Release Notes for Net Tools PKI Server Version 1.0 for Windows NT HotFix 1 Copyright (c) 1999-2000 Networks Associates Technology, Inc. All Rights Reserved. Thank you for using Net Tools PKI Server. This file contains important information regarding this HotFix release. Network Associates strongly recommends that you read the entire document and install this HotFix on any Net Tools PKI Servers that you have deployed. ___________________ WHAT'S IN THIS FILE - The Purpose of this HotFix - What this HotFix Does - Issues Resolved in this HotFix - Files Included with this HotFix - Installation __________________________ THE PURPOSE OF THIS HOTFIX ISSUE #1 This HotFix resolves a vulnerability in an OEM version of software incorporated within the Net Tools PKI Server product. Without this HotFix installed, an attacker can, under rare circumstances, gain unauthorized access to the computer hosting the Enrollment and/or Administrative Web servers of the Net Tools PKI. The vulnerability revolves around an issue with the XUDA template files included with the product, where these files do not reference absolute pathnames to other files. To determine whether anyone has attempted to exploit this vulnerability, check the enroll-access.log and the admin-access.log files in the WebServer/logs directory of your Net Tools PKI Server installation. Search for any log entries which include "x-templates" in the URL. Each entry can then be examined to see the IP address of the computer and what files were accessed. ISSUE #2 This HotFix resolves a potential buffer overflow / denial of service vulnerability in an OEM version of software incorporated within the Net Tools PKI Server product. Under certain circumstances, sending HTTP requests with abnormally long values can cause the Net Tools PKI Directory Server to crash. _____________________ WHAT THIS HOTFIX DOES This HotFix corrects the issues as specified by overwriting some of the XUDA template files and replacing XUDAD.EXE in the Net Tools PKI Server installation directory. ____________ INSTALLATION * INSTALLATION STEPS * 1. Stop the Net Tools PKI Directory Server service. 2. Stop the Net Tools PKI Web Server service. 3. Make a backup copy of the directory where you have installed the Net Tools PKI Server (default c:\Program Files\Network Associates\NetTools PKI Server\). 4. Run SETUP.EXE. 5. Start the Net Tools PKI Directory Server service. 6. Start the Net Tools PKI Web Server service. * REMOVING THIS HOTFIX * Network Associates recommends that you do NOT remove the HotFix files from your Net Tools PKI installation once you install them. If you reinstall your Net Tools PKI v1.0 software, Network Associates recommends that you also reinstall the HotFix. * CREDITS * Network Associates would like to acknowledge the efforts of Jim Stickley at Garrisson Technologies (www.garrison.com) in finding issue # 2 and notifying us of this vulnerability. ____________________________ CONTACTING NETWORK ASSOCIATES Because this is a hotfix and not a patch, this file has been through limited testing. If you experience any problems as a result of applying this hotfix, please contact the Back Line support engineer who provided the hotfix or call Network Associates Technical support at 1-800-722-3709.