7022983: CVE-2018-7687: Security Vulnerability – Client for OES Elevation of Privilege via Buffer Overflow

This document (7022983) is provided subject to the disclaimer at the end of this document.

Environment

Client for Open Enterprise Server 2 SP4

Situation

The Micro Focus Client for OES before version 2 SP4 IR8a has a vulnerability that could allow a local attacker to elevate privileges via a buffer overflow in ncfsd.sys.

Resolution

The fix for this security vulnerability is included in “Client for Open Enterprise Server 2 SP4 (IR8a)” and later builds.

Status

Security Alert

Additional Information

This vulnerability was discovered by Steven Seeley of Source Incite working with Trend Micro’s Zero Day Initiative. ZDI-CAN-5479

Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented “AS IS” WITHOUT WARRANTY OF ANY KIND.

Related:

  • No Related Posts

7022945: MissingMemberException error thrown when using EXTRACOM “late bound” VB.NET syntax

A MissingMemberException error is thrown when using EXTRACOM “late bound” Visual Basic .NET (VB.NET) syntax with Reflection Desktop 16, Reflection 2014, or Reflection 2011. This error occurs when working with the Reflection EXTRACOM API using VB.NET “late binding” syntax, (i.e., declaring variables “As Object”) so that VB.Net will look them up at runtime. Instantiating the EXTRACOM “System” object using the VB.NET “CreateObject” function succeeds, but any attempt to use methods or properties supplied by the System object will cause an exception in Visual Studio 2010 or 2012, as follows:

System.MissingMemberException was unhandled

HResult=-2146233070

Message=Public member ‘ActiveSession’ on type ‘MarshalByRefObject’ not found.

Source=Microsoft.VisualBasic

StackTrace:

at Microsoft.VisualBasic.CompilerServices.Symbols.Container.GetMembers(String& MemberName, Boolean ReportErrors)

at Microsoft.VisualBasic.CompilerServices.NewLateBinding.ObjectLateGet(Object Instance, Type Type, String MemberName, Object[] Arguments, String[] ArgumentNames, Type[] TypeArguments, Boolean[] CopyBack)

at Microsoft.VisualBasic.CompilerServices.NewLateBinding.LateGet(Object Instance, Type Type, String MemberName, Object[] Arguments, String[] ArgumentNames, Type[] TypeArguments, Boolean[] CopyBack)

at EXTRALateBinding.Module1.Main() in c:usersnedgedocumentsvisual studio 2010ProjectsEXTRALateBindingEXTRALateBindingModule1.vb:line 8

at System.AppDomain._nExecuteAssembly(RuntimeAssembly assembly, String[] args)

at System.AppDomain.ExecuteAssembly(String assemblyFile, Evidence assemblySecurity, String[] args)

at Microsoft.VisualStudio.HostingProcess.HostProc.RunUsersAssembly()

at System.Threading.ThreadHelper.ThreadStart_Context(Object state)

at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)

at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)

at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)

at System.Threading.ThreadHelper.ThreadStart()

This exception error does not occur when using the EXTRACOM in VBScript (.vbs file). This exception error also does not occur when using Excel VBA.

Related:

  • No Related Posts

7022943: Attachmate.Emulation.Frame.EXE experiences crash on load when .NET machine.config file has malformed XML

The Attachmate.Emulation.Frame.EXE from Reflection Desktop 16 can experience a crash on load when the .NET machine.config file has malformed XML. The IBM ACCESS application for .NET can corrupt the .NET interface file named “machine.config” as noted in the following link.

http://www-01.ibm.com/support/docview.wss?uid=nas8N1012022

Then when the Attachmate.Emulation.Frame.EXE from Reflection Desktop 16 loads, the .NET framework will generate an exception code that is passed to the Reflection Desktop software and this exception causes the Reflection Workspace to crash with the following types of errors listed below:

First error that appears:

Faulting application name: Attachmate.Emulation.Frame.exe, version: 16.0.209.0, time stamp:0x561cc4a5

