Hotfix - eScan for Linux

From eScan Wiki

(Difference between revisions)

Current revision

· eScan · MailScan · Technologies

· Technical Info · Security Awareness · User Guides

Hotfixes for Linux products

1 eScan Web Management Console Command Injection
2 Clam AV service in MicroWorld products for Linux does not start after updates
3 Remote Command Execution Vulnerability in MWADMIN version <= 4.1.x

eScan Web Management Console Command Injection

Release Date:

17th April 2014.


Technical Info: This hotfix resolves the issue of Command Injection vulnerability in eScan Web Management Console in module MWADMIN version 5.x.	How to install this hotfix? Unzip the escan_mwadmin_patch.zip. All the file will be extracted to escan_mwadmin_patch directory,. Go to escan_mwadmin_patch directory and execute the install.sh (root permission is required to execute this script) #./install.sh


Click here to download the hotfix

Clam AV service in MicroWorld products for Linux does not start after updates

Release Date:

3rd May 2010.


Technical Info: This hotfix resolves the issue of CLAM AV service, in MicroWorld product for Linux, either stops or does not restarts after downloading the latest AV updates. This hotfix will upgrade to the latest version of CLAM AV engine in MicroWorld products for</br> Linux. Click here to read the Announcements	How to install this hotfix? Extract the mwcav_hotfix_<linux-release-version>.zip Go to extracted directory mwcav_hotfix_<linux-release-version> Run ./install.sh and patch will be applied successfully, Then update the Clam av from the Web-Administration, Restart the Clam antivirus service either from the Web-Administration or by the below command from the terminal: /opt/MicroWorld/etc/init.d/mwcav start

Download Hotfix for:

Redhat 9	SLES 9
RHEL 3
RHEL 5

Note:
If you do not find the hotfix for your Linux distro, write to us at linux@escanav.com
or support@escanav.com with the below details:

Product Name [eScan (Desktop or File Servers) / MailScan / WebScan] and
product version,
Linux Distribution name and release version (32 bit or 64 bit),
Linux kernel version.

Remote Command Execution Vulnerability in MWADMIN version <= 4.1.x

Release Date:

1st April 2010.


Technical Info: This hotfix, for the base Package - MWADMIN, resolves the Remote Command Execution Vulnerability issue reported in prior versions 4.1.x of MWADMIN package. This hotfix is required to be applied in the below products where the version of MWADMIN is less than 4.1.x eScan for Linux Desktop eScan for Linux File Servers MailScan for Linux Mailservers WebScan for Linux Proxy Servers	How to install this hotfix? Extract the es_hotfix_1.zip or the es_hotfix_1_fp.zip (as per the linux distributions listed below). Go to es_hotfix_1 directory (for es_hotfix_1.zip) OR es_hotfix_1_fp directory (for es_hotfix_1_fp.zip) Run ./install.sh and patch will be applied successfully.


Click here to download the Hotfix for the following Linux distributions: Debian 5.0.3 Fedora Core 6 Fedora 8 Fedora 9 RHEL 5 (32 bit & 64 bit) Slackware 12.3 SLES 10.2 SLES 11 Ubuntu 8.10 Ubuntu 9.10	Click here to download the Hotfix for the following Linux distributions Fedora Core 3 RHEL 4 SLES 10 SLES 10.2 (64 bit)

Retrieved from "https://wiki.escanav.com/wiki/index.php/Hotfix_-_eScan_for_Linux"

