Network Infrastructure, Non-Profit Technology, Non-Profits, PBX Systems, Telephone Systems, VoIP Phone | Tagged: 2008 Microsoft Worldwide Partner Conference, Airport Business Complex, Allentown, Altigen, AltiGen 802.1q support, Altigen Communications, AltiGen Max Communications Server 6.0, ALtiGen MAX1000, AltiGen MAX1000R, AltiGen Max2000, AltiGen Pennsylvania, Altigen Philadelphia, AltiGen Phone System, AltiGen QoS, AltiGen T1/PRI/E1 board, AltiGen VLAN, AtiGen Softswitch, Bardissi Enterprises, Bardissi Enterprises LLC, business telephone Allentown PA, business telephone DE, business telephone Delaware, business telephone Harrisburg PA, business telephone Lancaster PA, business telephone New Jersey, business telephone NJ, business telephone NYC, business telephone Philadelphia, business telephone systems, call center phone system Allentown PA, call center phone system DE, call center phone system Delaware, call center phone system Harrisburg PA, call center phone system Lancaster PA, call center phone system New Jersey, call center phone system NJ, call center phone system NY, call center phone system NYC, call center phone system Philadelphia, call recording Allentown PA, call recording DE, call recording Delaware, call recording Harrisburg PA, call recording Lancaster PA, call recording New Jersey, call recording NJ, call recording NY, call recording NYC, call recording Philadelphia, call tracking phone system DE, call tracking phone system Delaware, call tracking phone system Harrisburg PA, call tracking phone system Lancaster PA, call tracking phone system New Jersey, call tracking phone system NJ, call tracking phone system NY, call tracking phone system NYC, call tracking phone system Philadelphia, DE, Delaware, Harrisburg PA, hosted phone system Allentown PA, hosted phone system DE, hosted phone system Delaware, hosted phone system Harrisburg PA, hosted phone system Lancaster PA, hosted phone system New Jersey, hosted phone system NJ, hosted phone system Philadelphia, hosted voip Allentown PA, hosted voip DE, hosted voip Delaware, hosted voip Harrisburg PA, hosted voip Lancaster PA, hosted voip New Jersey, hosted voip NJ, hosted voip Philadelphia, hosted voip York PA, Integration with Microsoft Office Communicator, ip pbx Allentown PA, ip pbx DE, ip pbx Delaware, ip pbx Harrisburg PA, ip pbx Lancaster PA, ip pbx New Jersey, ip pbx NJ, ip pbx Philadelphia, Lancaster PA, MAX Communications Server 6.0 VoIP, MAX Communications Server 6.0 VoIP unified communicatio, MAX Communicator Server, MAX2000, MaxAgent, MAXCS, MAXCS 6.0, MaxInsight, MaxSupervisor, Microsoft exchange phone system DE, Microsoft exchange phone system Delaware, Microsoft exchange phone system Harrisburg PA, Microsoft exchange phone system Lancaster PA, Microsoft exchange phone system New Jersey, Microsoft exchange phone system NJ, Microsoft exchange phone system NY, Microsoft exchange phone system NYC, Microsoft exchange phone system Philadelphia, Microsoft Exchange Server 2007 IP PBX plug-in, Microsoft Office Communications Server 2007, Microsoft phone system DE, Microsoft phone system Delaware, Microsoft phone system Harrisburg PA, Microsoft phone system Lancaster PA, Microsoft phone system New Jersey, Microsoft phone system NJ, Microsoft phone system NY, Microsoft phone system NYC, Microsoft phone system Philadelphia, multi branch phone system Allentown PA, multi branch phone system DE, multi branch phone system Delaware, multi branch phone system Harrisburg PA, multi branch phone system Lancaster PA, multi branch phone system New Jersey, multi branch phone system NJ, multi branch phone system NY, multi branch phone system NYC, multi branch phone system Philadelphia, Native Microsoft Exchange Server 2007 integration, New Jersey, New York, NJ, NY, NYC, PA, PBX, pbx Allentown PA, pbx DE, pbx Delaware, pbx Harrisburg PA, pbx Lancaster PA, pbx New Jersey, pbx NJ, pbx Philadelphia, pbx York PA, Pennsylvania, Philadelphia, Phone System, Phone System Allentown PA, phone system call monitoring DE, phone system call monitoring Delaware, phone system call monitoring Harrisburg PA, phone system call monitoring Lancaster PA, phone system call monitoring New Jersey, phone system call monitoring NJ, phone system call monitoring NY, phone system call monitoring NYC, phone system call monitoring Philadelphia, phone system conference calls DE, phone system conference calls Delaware, phone system conference calls Harrisburg