This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Revenera Community
- :
- FlexNet Connect
- :
- FlexNet Connect Knowledge Base
- :
- FlexNet Connect 6.0 Security Patch
Subscribe
- Mark as New
- Mark as Read
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
FlexNet Connect 6.0 Security Patch
FlexNet Connect 6.0 Security Patch
Summary
This patch addresses a potential vulnerability within the FlexNet Connect 6.0 Agent.Synopsis
This article provides a patch that addresses a potential security vulnerability within the FlexNet Connect 6.0 Windows Agent (CVE 2008-1093).
Note: FlexNet Connect 6.0 has reached end of life. You can learn more about our latest release here. Thank you for using FlexNet Connect.
Note: FlexNet Connect 6.0 has reached end of life. You can learn more about our latest release here. Thank you for using FlexNet Connect.
Discussion
FlexNet Connect may retrieve script code from an unauthenticated external server over HTTP. The FlexNet Connect client relies on DNS resolution to locate the external server. If DNS resolution has been compromised through DNS hijacking or other means, the FlexNet Connect client may download and execute arbitrary script code with the privileges of the currently logged in user.
To download and install the patch:
To download and install the patch:
You can download patch by clicking here. After downloading, execute setup.exe to launch the patch installer. During the installation, accept the default values for each panel. It is necessary, however, to select "I accept the terms in the license agreement" on the second panel of the install which is titled License Agreement
- In Windows Explorer, locate the file Agent.exe. For users of FLEXnet Connect 6.0 and earlier, Agent.exe will be located in: c:\program files\common files\installshield\updateservice\.
-
Right-click on Agent.exe and click Properties .
-
Click the Version tab and verify that Agent.exe is version 6.0.100.65110 or higher.
Note: If you are an InstallShield® or AdminStudio® customer, the patch will be made available to you as an update to InstallShield and AdminStudio through FlexNet Connect. Please download and install it from there.
Additional Information
This patch fixes all known security issues with the 6.0 FLEXnet Connect agent. This patch superceedes all other patches for the 6.0 agent.
No ratings