F-Secure has published a hotfix regarding a security vulnerability in a legacy DLL component.
Under certain circumstances, affected products may allow arbitrary connections to the ODBC drivers, leading to remote code execution.
Affected products and versions:
For more information on the hotfix, refer to the Security Advisory FSC-2013-1.
Feel free to post questions or discuss about this hotfix in this thread.
Knowledge base text fails to mention whether a reboot is needed post-fix? That is one very important piece of info for server-side products!
Tamas Feher, 2F 2000, Hungary.