PA, phone system conference calls Lancaster PA, phone system conference calls New Jersey, phone system conference calls NJ, phone system conference calls NY, phone system conference calls NYC, phone system conference calls Philadelphia, Phone System DE, Phone System Delaware, Phone System Harrisburg PA, Phone System Lancaster PA, Phone System New Jersey, Phone System NJ, Phone System Philadelphia, Phone System York PA, SIP, SIP phone system Allentown PA, SIP phone system DE, SIP phone system Delaware, SIP phone system Harrisburg PA, SIP phone system Lancaster PA, SIP phone system New Jersey, SIP phone system NJ, SIP phone system NY, SIP phone system NYC, SIP phone system Philadelphia, SIP Trunking Allentown PA, SIP Trunking DE, SIP Trunking Delaware, SIP Trunking Harrisburg PA, SIP Trunking Lancaster PA, SIP Trunking New Jersey, SIP Trunking NJ, SIP Trunking NY, SIP Trunking NYC, SIP Trunking Philadelphia, supervise phone calls Allentown PA, supervise phone calls DE, supervise phone calls Delaware, supervise phone calls Harrisburg PA, supervise phone calls Lancaster PA, supervise phone calls New Jersey, supervise phone calls NJ, supervise phone calls NY, supervise phone calls NYC, supervise phone calls Philadelphia, telephone system Allentown PA, telephone system DE, telephone system Delaware, telephone system Harrisburg PA, telephone system Lancaster PA, telephone system New Jersey, telephone system NJ, telephone system Philadelphia, telephone system York PA, unified communications, unified communications solutions, voicemail to email phone system DE, voicemail to email phone system Delaware, voicemail to email phone system Harrisburg PA, voicemail to email phone system Lancaster PA, voicemail to email phone system New Jersey, voicemail to email phone system NJ, voicemail to email phone system NY, voicemail to email phone system NYC, voicemail to email phone system Philadelphia, VoIP, voip Allentown PA, VoIP business telephone systems, voip DE, voip Delaware, voip Harrisburg PA, VoIP hot standby support, voip Lancaster PA, voip New Jersey, voip NJ, voip pbx Allentown PA, voip pbx DE, voip pbx Delaware, voip pbx Harrisburg PA, voip pbx LancasterPA, voip pbx New Jersey, voip pbx NJ, voip pbx Philadelphia, voip pbx York PA, voip Philadelphia, VoIP Phone, VoIP telephone systems, VoIP unified communications, voip York PA, York PA | 
Permalink
Posted by bardissi
WatchGuard Live Security Service: Two New Zero Day Adobe Reader Exploits
April 28, 2009SEVERITY: HIGH
28 April, 2009
SUMMARY:
This vulnerability affects: Adobe Reader and Acrobat 9.1 and earlier, on Windows, Mac, *nix computers
How an attacker exploits it: By enticing your users into viewing a maliciously crafted PDF document
Impact: An attacker can execute code on your computer, potentially gaining control of it
What to do: Implement the workarounds described in the Solutions section of this alert
EXPOSURE:
Yesterday, SecurityFocus released an advisory describing a new zero day Adobe Reader exploit they found in the wild. The Proof of Concept (PoC) exploit — written by some calling himself “Arr1val” — seems to leverage a flaw in the Adobe Reader function called “getAnnots()”. As it turns out, Arr1val released two new zero day exploits. The second exploit leverages another Adobe Reader function called “spell.customDictionaryOpen().” Arr1val’s code suggests he confirmed these flaws using Adobe Reader 9.1 and 8.1.4 for Linux. However, we suspect the flaws may affect all current versions of Reader running on any platform.
By enticing one of your users into downloading and opening a malicious PDF document, an attacker could exploit either of these unpatched Reader vulnerabilities to execute code on your user’s computer, with that user’s privileges. If the user had root or local administrator privileges, the attacker would gain complete control of that user’s machine.
Adobe has responded to this incident in a short blog post, saying they are investigating the issue. Since exploit code is widely available and Adobe hasn’t had time to patch yet, these flaws pose a serious risk to Adobe Reader users. We recommend you implement the workarounds described below to mitigate the risk of these dangerous zero day exploits.
SOLUTION PATH
Adobe has not had time to release a patch for these zero day vulnerabilities. However, the workarounds described below should mitigate the risk posed by the exploits currently circulating in the wild.