Welcome to eScan Wikipedia

From eScan Wiki

Current revision

Contents

eScan Web Management Console Command Injection

Clam AV service in MicroWorld products for Linux does not start after updates

Remote Command Execution Vulnerability in MWADMIN version <= 4.1.x

Main Page

Latest Developments

Product Information

Knowledge Base

For Windows Downloads

For Linux Downloads

For MAC Downloads

General

Support

Views

 {| class="wikitable" border="0"
 |-
-{| id="mp-topbanner" style="width:100%; background:#fcfcfc; margin-top:1.2em; border:1px solid #ccc;"
-|style="text-align:left;"|'''Languages :'''&nbsp;&nbsp;'''·''' [[EPC|<font size=1.5 color="blue">English</font>]]&nbsp;&nbsp;'''·''' [[Escan/latinspanish/protection|<font size=1.5 color="blue">Español</font>]]&nbsp;&nbsp;'''·''' [[Escan/italian/protection|<font size=1.5 color="blue">Italiano</font>]]&nbsp;&nbsp;'''·''' [[Escan/chinese/EPC|<font size=1.5 color="blue">中文（繁體）</font>]]
-|}
-{| class="wikitable" border="0"
-{| id="mp-topbanner" style="width:100%; background:#fcfcfc; margin-top:1.2em; border:1px solid #ccc;"
-| style="width:56%; color:#000;" |
-{| style="width:280px; border:none; background:none;"
-| [[Image:escan_tm_logo1.jpg|left|<!--We add confidence to computing-->]]
-|}
-|width="1000pt" style="width:11%; font-size:95%;" white-space:nowrap;|
-&nbsp;<B>General</B>
-* [[Main Page|<font color="blue">Home</font>]]
-* [[Marketing|<font color="blue">Marketing</font>]]
-* [[Events|<font color="blue">Events</font>]]
-* [[Marketing/Advertisement|<font color="blue">Advertisement</font>]]
-|width="1000pt" style="width:11%; font-size:95%; white-space:nowrap;" |
-&nbsp;<B>Knowledgebase</B>
-* [[Technical Info|<font color="blue">Technical Information</font>]]
-* [[Beta Testing|<font color="blue">Beta Testing</font>]]
-* [[Release Candidate|<font color="blue">Release Candidate</font>]]
-* [[User Guide|<font color="blue">User Guides</font>]]
-|width="1000pt" style="width:11%; font-size:95%;white-space:nowrap;" |
-&nbsp;<B><p>&nbsp;&nbsp;Support</p></B>
-* [[EMail|<font color="blue">eMail</font>]]
-* [[Online Chat|<font color="blue">Online Chat</font>]]
-* [[Telephonic Support|<font color="blue">Telephone</font>]]
-* [[Remote Support|<font color="blue">Remote Support</font>]]
-* [[Forums|<font color="blue">Forums</font>]]
-|}
-{| class="wikitable" border="0"
-|}
 {| id="mp-topbanner" style="width:100%; background:#fcfcfc; margin-top:1.2em; border:1px solid #ccc;"
 | style="width:10%; color:#000;" |
 | [[Image:escan-g.jpg]]
 |}
-|style="text-align:left;"|'''·''' [[Escan/english/eScan-Articles|<font size=1.5 color="blue" align="left">Articles</font>]]&nbsp;&nbsp;'''·''' [[Escan/english/eScan-FAQ|<font size=1.5 color="blue">FAQ</font>]]&nbsp;&nbsp;'''·''' [[Escan/english/eScan-Troubleshooting|<font size=1.5 color="blue">Troubleshooting</font>]]
+|style="text-align:left;"|'''·''' [[Escan/english/FAQ-eScan|<font size=1.5 color="blue"
-|style="text-align:right;"|&nbsp;&nbsp;'''·''' [[Technical Info|<font size=1.5 color="blue">Technical Information - Main Page</font>]]
+align="left">eScan</font>]]&nbsp;&nbsp;'''·''' [[Escan/english/MailScan-AFT|<font size=1.5
+color="blue">MailScan</font>]]&nbsp;&nbsp;'''·''' [[Escan/english/Technologies|<font size=1.5
+color="blue">Technologies</font>]]
+|style="text-align:right;"|&nbsp;&nbsp;'''·''' [[Technical Info|<font size=1.5 color="blue">Technical
+Info</font>]]&nbsp;&nbsp;'''·''' [[Escan/english/Security_Awareness|<font size=1.5 color="blue">Security
+Awareness</font>]]&nbsp;&nbsp;'''·''' [[User_Guides|<font size=1.5 color="blue">User Guides</font>]]
 |}
 <br/>
 __TOC__
 {| class="wikitable" border="0"
 |-
 | style="width:56%; color:#000;" |
 <!--==1-4-2010==-->
-===<B><font size=2>Remote Command Execution Vulnerability in MWADMIN version <= 4.1.x </font></B>===
+===<B><font size=2>eScan Web Management Console Command Injection</font></B>===
 :*<B>Release Date:</B>
-::1st April 2010.
+::17th April 2014.
 {| class="wikitable" border="0" cellspacing="0" width="100%"
 |-
 !
 |-
-|width="500pt"|
+|width="500pt" valign="top"|
 *<B>Technical Info:</B>