Faulting module name: KERNELBASE.dll, version: 6.1.7601.19110, time stamp: 0x56842600

Exception code: 0xe0434352

Fault offset: 0x0000c42d

Faulting process id: 0xeb4

Faulting application start time: 0x01d15ed2aa44d69a

Faulting application path: C:Program Files (x86)Micro FocusReflectionAttachmate.Emulation.Frame.exe

Faulting module path: C:Windowssyswow64KERNELBASE.dll

Second error:

Application: Attachmate.Emulation.Frame.exe

Framework Version: v4.0.30319

Description: The process was terminated due to an unhandled exception.

Exception Info: System.Xml.XmlException

at System.Xml.XmlTextReaderImpl.Throw(System.Exception)

at System.Xml.XmlTextReaderImpl.Throw(System.String, System.String[])

at System.Xml.XmlTextReaderImpl.ThrowTagMismatch(NodeData)

at System.Xml.XmlTextReaderImpl.ParseEndElement()

at System.Xml.XmlTextReaderImpl.ParseElementContent()

at System.Xml.XmlTextReaderImpl.Read()

at System.Xml.XmlTextReader.Read()

at System.Xml.XmlTextReaderImpl.Skip()

at System.Xml.XmlTextReader.Skip()

at System.Configuration.XmlUtil.StrictSkipToNextElement(System.Configuration.ExceptionAction)

at System.Configuration.BaseConfigurationRecord.ScanSectionsRecursive(System.Configuration.XmlUtil,System.String, Boolean, System.String, System.Configuration.OverrideModeSetting, Boolean)

at System.Configuration.BaseConfigurationRecord.ScanSections(System.Configuration.XmlUtil)

at System.Configuration.BaseConfigurationRecord.InitConfigFromFile()

Exception Info: System.Configuration.ConfigurationErrorsException

at System.Configuration.ConfigurationSchemaErrors.ThrowIfErrors(Boolean)

at System.Configuration.BaseConfigurationRecord.ThrowIfParseErrors(System.Configuration.ConfigurationSchemaErrors)

at System.Configuration.BaseConfigurationRecord.ThrowIfInitErrors()

at System.Configuration.ClientConfigurationSystem.EnsureInit(System.String)

Exception Info: System.Configuration.ConfigurationErrorsException

at System.Configuration.ConfigurationManager.PrepareConfigSystem()

at System.Configuration.ConfigurationManager.GetSection(System.String)

at System.Configuration.PrivilegedConfigurationManager.GetSection(System.String)

at System.Diagnostics.DiagnosticsConfiguration.Initialize()

at System.Diagnostics.DiagnosticsConfiguration.get_SwitchSettings()

at System.Diagnostics.Switch.InitializeConfigSettings()

at System.Diagnostics.Switch.InitializeWithStatus()

at System.Diagnostics.Switch.get_SwitchSetting()

at Attachmate.Utilities.ProfileTrace.WriteLine(System.Object, System.String)

at Attachmate.Emulation.Frame.FrameApplication..ctor()

at Attachmate.Emulation.Frame.Program.Main()

Related:

  • No Related Posts

7021519: Why does my Reflection button and color scheme look different?

Button and Color Scheme Based on Installation Scenario

The Reflection button in the upper left corner of the Reflection Desktop 16, Reflection 2014, and Reflection 2011 workspace and the workspace color scheme vary depending on your installation of Reflection:

The default for new installs of Reflection on Windows 7 is “Office 2010 White.” With this color scheme, the main Reflection commands are accessed from the File menu.

Figure 1 - Reflection 2014 Button in

Figure 1 – Reflection 2014 Button in “Office 2010 White”

Figure 1 - Reflection 2014 Button in

Figure 2 – Reflection 2011 Button in “Office 2010 White”

The default for new installs of Reflection on Windows Vista and Windows XP and for upgrades from Reflection 2008 to newer versions of Reflection is “Office 2007 Black.” With any of the Office 2007 color schemes selected, the main Reflection commands are accessed from the Reflection button menu.