Inform your users of this vulnerability. Advise them to remain wary of unsolicited PDF documents arriving via email. If they don’t absolutely need the document, and don’t trust the entity it came from, they should avoid opening it until you patch Adobe Reader.
Use antivirus (AV) software and make sure it’s up to date. AV vendors will release signatures for these new exploits, so make sure to keep your AV software up to date.
Disable JavaScript in Adobe Reader. Disabling JavaScript in Adobe Reader could prevent these exploits from succeeding. To disable JavaScript in Adobe Reader, click Edit => Preferences => JavaScript and then uncheck Enable Acrobat JavaScript. Keep in mind, this prevents JavaScript from running in legitimate PDF documents as well.
Use a gateway device, like your Firebox, to block PDF files. If your users can’t download PDF files, these exploits won’t affect them. Unfortunately, doing this blocks legitimate PDF files as well. Nonetheless, depending on your business needs, you may still want to block PDF files until Adobe releases a patch.
Use an alternative PDF reader. You can mitigate the risk of these Adobe Reader vulnerabilities by using an alternative PDF reader. Keep in mind, other PDF readers may also suffer security vulnerabilities. However, attackers seem to primarily target the popular Adobe Reader. If it meets your business needs, you may try to adopt one of the alternative PDF readers listed on this site.
We will update this alert when Adobe releases a patch.
FOR ALL WATCHGUARD USERS:
Many of WatchGuard’s Firebox models can block incoming PDF files. However, most administrators prefer to allow these file types for business purposes. Nonetheless, if PDF files are not absolutely necessary to your business, you may consider blocking them using the Firebox’s HTTP and SMTP proxy until Adobe patches.
If you decide you want to block PDF documents, follow the links below for video instructions on using your Firebox proxy’s content blocking features to block .pdf files by their file extension:
Firebox X Edge running 10.x
How do I block files with the FTP proxy?
How do I block files with the HTTP proxy?
How do I block files with the POP3 proxy?
How do I block files with the SMTP proxy
Firebox X Core and X Peak running Fireware 10.x
How do I block files with the FTP proxy?
How do I block files with the HTTP proxy?
How do I block files with the POP3 proxy?
How do I block files with the SMTP proxy?
STATUS:
We will update you when Adobe releases a patch. Until then, implement the workarounds described above.
REFERENCES:
SecurityFocus Adobe Reader Advisory
Adobe blog post
Adobe Reader getAnnots() exploit code
Adobe Reader spell.customDictionaryOpen() exploit code
Leave a Comment » | 
Adobe, Java | Tagged: Acrobat 9.1, Adobe Reader, Bardissi Enterprises LLC, Watchguard | 
Permalink
Posted by bardissi
Bardissi Enterprises – News – 04.14.09- AltiGen Communications Announces Max Communications Server 6.0 Update 2
April 14, 2009|
AltiGen announces the general availability of MAX Communications Server 6.0 Update 2
Available immediately for download, MAX Communications Server 6.0 Update 2 has been released. The update includes a roll‐up of existing software fixes and three new client applications:
• MaxAgent 6.0 • MaxSupervisor 6.0 • MaxInsight 6.0
MAX CS 6.0 Update 2 will begin shipping on MAX1000, MAX2000, and the OFFICE series of products in May. |
|
MAX Agent 6.0
MAX Agent 6.0 brings the look and feel of MaxCommunicator 6.0 to the workgroup agents, replacing AltiAgent. MAX Agent extends MAX Communicator’s functionality with the addition of 4 Workgroup Agent specific tabs:
• WG Queue • WG Voicemail • WG Status • Agent Performance Stats
Licensing: Existing AltiAgent client licenses will automatically be upgraded to the new MAX Agent licenses. |
|
MaxSupervisor 6.0
MAX Supervisor 6.0 brings the look and feel of MAX Communicator 6.0 to the workgroup supervisors, replacing AltiSupervisor. MAX Supervisor has expanded WG statistics reporting capabilities including new graphic charts and streamlined agent performance information.
Licensing: Existing AltiSupervisor client licenses will automatically be upgraded to the new MAX Supervisor licenses. |
|
MaxInsight 6.0
MaxInSight is a new Workgroup Monitoring application/reader board for displaying Workgroup statistics on a desktop or flat panel monitor.
