ICEcap version 2.0.23a patch available
This article applies to: ICEcap.
SUMMARY
A new version of ICEcap is available that patches a number
of security issues.
DETAILS
When updating using the Access/Jet database,
make sure to backup the .mdb file first.
The current installation program deletes the .mdb
file.
This new version of ICEcap contains the following fixes:
- As described in KB article q000164, it
"scrubs" data before inserting into the database in order
to protected against injected data designed to compromise
the Access/Jet/.mdb database. Note: The Access database is
not officially supported an is provided only for demo/eval
purposes.
- It now warns users if non-existent passwords are left
on accounts, which can lead to a security weakness as
described in q000165.
- It only accepts encrypted events, fixing an issue whereby
events could be injected into the system as described
in KB article q000166.
This latest version can be downloaded at http://update.networkice.com/cgi/ic2023a.exe?.
Keywords: ICEcap
Version: 2.0.23
Fixed: 2.0.23a
Modified: 2000-05-15
|
