LANDesk® Security Review for the Week Ending September 19, 2008

Version 3

    LANDesk® Security Review for the Week Ending September 19, 2008

    LANDesk® Patch Manager and Security Suite ("LDSS") provide customers with the latest security and application patches and updates for the most utilized software in your business. Maintaining a safe and secure environment helps to avoid downtime that will affect employees and productivity. The following items are the patch and update highlights from this past week.

    Windows Content

    Vulnerability Definitions - This week was highlighted by a number of updates to Microsoft's email filters. There were also several updates to previously released security bulletins and a couple of content releases for package updates.

     

     

     

     

     

     

     

     

     

    Blocked Application Content

    Vulnerability Definitions - Twenty three new vulnerability definitions were added this week to the Blocked Applications content. See the second link below for some advice on "Best Practices".

     

    LANDesk Updates

    Vulnerability Definitions - A new LANDesk Update was released this week to address a vulnerability in the Intel QIP service which could result in remote execution of code. One vulnerability is for LDMS 8.7 and the other is for LDMS 8.8. See the links below for more details.

     

    Mac Content

    Vulnerability Definitions - Apple released its security update for this month as well as the latest Leopard update, 10.5.5. It is recommended that these be applied as soon as possible.

     

     

    Linux Content

    Vulnerability Definitions

    RedHat: 1 new vulnerability

    V_INTL_RHSA-2008-0884

    SLES: 6 new vulnerabilities

    V_INTL_patch-12168

    V_INTL_patch-12216

    V_INTL_patch-12226

    V_INTL_patch-12232

    V_INTL_patch-12233

    V_INTL_patch-12236

    Solaris: 3 vulnerabilities

    V_INTL_114644

    V_INTL_119166

    V_INTL_125191 (new)

    Spyware Updates

    Definitions

     

     

    Antivirus Updates

    Definitions

     

     

    LANDesk® Tips

    LDMS 8.8 SP2 offers more than just bugfixes

    • Last week, LANDesk released Service Pack 2 for LANDesk® Management Suite 8.8*. In addition to bugfixes, SP2 delivers some exciting new functionality. The LANDesk® LaunchPad helps administrators manage applications simply and efficiently, while advanced Power Management capabilities provide a way to support business productivity while reducing energy costs. Read more below:*

    Security News

    Are you "HIP"S with security?

    • This week's security article is an interesting one about "Carpet Bombing" and "Directory Poisoning" attacks executed through Web browsers your end-user maybe using. This article provides two possible ways of protecting your environment from these kinds of attacks, but fails to point out one other way you can protect your network.

    What do you do if your end-users don't want to run Vista or change their browser settings? Try using LANDesk Security Suite's Host Intrusion Prevention System (HIPS). With HIPS a LANDesk Administrator has the ability to control which programs can and cannot create files on the system.

     

    Where to Send Feedback

    At LANDesk, we are constantly striving to improve our products and services and hope you find these changes reflective of our ongoing commitment to listen to you-our partners and customers-in providing the best possible solutions to meet your needs now and in the future. Please continue to provide feedback by contacting our local support organization.

    Best regards,

    LANDesk Product Support

    Copyright © 2008 LANDesk Software. All rights reserved. LANDesk is either a registered trademark or trademark of LANDesk Software, Ltd. or its affiliated entities in the United States and/or other countries. Other names or brands may be claimed as the property of others.

    Information in this document is provided for information purposes only. The information presented here is subject to change without notice. This information is not warranted to be error-free, nor subject to any other warranties or conditions, whether expressed orally or implied in law, including any implied warranties and conditions of merchantability or fitness for a particular purpose. LANDesk disclaims any liability with respect to this document and LANDesk has no responsibility or liability for any third party products of any content contained on any site referenced herein. This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission. For the most current product information, please visit [http://www.landesk.com/].