This can be leveraged by attackers to install rootkits, backdoors, and other malicious software on the server. A patch has been released to address this issue. We recommend updating to version 2.0.12.2 or later as soon as possible. If you are running an older version, you should upgrade as soon as possible.
A vulnerability was discovered in the Remisol Advance v2.0.12.1 and below for the Normand Message Server. On installation, the permissions set by Remisol Advance allow non-privileged users to overwrite and/or manipulate executables and libraries that run as the elevated SYSTEM user on Windows. This can be leveraged by attackers to install rootkits, backdoors, and other malicious software on the server. A patch has been released to address this issue. We recommend updating to version 2.0.12.2 or later as soon as possible. If you are running an older version, you should upgrade as soon as possible.
Remisol Advance Vulnerability
Remisol Advance is a Windows application that is used to provide email services in a global environment. It can be used on physical and virtual servers, as well as mobile devices.
A vulnerability has been found in Remisol Advance v2.0.12.1 and below for the Normand Message Server. The vulnerability allows non-privileged users to overwrite and/or manipulate executables and libraries that run as the elevated SYSTEM user on Windows. On installation, this action allows attackers to install rootkits, backdoors, and other malicious software on the server. A patch has been released to address this issue. We recommend updating to version 2.0.12.2 or later as soon as possible if you are running an older version of the software.
Tips to stay safe from Ransomware
1. Keep your system up to date and patched.
2. Avoid downloading software from sources that aren't trustworthy.
3. Keep all software up-to-date on your computer, not just the application you are running.
4. Be careful with what you download and know when a file is too good to be true--scareware comes in many forms!
5. If you see something suspicious in your email or on the internet, don't open it!
What is Remisol Advance ?
Remisol Advance is a server-based software system that is used to offer an enterprise-class messaging service. It provides instant messaging and group chat, file transfer, chat rooms, private chats, and more. With Remisol Advance, you can set up your own private messaging network that is both scalable and flexible.
The Patch: CVE-2022-26235
A vulnerability was discovered in the Remisol Advance v2.0.12.1 and below for the Normand Message Server. On installation, the permissions set by Remisol Advance allow non-privileged users to overwrite and/or manipulate executables and libraries that run as the elevated SYSTEM user on Windows. This can be leveraged by attackers to install rootkits, backdoors, and other malicious software on the server. A patch has been released to address this issue. We recommend updating to version 2.0.12.2 or later as soon as possible. If you are running an older version, you should upgrade as soon as possible.
Vulnerability discovered in Remisol Advance v2.0.12.1 and below
Remisol Advance is a messaging server that allows users to create and manage private chatrooms. This vulnerability affects the way some of its features are implemented, including the installation and management of chatrooms on Windows.
Timeline
Published on: 10/06/2022 18:15:00 UTC
Last modified on: 10/11/2022 15:07:00 UTC