Sep 15, 2004 : NISCC Identifies Email Security Flaws

📅 September 15, 2004 - The National Infrastructure Security Co-ordination Centre (niscc.gov.uk), the body responsible for protecting the UK's critical national infrastructure against electronic attack, issued an urgent warning to users about eight serious new security flaws affecting hundreds of email gateway products.

Flaws in the MIME Internet email protocol extension - a standard for encoding attachments to emails that is used in email clients, Web browsers, antivirus products and content checkers ? will enable hackers to penetrate content checking and antivirus tools and launch denial of service attacks.
The vulnerabilities can be exploited with "malformed" subjects using multiple fields, non-standard white space and non-standard quoting to avoid content checking functionality, and therefore allowing malicious code through content filtering and antivirus software. The flaws were discovered over a year ago by security consultancy Corsaire after working on arge insurance company's email system and were only revealed now because of severity and the co-ordination needed between vendors to fix their products.
A number of vendors have issued patches for the flaws and Apple, HP, MessageLabs and Mozilla have already said their products are not affected by the vulnerabilities. Antivirus company F-Secure has confirmed its Internet Gatekeeper server products are vulnerable and that this will be fixed in the next release, scheduled for the fourth quarter this year.

Reads: 1497 | Category: General | Source: TheWHIR : Web Host Industry Reviews
URL source: http://www.thewhir.com/marketwatch/nis091504.cfm
Want to add a website news or press release ? Just do it, it's free! Use add web hosting news!

Other news

📅 Sep 14, 2004 - BladeLogic Automates Advertising.com - Data center automation software developer BladeLogic (bladelogic.com) announced on Monday that Advertising.com (advertising.com), a marketing services provider for interactive advertisers, has deployed the data center automation solution BladeLogic Operations Manager to automate its data center processes. Through the deal, Advertising.com will implement the entire BladeLogic suite for all aspects of IT infrastructure and application management, including server and software provisioning, application change management, remote administration, and ongoing patch and compliance management. According to BladeLogic, the deployment will allow Advertising.com to reduce da

📅 Sep 14, 2004 - Apptix Acquires ASP-One - Apptix (apptix.com), a provider of software and solutions for delivering on-demand applications over the net, announced on Tuesday that it has acquired ASP-One Inc., a Chicago-based privately held company that specializes in delivering hosted application services to small and mid-sized business customers. According to the agreement, Apptix will acquire all the assets of ASP-One for $3 million, in a combination of cash and stock. The acquisition includes all intellectual property, including ASP-One's self-signup technology and its customer base and existing infrastructure. Apptix will also acquire existing ASP-One agreements with channel partners and resellers, including a s

📅 Sep 14, 2004 - Web Host Digicon Deploys CanIt-Pro - Internet service and Web hosting provider Digicon Communications (digiconcommunications.com) said on Tuesday that its deployment of the CanIt-Pro anti-spam and anti-virus solution from Roaring Penguin Software (roaringpenguin.com) has helped it improve the overall performance of its email services. "Last month, 70 percent of incoming mail to our servers was spam. The impact on our small business clients was significant, from being scammed to receiving inappropriate email or viruses that hindered their ability to do business," says Chris Gauch, systems administrator at Digicon. "We thoroughly reviewed a number of commercial anti-spam solutions and found CanIt-PRO to be the

📅 Sep 16, 2004 - Web Host Fusepoint EBITDA Positive - Managed application and Web hosting provider Fusepoint Managed Services (fusepoint.com -> hostpapa.com) announced on Wednesday that it has achieved a positive earnings before interest, taxes, depreciation and amortization for the first time in the company's history. Fusepoint says it grew revenue 115 percent in 2003 and doubled its customer base. Earlier this year, the company secured $10 million in a second round of institutional financing from lead investor M/C Venture Partners. Fusepoint said it plans to use the funding to fuel a growth strategy involving operational expansion and potential acquisitions. "Becoming cash-flow positive is a defining milestone for Fusepoint," says

📅 Sep 16, 2004 - WebXess Buys VeriCenter Shared Clients - Web hosting provider WebXess, also known as Webii.net, (webii.net) announced on Tuesday that it has acquired the shared hosting and e-commerce hosting accounts of VeriCenter (vericenter.com) company AppSite Hosting (appsitehosting.com -> hostinger.com) and certain assets of Sprint's (sprint.com) Dellhost (dellhost.com), which VeriCenter acquired earlier this year. The company did not release financial details of the deal, or the number of customers acquired. "We are honored and excited to be serving these customers for their Web hosting needs. Many of these business-rated Web sites will benefit from our reliable customer service," says Lui Chan, president of WebXess. "While we are large en

📅 Sep 16, 2004 - Will Pemble Buys Web.com Web Hosting - Web hosting provider Web.com (web.com ) said on Thursday that CEO Will Pemble has purchased the company from its parent Web Services Co. Financial terms were not disclosed. The company said the transfer of ownership was amicable. Web Services provided Web.com with financing, human resources support and legal services. Pemble has run Web.com, based in Connecticut, since becoming chief executive officer in 1999. Pemble said the company plans to introduce new reseller and affiliate referral programs, in addition to an expansion of its domain registration service.