Agents and Supervisors can see: • Workgroup Queue Status • Agent Resource Status • Real Time Operations Review • Queue Alert Conditions
Combine real time data and graphical display data Rotate through Multiple Workgroups You may set an alert condition for each data element and play a sound file You may set a color code to easily recognize the current condition/state
Licensing: MAX Insight 6.0 is a brand new application that requires additional licensing. 1 license is required for each current session of MAX Insight |
.jpg)
Leave a Comment » | 
Altigen, Bardissi Enterprises, Business Computer Support, Business Phone Solutions, Hosted VoIP, Internet Telephony Magazine, Microsoft Exchange 2003, Microsoft Exchange 2007, Microsoft Office Communications Server 2007, Microsoft Small Business Server 2008, Microsoft Windows Essential Business Server 2008, Network Infrastructure, Non-Profit Technology, PBX Systems, Phone System, Telephone Systems, VoIP Phone | Tagged: 2008 Microsoft Worldwide Partner Conference, Airport Business Complex, Allentown, Altigen, AltiGen 802.1q support, Altigen Communications, AltiGen Max Communications Server 6.0, ALtiGen MAX1000, AltiGen MAX1000R, AltiGen Max2000, AltiGen Pennsylvania, Altigen Philadelphia, AltiGen Phone System, AltiGen QoS, AltiGen T1/PRI/E1 board, AltiGen VLAN, AtiGen Softswitch, Bardissi Enterprises, Bardissi Enterprises LLC, business telephone Allentown PA, business telephone DE, business telephone Delaware, business telephone Harrisburg PA, business telephone Lancaster PA, business telephone New Jersey, business telephone NJ, business telephone NYC, business telephone Philadelphia, business telephone systems, call center phone system Allentown PA, call center phone system DE, call center phone system Delaware, call center phone system Harrisburg PA, call center phone system Lancaster PA, call center phone system New Jersey, call center phone system NJ, call center phone system NY, call center phone system NYC, call center phone system Philadelphia, call recording Allentown PA, call recording DE, call recording Delaware, call recording Harrisburg PA, call recording Lancaster PA, call recording New Jersey, call recording NJ, call recording NY, call recording NYC, call recording Philadelphia, call tracking phone system DE, call tracking phone system Delaware, call tracking phone system Harrisburg PA, call tracking phone system Lancaster PA, call tracking phone system New Jersey, call tracking phone system NJ, call tracking phone system NY, call tracking phone system NYC, call tracking phone system Philadelphia, DE, Delaware, Harrisburg PA, hosted phone system Allentown PA, hosted phone system DE, hosted phone system Delaware, hosted phone system Harrisburg PA, hosted phone system Lancaster PA, hosted phone system New Jersey, hosted phone system NJ, hosted phone system Philadelphia, hosted voip Allentown PA, hosted voip DE, hosted voip Delaware, hosted voip Harrisburg PA, hosted voip Lancaster PA, hosted voip New Jersey, hosted voip NJ, hosted voip Philadelphia, hosted voip York PA, Integration with Microsoft Office Communicator, ip pbx Allentown PA, ip pbx DE, ip pbx Delaware, ip pbx Harrisburg PA, ip pbx Lancaster PA, ip pbx New Jersey, ip pbx NJ, ip pbx Philadelphia, Lancaster PA, MAX Communications Server 6.0 VoIP, MAX Communications Server 6.0 VoIP unified communicatio, MAX Communicator Server, MAX2000, MaxAgent, MAXCS, MAXCS 6.0, MaxInsight, MaxSupervisor, Microsoft exchange phone system DE, Microsoft exchange phone system Delaware, Microsoft exchange phone system Harrisburg PA, Microsoft exchange phone system Lancaster PA, Microsoft exchange phone system New Jersey, Microsoft exchange phone system NJ, Microsoft exchange phone system NY, Microsoft exchange phone system NYC, Microsoft exchange phone system Philadelphia, Microsoft Exchange Server 2007 IP PBX plug-in, Microsoft Office Communications Server 2007, Microsoft phone system DE, Microsoft phone system Delaware, Microsoft phone system Harrisburg PA, Microsoft phone system Lancaster PA, Microsoft phone system New Jersey, Microsoft phone system NJ, Microsoft phone system NY, Microsoft phone system NYC, Microsoft phone system Philadelphia, multi branch phone system Allentown PA, multi branch phone system DE, multi branch phone system Delaware, multi branch phone system Harrisburg PA, multi branch phone system Lancaster PA, multi branch phone system New Jersey, multi branch phone system NJ, multi branch phone system NY, multi branch phone system NYC, multi branch phone system Philadelphia, Native Microsoft Exchange Server 2007 integration, New Jersey, New York, NJ, NY, NYC, PA, PBX, pbx Allentown