Figure 3 - Reflection 2014 Button in

Figure 3 – Reflection 2014 Button in “Office 2007 Black”



Figure 3 - Reflection 2014 Button in
Figure 4 – Reflection 2011 Button in “Office 2007 Black”

Changing the Reflection Button and Color Scheme

To change the appearance of the Reflection button and workspace color scheme in the Reflection Workspace:

  1. Go to the Reflection Workspace Settings > Configure Workspace Settings.
  2. Scroll to the User Interface section and select “Look and Feel / Color Scheme”.
  3. Select your Reflection button appearance from the drop-down list.

Related:

  • No Related Posts

7021356: Which Products include HP Emulation?

The following table lists current Attachmate products that include support for HP terminal types, and the manner of installation. HP support is either part of an integrated product installation or a separate download and installation, depending on the entitled product.

Entitled Product
Installation Type
Reflection Desktop
Optional feature**
Reflection Desktop Pro
Optional feature**
InfoConnect Desktop Pro for Airlines 16.x
Optional feature**
InfoConnect Desktop Pro for Unisys 16.x
Optional feature**
InfoConnect Desktop Pro for Unisys with X 16.1
Optional feature**
Reflection 2014
Separate, see Technical Note 2706
Reflection Pro 2014
Separate, see Technical Note 2706
Reflection Professional Suite 2011
Separate, see http://docs.attachmate.com/reflection/2011/r2/product_overview_ps_r2.pdf
Reflection for the Multi-Host Professional Edition, version 14.x
Integrated
Reflection for HP with NS/VT, version 14.x
Integrated
Reflection for the Web 2014/2011/2008 (all editions except Limited or Standard)
Integrated
Verastream Host Integrator (or Verastream Standard Kit)
Integrated*

*Verastream Host Integrator provides support for SOAP/JSON Web Services and custom Web Builder forms-based HTML5 web applications to HP hosts (after modeling HP host application in Design Tool), but not support for “zero-footprint” HP terminal emulation (screen-based web applications).

**Beginning in version 16.0, the Reflection for HP application is an optional feature in the installer. In Setup, on the Feature Selection tab, open Reflection > Workspace > Emulation to enable the “HP with NS/VT” feature as shown below.

HP Graphics Not Supported

Graphical terminal types, such as HP 2397A, were supported in WRQ Reflection 7 for DOS (included in Reflection for DOS CD product) and WRQ Reflection 7+ for the Macintosh. HP graphical terminal support is not available in current products for Windows or other platforms.

Technical Resources

Refer to the following pages for links to downloads, technical notes, and other resources.

Product
Technical Resources
Reflection Desktop
http://support.attachmate.com/product/?prod=RD
Reflection Desktop Pro
http://support.attachmate.com/product/?prod=RDPRO
InfoConnect Desktop Pro for Airlines
http://support.attachmate.com/product/?prod=INFODPROAIR
InfoConnect Desktop Pro for Unisys
http://support.attachmate.com/product/?prod=INFODPROUN
InfoConnect Desktop Pro for Unisys with X
http://support.attachmate.com/product/?prod=INFODPROUNX
Reflection 2014
http://support.attachmate.com/product/?prod=RX2014
Reflection Pro 2014
http://support.attachmate.com/product/?prod=RPRO2014
Reflection Professional Suite 2011
http://support.attachmate.com/product/?prod=RPS11
Reflection for the Mulit-Host Professional Edition. version 14.x
http://support.attachmate.com/product/?prod=RMHEPRO
Reflection for HP with NS/VT, version 14.x
http://support.attachmate.com/product/?prod=RNSVT
Reflection for the Web
http://support.attachmate.com/product/?prod=RWEB
Verastream Host Integrator
http://support.attachmate.com/product/?prod=VHI

Related:

  • No Related Posts

7022965: VB.NET application which uses EXTRACOM requires dozens of Reflection files in its folder to run

This document (7022965) is provided subject to the disclaimer at the end of this document.

