Blog VavaiSerendipity of Life

Zimbra Critical Security Issue

Bagi teman-teman yang menggunakan Zimbra Mail Server & Collaboration Suite, ada pengumuman penting mengenai celah keamanan yang bisa berbahaya bagi Zimbra dan sebaiknya segera melakukan patch untuk menutupnya.

Berikut kutipan pengumuman dari Zimbra :

DESCRIPTION:

Zimbra has been made aware of a potentially critical security vulnerability in Zimbra Collaboration Suite. All released versions of ZCS Network Edition & Open Source Edition are impacted

This vulnerability allows unauthorized, remote access to files that are readable by the “zimbra user” account on the ZCS Mailbox Server (also known as mailbox service, or “mailboxd”; “tomcat” on 4.5 versions and earlier).

SOLUTION:

Below you will find the installation instructions and a link to the patch file for your version of ZCS. Please note in order to apply this patch you are not required to fully upgrade your Zimbra server and if you have multiple servers, the patch needs to be applied to all servers running the ZCS Mailbox Server (“mailboxd” or “tomcat”).

This is a critical vulnerability and we recommend all customers patch their systems immediately.

Silakan ikuti panduan untuk melakukan patch pada link berikut ini : Zimbra Critical Security Issue.

Posted by vavai on Jul 3rd, 2009 and is filed under Linux. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Name (required)

Mail (will not be published) (required)

Website