PA, pbx DE, pbx Delaware, pbx Harrisburg PA, pbx Lancaster PA, pbx New Jersey, pbx NJ, pbx Philadelphia, pbx York PA, Pennsylvania, Philadelphia, Phone System, Phone System Allentown PA, phone system call monitoring DE, phone system call monitoring Delaware, phone system call monitoring Harrisburg PA, phone system call monitoring Lancaster PA, phone system call monitoring New Jersey, phone system call monitoring NJ, phone system call monitoring NY, phone system call monitoring NYC, phone system call monitoring Philadelphia, phone system conference calls DE, phone system conference calls Delaware, phone system conference calls Harrisburg PA, phone system conference calls Lancaster PA, phone system conference calls New Jersey, phone system conference calls NJ, phone system conference calls NY, phone system conference calls NYC, phone system conference calls Philadelphia, Phone System DE, Phone System Delaware, Phone System Harrisburg PA, Phone System Lancaster PA, Phone System New Jersey, Phone System NJ, Phone System Philadelphia, Phone System York PA, SIP, SIP phone system Allentown PA, SIP phone system DE, SIP phone system Delaware, SIP phone system Harrisburg PA, SIP phone system Lancaster PA, SIP phone system New Jersey, SIP phone system NJ, SIP phone system NY, SIP phone system NYC, SIP phone system Philadelphia, SIP Trunking Allentown PA, SIP Trunking DE, SIP Trunking Delaware, SIP Trunking Harrisburg PA, SIP Trunking Lancaster PA, SIP Trunking New Jersey, SIP Trunking NJ, SIP Trunking NY, SIP Trunking NYC, SIP Trunking Philadelphia, supervise phone calls Allentown PA, supervise phone calls DE, supervise phone calls Delaware, supervise phone calls Harrisburg PA, supervise phone calls Lancaster PA, supervise phone calls New Jersey, supervise phone calls NJ, supervise phone calls NY, supervise phone calls NYC, supervise phone calls Philadelphia, telephone system Allentown PA, telephone system DE, telephone system Delaware, telephone system Harrisburg PA, telephone system Lancaster PA, telephone system New Jersey, telephone system NJ, telephone system Philadelphia, telephone system York PA, unified communications, unified communications solutions, voicemail to email phone system DE, voicemail to email phone system Delaware, voicemail to email phone system Harrisburg PA, voicemail to email phone system Lancaster PA, voicemail to email phone system New Jersey, voicemail to email phone system NJ, voicemail to email phone system NY, voicemail to email phone system NYC, voicemail to email phone system Philadelphia, VoIP, voip Allentown PA, VoIP business telephone systems, voip DE, voip Delaware, voip Harrisburg PA, VoIP hot standby support, voip Lancaster PA, voip New Jersey, voip NJ, voip pbx Allentown PA, voip pbx DE, voip pbx Delaware, voip pbx Harrisburg PA, voip pbx LancasterPA, voip pbx New Jersey, voip pbx NJ, voip pbx Philadelphia, voip pbx York PA, voip Philadelphia, VoIP Phone, VoIP telephone systems, VoIP unified communications, voip York PA, York PA | 
Permalink
Posted by bardissi
Bardissi Enterprises: WatchGuard LiveSecurity Attackers Target Zero Day PowerPoint Vulnerability
April 5, 2009Attackers Target Zero Day PowerPoint Vulnerability
Severity: High
3 April, 2009
Summary:
§ This vulnerability affects: All current versions of Microsoft PowerPoint for Windows and Mac computers (also affects PowerPoint Viewer and Office Compatibility Packs)
§ How an attacker exploits it: By enticing your users into opening a maliciously crafted PowerPoint presentation
§ Impact: An attacker can execute code on your computer, potentially gaining control of it
§ What to do: Implement the workarounds described in the Solution Path section of this alert
Exposure:
Yesterday, Microsoft released a security advisory warning of a very critical unpatched PowerPoint vulnerability, which attackers have already begun exploiting on the Internet. The vulnerability affects all current versions of PowerPoint for Windows and Mac, as well as the Microsoft PowerPoint Viewer and the Office Compatibility Packs.
Since Microsoft just learned about this flaw, they don’t describe it in much technical detail. They only say that the flaw involves PowerPoint accessing an invalid object in memory. However, the advisory does tell how attackers can leverage the flaw. By enticing one of your users into downloading and opening a maliciously crafted PowerPoint document (.ppt), an attacker can exploit this vulnerability to execute code on a victim’s computer, usually inheriting that user’s level of privileges and permissions. If your user has local administrative privileges, the attacker gains full control of the user’s machine.
