Customer Support
Report a Problem
Latest ConsoleWorks Release V4.6-0u1
OpenVMS
Linux
Solaris
Windows Server
IEMs
Operating Systems
Network Components
Hardware
Storage
Applications
Regulatory Compliance
Product Documentation
Installation Guides
User Guides
Release Notes
CWCLIent User Guides
Intelligent Event Modules
Terminal Emulators
FAQS
Communications Issues
Ugrading to 3.0
Psuedo-Consoles
Syslog Consoles
Performance
Logging - Log Files
License Issues
General Questions
Automatic (and other) Actions
XML Import & Export
Other Downloads
SENSYS
WEF Security Update
Community Source
CW SSH CLI
Version 4.6-0u1
Version 4.6-0u0
Version 4.5-1u2
Version 4.5-1u1
Version 4.5-1u0
Version 4.5-0u0
CWCLIent Kits
Version 4.6-0u1
Version 4.6-0u0
Version 4.5-1u2
Version 4.5-1u1
Version 4.5-1u0
Version 4.5-0u0
Version 4.4-0u1
Version 4.4-0u0
Version 4.3-0u3
Version 4.3-0u2
Version 4.3-0u1
Version 4.3
Version 4.1
Version 4.0
Version 3.7
Version 3.5
Version 3.4
Version 3.2
Version 3.1
Final V3 Release V3.7-0u3
(VMS V3.7-0u5)
OpenVMS
RedHat and SUSE Linux
Sun Solaris
Windows 2000/2003
Tru64 Unix
HP-UX
IBM AIX

WEF Security Update

Secure link In order to access product downloads, you must be a TDi customer with a valid login. To get a login please contact TDi Support.


Windows Event Forwarder Security Update (2.87 MB, ZIP)
For ConsoleWorks 3.2-0u0 and earlier. For more information, read the following:

Windows Event Forwarder (WEF) Buffer Overflow Vulnerability

Affected version:

ConsoleWorks 3.2-0u0

Summary

Issue: The ConsoleWorks® Client Windows Event Forwarder (WEF) 3.2-0u0 application was discovered vulnerable to a buffer overflow attack that could enable an attacker to take control of the host machine and gain administrative access to clients running Microsoft® Windows®.

Who Should Read This Document: Customers who use the WEF 3.2-0u0 on Windows-based clients.

Risk: High

Recommendation: Customers should install the latest WEF (version 3.2-0u2 or later) immediately.

Caveats: None

Security Update

Link at top of page

Details

The WEF 3.2-0u0 application is running code that exhibits a classic buffer overflow vulnerability.

A vulnerability that could allow remote code execution. If a user with administrative privileges is logged on, an attacker exploiting this vulnerability could take control of an affected system. The attacker could install programs; view, change, or delete data; or create new accounts with full privileges

Resolution

A) Install the latest version of ConsoleWorks (3.2-0u1 or later), which contains a corrected version of the WEF.

OR

B) Uninstall WEF 3.2-0u0 and download and install the latest version of the WEF (3.2-0u2 or later).
 

Note:  TDi User name and Password required. To obtain User name and Password, contact TDi Support.

To uninstall WEF 3.2-0u0

1. On the Windows taskbar, click Start > Control Panel > Add or Remove Programs.
2. Select ConsoleWorks Windows Event Forwarder.
3. Click Change/Remove.

To download WEF

1. Download the Windows Event Forwarder (above)
2. Click Windows Event Forwarder Security Update.
3. Enter User Name and Password, and click OK.
4. On the File Download dialog box, click Save, and save the file winntagt.zip to an accessible folder.

To install WEF

1. Locate winntagt.zip and extract winntagt.exe
2. Run winntagt.exe
3. On the Windows Event Forwarder Installation Wizard, respond to the questions and follow the instructions.

 

HOW TO GET HELP

TDi support includes telephone, fax, web, and email access.

Email support questions to:
support@TDiTechnologies.com

Phone questions to support at:
+1.972.881.1553 or
+1.800.695.1258

Fax support questions to:
+1.972.424.9181

IMPORTANT NOTICE!

Support for ConsoleWorks 3.7 (3.7-0u0-3.7-0u5) ended on May 7, 2010.

Visit our Wiki at TDi Wiki