Jsmart
11-05-2010, 03:44 PM
Hotfix hf3818 for AppLogic 2.4.10/2.7.8/2.8.9
THIS ISSUE DOES NOT EXIST IN THE 2.9.x VERSIONS OF APPLOGIC
This hotfix resolves a security vulnerability within applogic where regular grid users, upon successful exploit, could elevate their privileges to maintainer level; the exploit requires a valid and authenticated grid user — it cannot be used by random attacker.
Applicability
hf3818 is a mandatory hotfix for AppLogic 2.4.10, AppLogic 2.7.8 and AppLogic 2.8.9 and cannot be used with other versions of AppLogic. The hotfix installs updated AppLogic binaries on the grid controller. A grid reboot is not required after applying the hotfix.
If this hotfix is installed on a grid and later new servers are added, this hotfix does not need to be re-installed on the grid.
You can see the full details here:
http://wiki.3tera.net/bin/view/AppLogic2/HotFixhf3818
THIS ISSUE DOES NOT EXIST IN THE 2.9.x VERSIONS OF APPLOGIC
This hotfix resolves a security vulnerability within applogic where regular grid users, upon successful exploit, could elevate their privileges to maintainer level; the exploit requires a valid and authenticated grid user — it cannot be used by random attacker.
Applicability
hf3818 is a mandatory hotfix for AppLogic 2.4.10, AppLogic 2.7.8 and AppLogic 2.8.9 and cannot be used with other versions of AppLogic. The hotfix installs updated AppLogic binaries on the grid controller. A grid reboot is not required after applying the hotfix.
If this hotfix is installed on a grid and later new servers are added, this hotfix does not need to be re-installed on the grid.
You can see the full details here:
http://wiki.3tera.net/bin/view/AppLogic2/HotFixhf3818