With attackers actively exploiting this vulnerability in the wild, it poses a significant threat to Microsoft Office and PowerPoint users. Microsoft hasn’t had time to patch the flaw yet, but they plan to in the near future. Until then, we recommend you implement the workarounds described below to mitigate the risk of this dangerous zero day attack.
Solution Path
Microsoft has not had time to release a patch for this zero day vulnerability. However, the workarounds described below should mitigate the risk of attacks currently circulating in the wild.
§ Inform your users of this vulnerability. Advise them to remain wary of unsolicited PowerPoint (.ppt) documents arriving via email. If they don’t absolutely need the document, and don’t trust the entity it came from, they should avoid opening it until Microsoft releases a patch.
§ Use up-to-date antivirus (AV) software. AV companies are sure to release signatures that detect these malicious PowerPoint files. Make sure to update your AV regularly.
§ Use the Microsoft Office Isolated Conversion Environment (MOICE) to open an untrusted PowerPoint document. MOICE is a Microsoft add on that provides a special environment which allows you to more securely open Word, Excel, and PowerPoint binary format files. For more details on using it, see the “Suggested Actions” section of Microsoft’s security advisory.
§ Use a gateway device, like your Firebox, to block PowerPoint files. If your users can’t download PowerPoint files, this exploit won’t affect them. Unfortunately, doing this blocks legitimate PowerPoint files as well. Nonetheless, depending on your business needs, you may still consider blocking PowerPoint files until Microsoft releases a patch.
We will update this alert when Microsoft releases a patch.
For All WatchGuard Users:
Many of WatchGuard’s Firebox models can block incoming PowerPoint files. However, most administrators prefer to allow these file types for business purposes. Nonetheless, if PowerPoint files are not absolutely necessary to your business, you may consider blocking them using the Firebox’s HTTP and SMTP proxy until Microsoft releases a fix for this vulnerability.
If you decide you want to block PowerPoint documents, follow the links below for video instructions on using your Firebox proxy’s content blocking features to block .ppt files by their file extension:
§ Firebox X Edge running 10.x
§ How do I block files with the FTP proxy?
§ How do I block files with the HTTP proxy?
§ How do I block files with the POP3 proxy?
§ How do I block files with the SMTP proxy
§ Firebox X Core and X Peak running Fireware 10.x
§ How do I block files with the FTP proxy?
§ How do I block files with the HTTP proxy?
§ How do I block files with the POP3 proxy?
§ How do I block files with the SMTP proxy?
Status:
Microsoft plans to release a patch for this vulnerability. Until then, implement the workarounds described above.
References:
Leave a Comment » | Bardissi Enterprises, Business Computer Support, Computer Security, Microsoft, Microsoft Office 2003, OS X, Watchguard | Tagged: Bardissi Enterprises, Microsoft Security Advisory, Mac, Microsoft, Microsoft PowerPoint, WatchGuard LiveSecurity, Windows | Permalink
Posted by bardissi
Bardissi Enterprises: Watchguard LiveSecurity: Firefox 3.0.8 Update Fixes Pwn2Own and Zero Day Flaws
April 5, 2009Severity: Medium
March 30, 2009
Summary:
§ This vulnerability affects: Firefox 3.0.7 (and previous versions) for Windows, Linux, and Macintosh
§ How an attacker exploits it: Multiple vectors of attack, including enticing one of your users to visit a malicious web page
§ Impact: Various results; in the worst case, an attacker executes code on your user’s computer, gaining complete control of it
§ What to do: Upgrade to Firefox 3.0.8
Exposure:
Late Friday, the Mozilla Foundation released Firefox 3.0.8, fixing two zero day security vulnerabilities in their popular web browser. We summarize the vulnerabilities below:
§ XSL transformation vulnerability (2009-012). Firefox suffers from a flaw that Mozilla describes as an XSL transformation vulnerability. Firefox doesn’t properly parse a particular Extensible Stylesheet Language (XSL) element, which could lead to a memory corruption. By enticing you to a malicious web site containing a specially crafted XSL element, a remote attacker could exploit this memory corruption to either crash Firefox, or potentially execute code on your computer with your privileges. If you have local administrative, or root privileges, the attacker could leverage this flaw to gain complete control of your machine. This is the same zero day flaw we described in a Wire post last week.
