CRITICAL: Security update for MailEnable Messaging Platform

For any other discussion relating to MailEnable.
Post Reply
Druganov
Posts: 2
Joined: Mon Apr 22, 2013 2:32 pm

CRITICAL: Security update for MailEnable Messaging Platform

Post by Druganov »

Hello
This caught my attention:

7.06 21st Apr 2013
---------------------------------
FIX: CRITICAL: Security update for MailEnable Messaging Platform (all versions)

We have about 400 servers running mailenable. before we start updating them i'd really like to know what the vulnerability is, i can't find that information anywhere?

mozafary
Posts: 4
Joined: Thu Sep 25, 2008 9:43 am

Re: CRITICAL: Security update for MailEnable Messaging Platf

Post by mozafary »

Hello
We have more than 500servers running ME,We need more information about the bug,I could not find any information on Security websites,Mailling lists and Mailenable.com!
Please provide more information.
Thanks

ntranced
Posts: 4
Joined: Fri Feb 18, 2005 12:38 am

Re: CRITICAL: Security update for MailEnable Messaging Platf

Post by ntranced »

We are in the same position, no information provided. I wouldn't mind if it was a hotfix but full upgrades on all of our ME licensed servers is going to be a lot of work when no information is provided. As all of these servers are in production this will have significant downtime for our customers. it really isn't good enough just to list "CRITICAL: Security update for MailEnable Messaging Platform".

I understand you do not want to publicize the specifics but we need more information than this.

Kimd
Posts: 9
Joined: Wed Sep 21, 2005 2:13 am

Re: CRITICAL: Security update for MailEnable Messaging Platf

Post by Kimd »

I would also like to know what this fixes before i apply it.

Druganov
Posts: 2
Joined: Mon Apr 22, 2013 2:32 pm

Re: CRITICAL: Security update for MailEnable Messaging Platf

Post by Druganov »

Could we please get some information?

MailEnable
Site Admin
Posts: 4441
Joined: Tue Jun 25, 2002 3:03 am
Location: Melbourne, Victoria Australia

Re: CRITICAL: Security update for MailEnable Messaging Platf

Post by MailEnable »

The advisory will be published in accordance with the release schedule of the firm who tested the software and reported it.
The policy is to not release information about the exploit until after those running the software have had an opportunity to patch it.
If you have any further queries, I suggest contacting sales@mailenable.com (I think some of the people in this thread have already done so).
If you have a large number of servers to patch, then you could probably also contact sales@mailenable.com, since there are special patches available for those who do not want to revise their version.
Regards, Andrew

wiliamsth
Posts: 5
Joined: Sat Mar 16, 2013 8:00 am

Re: CRITICAL: Security update for MailEnable Messaging Platf

Post by wiliamsth »

What if i have already updated and would like to know its new fixes

Post Reply