RE: [IMail Forum] Update for SMTP vulnerability in 8.22

[Grant Griffith]

Thousands of emails in your queue and subjects and to’s containing the ?-windows= or something similar.  We had one account hit and it appears they got their password as later in the day they sent out using their email address and authenticated using their password.  We changed the password and it stopped so far, but I am guessing they might of got other accounts too.  Have 5000+ users to ask to change their passwords to be safe.   Thanks, Grant Griffith Web Application Developer Enhanced Telecommunications http://www.etczone.com 812-932-1000 From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Brian T. Sent: Friday, October 27, 2006 7:18 PM To: Imail_Forum@list.ipswitch.com Subject: Re: [IMail Forum] Update for SMTP vulnerability in 8.22   Anybody willing to give any input as to what to look for?   Brian ----- Original Message ----- From: Brian T. To: Imail_Forum@list.ipswitch.com Sent: Friday, October 27, 2006 11:23 AM Subject: Re: [IMail Forum] Update for SMTP vulnerability in 8.22   How can you tell?   Brian T.   ----- Original Message ----- From: Servei Tecnic [ MICROTECH ] To: Imail_Forum@list.ipswitch.com Sent: Friday, October 27, 2006 11:01 AM Subject: RE: [IMail Forum] Update for SMTP vulnerability in 8.22   just get hacked...     -----Mensaje original----- De: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]En nombre de Beach Computers Enviado el: viernes, 27 de octubre de 2006 16:45 Para: Imail_Forum@list.ipswitch.com Asunto: RE: [IMail Forum] Update for SMTP vulnerability in 8.22 So, if you have no SA and are on 8.15, you either pay, or get hacked?   Dave =================================== Beach Computers Affordable Hosting Solutions http://www.beachcomp.com =================================== Cheap Domain Warehouse Get Your Own Dot! http://www.cheapdomainwarehouse.com   ------------------------------------ Disclaimer and confidentiality note: The contents of this communication are intended/meant only for addressee(s) and may contain information that is privileged or otherwise confidential. If you are not the intended recipient you are hereby notified that any disclosure, copying, distribution or taking any action in reliance on the contents of this information is strictly prohibited and may be unlawful. The contents of this e-mail shall not be forwarded to any third party. If you have received this electronic mail transmission in error, please delete it from your system without copying or forwarding it, and notify the sender of the error by reply email, so that the sender's address records can be corrected. Views and opinions are solely those of the sender unless clearly indicated as being that of Beach Computers or any of it's affiliated companies. Beach Computers cannot assure that the integrity of this communication has been maintained or that it is free of errors, virus, interception or interference.     From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Robbie Pardue Sent: Friday, October 27, 2006 9:24 AM To: Imail_Forum@list.ipswitch.com Subject: Re: [IMail Forum] Update for SMTP vulnerability in 8.22       I talked to Kevin Gillis.  The short answer is no patch for anything older than 8.22. ----- Original Message ---- From: marc <[EMAIL PROTECTED]> To: Imail_Forum@list.ipswitch.com Sent: Friday, October 27, 2006 4:51:00 AM Subject: RE: [IMail Forum] Update for SMTP vulnerability in 8.22 any news about "planning to check/fix prior 8.22 versions"? will Kevin Gillis answer this (and here)? marc At 09:36 27.10.2006, you wrote: > >Is Ipswitch planning to check/fix prior 8.22 versions? >Any SMTP update for 8.15 will work in 8.05?? >If i understand correctly, SMTP was fully rewrited in 8.22, so is same in >8.05 and 8.15 > >Thxs, >Pere Ginabreda > > > >-----Mensaje original----- >De: [EMAIL PROTECTED] >[mailto:[EMAIL PROTECTED] nombre de Tripp Allen >Enviado el: viernes, 27 de octubre de 2006 3:57 >Para: Imail_Forum@list.ipswitch.com >Asunto: [IMail Forum] Update for SMTP vulnerability in 8.22 > > >The steps and files to update 8.22 are located here: >http://support.ipswitch.com/kb/IM-20061026-JH01.htm  Note this will ONLY >work for 8.22. > >Thanks, >Tripp Allen >Software Development Manager, Messaging >Ipswitch, Inc. > >To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html >List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ >Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/ > >[Scanned for viruses by Declude] [Scanned for viruses by Declude] To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/