Mozilla Impact rating: Critical
§ XUL tree element code execution vulnerability (2009-013). Firefox suffers from a code execution flaw involving the way it handles a particular XML User Interface Language (XUL) method. By enticing one of your users to a malicious web site, a remote attacker could exploit this flaw to execute code on that user’s computer with that user’s privileges. If your users have local administrative, or root privileges, the attacker could leverage this flaw to gain complete control of their machines. This is one of the Pwn2Own browser vulenrabilities we described in a Wire post a few weeks ago.
Mozilla Impact rating: Critical
Visit Mozilla’s Known Vulnerabilities page for a complete list of the vulnerabilities that this update fixes. Since this update fixes zero day vulnerabilities, we consider it a high priority. A researcher has already released exploit code for one of these flaws. The other was very publicly exposed at a popular security conference. We expect malicious attackers to quickly begin leveraging at least one of these flaws so you should patch as quickly as you can.
Solution Path:
Mozilla has updated Firefox 3, correcting these security vulnerabilities. If you use Firefox in your network, we recommend that you download and deploy version 3.0.8 as soon as possible. We recommend that 1.5.x and 2.x users migrate to 3.0.8 now.
§ Windows
§ Linux
§ Mac OS X
Note: The latest versions of Firefox 3.0 automatically inform you when a Firefox update is available. We highly recommend you keep this feature enabled so that Firefox receives its updates as soon as Mozilla releases them. To verify that you have Firefox configured to automatically check for updates, click Tools => Options => Advanced tab => Update tab. Make sure that “Firefox” is checked under “Automatically check for updates.” In this menu, you can configure Firefox to always download and install any update, or if you prefer, only to inform the user that an update exists.
For All Users:
Many of these attacks arrive as normal-looking HTTP traffic, which you must allow through your firewall if your network users need to access the World Wide Web. Therefore, the patches above are your best solution.
Status:
The Mozilla Foundation has released Firefox 3.0.8, fixing these security issues.
References:
Leave a Comment » | Apple, Bardissi Enterprises, Business Computer Support, Computer Security, Firefox, Linux | Tagged: Bardissi Enterprises, Firefox, Firefox 3.0.8, Vulnerabilities Fixed in Firefox 3.0.8, XSL transformation vulnerability (, XUL tree element code execution vulnerability, WatchGuard Live Security | Permalink
Posted by bardissi
Bardissi Enterprises: WatchGuard Releases Version 10.2.8 for WSM, Edge, Fireware, and Fireware Pro
April 5, 200924 March 2009
WatchGuard is pleased to announce the release of version 10.2.8 for WSM, Fireware, Fireware Pro, and Edge. Version 10.2.8 contains a number of defect fixes for issues reported by WatchGuard customers. Areas affected include High Availability, Mobile VPN with SSL, Single Sign-On, and more. There is also a new Mobile VPN with IPSec client (v10.2) available with this release.
Contained in this release are:
- An enhancement for the Firebox X Edge that allows traffic to be masqueraded via 1 to 1 NAT in IPSec VPN tunnels with IKE KeepAlive
- Fixes to several stability issues on Firebox devices that have the upper four ports (eth4 through eth7) in use
- Several manageability improvements, including reduced configuration save times and better manageability of Firebox devices under heavy load
- Several improvements to Single Sign-On (SSO)
- Several improvements to real-time monitoring, reporting, logging, and notification
- Several improvements to SSL VPN client functionality on Macintosh OS X
- Several High Availability improvements
- Several improvements to Edge Wireless functionality
- Edge networking and stability improvements
- Improved Mobile VPN support for devices with dynamically addressed external interfaces
- Enhancements to the Mobile VPN for IPSec client (v10.2), including support for increased numbers of remote networks
Does This Release Pertain to Me?
10.2.8 is a regularly scheduled maintenance release. If you are impacted by any of the issues outlined above or those contained in the Release Notes, you should consider upgrading to version 10.2.8. Please read the Release Notes before you upgrade, to understand what’s involved.
Leave a Comment » | Bardissi Enterprises, Business Computer Support, Watchguard | Tagged: Bardissi Enterprises, Watchguard, WatchGuard Edge, WatchGuard Fireware, WatchGuard Fireware Pro, WatchGuard LiveSecurity, WatchGuard WSM | Permalink
Posted by bardissi
Bardissi Enterprises: Watchguard LiveSecurity Service: Sun Java Update Fixes Over 15 Security Flaws
April 5, 2009Severity: High
26 March, 2009
Summary:
§ These vulnerabilities affect: All versions of Sun Java Runtime Environment (JRE) and Java Development Kit (JDK) released before 24 March, on Windows, Solaris, and Linux platforms
§ How an attacker exploits them: Multiple vectors of attack, including luring your users to a malicious web page containing specially crafted Java
§ Impact: Various results; in the worst case, an attacker can gain complete control of your computer
§ What to do: Install the appropriate JRE (or JDK) update as soon as possible
Exposure:
Java is a programming language (first implemented by Sun Microsystems) used most often to enhance web pages. Most operating systems today implement a Java interpreter to recognize and process Java code from web sites and other sources. Sun’s Java Runtime Environment (JRE) is one of the most popular Java interpreters currently used.