-# This hotfix, for the base Package - MWADMIN, resolves the Remote Command<br/> Execution Vulnerability issue reported in prior versions 4.1.x of MWADMIN <br/>package.
+# This hotfix resolves the issue of <br/> Command Injection vulnerability in <br/>eScan Web Management Console<br/> in module MWADMIN version 5.x.
-# This hotfix is required to be applied in the below products where the version<br/> of MWADMIN is less than 4.1.x
-:*eScan for Linux Desktop
-:*eScan for Linux File Servers
-:*MailScan for Linux Mailservers
-:*WebScan for Linux Proxy Servers
 |width="500pt"|
 *<B>How to install this hotfix?</B>
-# Extract the es_hotfix_1.zip or the es_hotfix_1_fp.zip <br/>(as per the linux distributions listed below).<br/>
+#  Unzip the escan_mwadmin_patch.zip. All the file will be extracted to escan_mwadmin_patch directory,.<br/>
-# Go to es_hotfix_1 directory (for es_hotfix_1.zip)<br/><B>OR</B><br/>es_hotfix_1_fp directory (for es_hotfix_1_fp.zip)
+# Go to escan_mwadmin_patch directory and execute the install.sh (root permission is required to execute this script)<br/>
-# Run ./install.sh and patch will be applied successfully.
+        #./install.sh
+<br/>
 |}
 {| class="wikitable" border="0" cellspacing="0" width="100%"
 |-
+!
 !
 !
 |-
 |width="500pt"|
-* <B><span class="plainlinks neverexpand">[http://www.microworldsystems.com/download/linux/hotfix/es_hotfix_1.zip Click here to download the Hotfix for the following Linux distributions:]</span></B>
+* <B><span class="plainlinks neverexpand">[http://www.microworldsystems.com/download/linux/hotfix/escan_mwadmin_patch.zip Click here to download the hotfix]</span></B>
-:* Debian 5.0.3
+<br/>
-:* Fedora Core 6
+|}
-:* Fedora 8
+|}
-:* Fedora 9
+<!--=1=-->
-:* RHEL 5 (32 bit & 64 bit)
-:* Slackware 12.3
-:* SLES 10.2
-:* SLES 11
-:* Ubuntu 8.10
-:* Ubuntu 9.10
-|width="500pt"|
-* <B><span class="plainlinks neverexpand">[http://www.microworldsystems.com/download/linux/hotfix/es_hotfix_1_fp.zip Click here to download the Hotfix for the following Linux distributions]</span></B>
-:* Fedora Core 3
-:* RHEL 4
-:* SLES 10
-:* SLES 10.2 (64 bit)
-|}
-|}
-<!--=1=-->
 {| class="wikitable" border="0"
 |-
 |}
 |}
+{| class="wikitable" border="0"
+|-
+{| id="mp-topbanner" style="width:100%; background:#fcfcfc; margin-top:1.2em; border:1px solid #ccc;"
+| style="width:56%; color:#000;" |
+<!--==1-4-2010==-->
+===<B><font size=2>Remote Command Execution Vulnerability in MWADMIN version <= 4.1.x </font></B>===
+:*<B>Release Date:</B>
+::1st April 2010.
+{| class="wikitable" border="0" cellspacing="0" width="100%"
+|-
+!
+!
+|-
+|width="500pt"|
+*<B>Technical Info:</B>
+# This hotfix, for the base Package - MWADMIN, resolves the Remote Command<br/> Execution Vulnerability issue reported in prior versions 4.1.x of MWADMIN <br/>package.
+# This hotfix is required to be applied in the below products where the version<br/> of MWADMIN is less than 4.1.x
+:*eScan for Linux Desktop
+:*eScan for Linux File Servers
+:*MailScan for Linux Mailservers
+:*WebScan for Linux Proxy Servers
+|width="500pt"|
+*<B>How to install this hotfix?</B>
+# Extract the es_hotfix_1.zip or the es_hotfix_1_fp.zip <br/>(as per the linux distributions listed below).<br/>
+# Go to es_hotfix_1 directory (for es_hotfix_1.zip)<br/><B>OR</B><br/>es_hotfix_1_fp directory (for es_hotfix_1_fp.zip)
+# Run ./install.sh and patch will be applied successfully.
+|}
+{| class="wikitable" border="0" cellspacing="0" width="100%"
+|-
+!
+!
+|-
+|width="500pt"|
+* <B><span class="plainlinks neverexpand">[http://www.microworldsystems.com/download/linux/hotfix/es_hotfix_1.zip Click here to download the Hotfix for the following Linux distributions:]</span></B>
+:* Debian 5.0.3
+:* Fedora Core 6
+:* Fedora 8
+:* Fedora 9
+:* RHEL 5 (32 bit & 64 bit)
+:* Slackware 12.3
+:* SLES 10.2
+:* SLES 11
+:* Ubuntu 8.10
+:* Ubuntu 9.10
+|width="500pt"|
+* <B><span class="plainlinks neverexpand">[http://www.microworldsystems.com/download/linux/hotfix/es_hotfix_1_fp.zip Click here to download the Hotfix for the following Linux distributions]</span></B>
+:* Fedora Core 3
+:* RHEL 4
+:* SLES 10
+:* SLES 10.2 (64 bit)
+|}
+|}
+<!--=1=-->