Today, Secunia released a security alert warning of multiple vulnerabilities (around 16 total) that affect all previous versions of Sun JRE (as well as Sun Java SDK) running on Windows, Solaris and Linux platforms. While the vulnerabilities differ quite a bit technically, an attacker can exploit many of them in a similar manner — by enticing your users to a malicious web page containing specially crafted Java. In the worst case, if your users visit such a site, an attacker could leverage some of these Java flaws to execute attack code on your user’s computer. If your user has local administrative privileges, the attacker could potentially leverage these flaws to gain complete control of that user’s machine. Some of the remaining vulnerabilities allow an attacker to launch Denial of Service attacks or to elevate their privileges on your users’ computer.
If you run a Solaris or Linux network, you probably know whether or not you use Sun JRE (in most cases, you do). However, if you manage a Windows network your status is less clear. In the past, Windows shipped with Microsoft’s own Java interpreter, called Java Virtual Machine (MSJVM). Since earlier editions of IE use MSJVM to interpret Java applets, most Windows users who browse with IE aren’t vulnerable to this flaw. Because of a legal conflict with Sun, Microsoft had to discontinue the use of MSJVM in its most recent versions of Windows. For instance, MSJVM doesn’t ship with Windows Server 2003 or versions of Windows XP that come prepackaged with SP1a or SP2 (XP users who upgraded to SP1 or SP2 on their own retain MSJVM). These newer Windows releases require that you download your own Java interpreter; in which case, you probably have Sun JRE and need to update as soon as possible.
If you’re unsure what your version of IE uses to interpret Java, there’s an easy way to find out. In IE, click on Tools => Internet Options => Advanced tab. Scroll down to the Microsoft VM section and check “Java console enabled.” Restart IE and then click View => Java Console. A window opens which displays the name and version number of the Java interpreter your IE browser uses. If you’re not using Sun JRE, the vulnerability doesn’t affect you.
Solution Path:
Sun has released various JRE and SDK updates to correct these issues. If you use Sun JRE in your network, download and deploy the appropriate updates as soon as possible:
§ JRE and JDK 6.0: Download Update 13
§ JRE and JDK 5.0: Download Update 18
§ Java SE for Business JRE and SDK 1.4.x: Download version 1.4.2_20
§ JRE and SDK 1.3.x: Download version 1.3.1_25
For All WatchGuard Users:
Some of WatchGuard’s Firebox models allow you to prevent your users from downloading Java applets from web sites. However, doing so also cripples legitimate web sites using Java applets. If you do not want to block Java applets, download the appropriate Sun JRE updates as soon as possible. Furthermore, blocking Java applets may mitigate the risk of some of these vulnerabilities, but not all of them. Sun’s update is the best solution.
To learn how to use your Firebox’s HTTP proxy to block Java applets, see the “Deny Java Applets” section of the HTTP Proxy Advanced FAQ.
Status:
Sun has issued updates to correct these issues.
References:
§ Secunia’s Consolidated Java Advisory
§ Sun’s Java Advisories:
§ Sun Document ID 254569
§ Sun Document ID 254570
§ Sun Document ID 254571
§ Sun Document ID 254608
§ Sun Document ID 254609
§ Sun Document ID 254610
§ Sun Document ID 254611
Leave a Comment » | Bardissi Enterprises, Business Computer Support, Computer Security, Home Computer Support, Java, Watchguard | Tagged: Bardissi Enterprises, Java SE for Business JRE and SDK 1.4.x: Download version 1.4.2_20, JRE and JDK 5.0: Download Update 18, JRE and JDK 6.0: Download Update 13, JRE and SDK 1.3.x: Download version 1.3.1_25, Secunia's Consolidated Java Advisory, Sun Document ID 254569, Sun Document ID 254570, Sun Document ID 254571, Sun Document ID 254608, Sun Document ID 254609, Sun Document ID 254610, Sun Document ID 254611, Sun's Java Runtime Environment (JRE), Watchguard, WatchGuard LiveSecurity | Permalink
Posted by bardissi