Environment

Reflection Desktop (including Pro, for X, for IBM, or for UNIX and OpenVMS) 16.1

Reflection Desktop (including Pro, for X, for IBM, or for UNIX and OpenVMS) 16.0

Reflection 2014

Reflection Pro 2014

Reflection for IBM 2014

Reflection for UNIX and OpenVMS 2014

Reflection for IBM 2011

Reflection for UNIX and OpenVMS 2011

Reflection Standard Suite 2011

Microsoft Windows 10

Microsoft Windows 7

Situation

When using EXRACOM for an early-bound Visual Basic .NET (VB.NET) application, about 100 files from Reflection get copied to the build output directory in Visual Studio for distribution and use with the application. The “CopyLocal” property for the reference to EXTRACOM in Visual Studio is automatically set to “True” which means that all dependent files required get copied from the Reflection Program Files directory to the project output location when the project is built. If this CopyLocal property is set to false, and the VB.NET application is not in a directory with all these Reflection files, the reference does not work (e.g. the VB.NET project will not run). Ideally, a project would not need to have 100 files copied from Reflection to it’s own directory in order to run. Building the application appears to create a dependency for the application on a specific version of Reflection, thus any time a Reflection release or service pack is applied, this VB.NET application will also need to be rebuilt and redistributed.

Resolution

Resolution:

This is currently being evaluated by Micro Focus Development.

Workaround:

1. Set “Copy Local = False” for the EXTRACOM reference in the VB.NET application.
2. Clear out the build folder of the VB.NET application.
3. From the C:Program Files (x86)Micro FocusReflection folder (assuming Visual Studio 2015 is installed on the PC)
run the following commands at an elevated Command Prompt to add the following 5 assemblies to the Windows General
Assembly Cache (GAC):

“C:Program Files (x86)Microsoft SDKsWindowsv10.0AbinNETFX 4.6.1 Toolsgacutil.exe” -I EXTRACOM.DLL

“C:Program Files (x86)Microsoft SDKsWindowsv10.0AbinNETFX 4.6.1 Toolsgacutil.exe” -I Attachmate.ComSubsystem.DLL

“C:Program Files (x86)Microsoft SDKsWindowsv10.0AbinNETFX 4.6.1 Toolsgacutil.exe” -I Attachmate.Services.API.Objects.Emulation.OpenSystems.dll

“C:Program Files (x86)Microsoft SDKsWindowsv10.0AbinNETFX 4.6.1 Toolsgacutil.exe” -I Attachmate.TerminalServices.dll

“C:Program Files (x86)Microsoft SDKsWindowsv10.0AbinNETFX 4.6.1 Toolsgacutil.exe” -I Attachmate.Services.API.Objects.Emulation.IBMHosts.dll

The “gacutil.exe” application from Visual Studio will add the assemblies to the Windows GAC and thus additional Reflection files will not need to be distributed with the VB.NET application.

Status

Reported to Engineering

Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented “AS IS” WITHOUT WARRANTY OF ANY KIND.

Related:

  • No Related Posts

7022959: Windows command line “ssh ???q” does not result in completely quiet output

This document (7022959) is provided subject to the disclaimer at the end of this document.

Environment


Reflection for Secure IT Client for Windows 7.2 SP 2 (7.2.2190) and higher

Situation

The –q “quiet” switch does not suppress the “Connect” and “Connection closed to” messages after ssh executes a remote command.

Example:

From Windows command line, type:

 ssh –q <user>@<myhost> "ls"

Output:

Connected.

File1.txt

File2.txt

Connection closed to <myhost>

Resolution

Workaround:

If command is used within a script and outputs are sent to a file, adding the “-f” switch will suppress the two message in the output file.

Example:

 ssh -q -f <user>@<myhost> "ls" >C:outputoutput.txt

Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented “AS IS” WITHOUT WARRANTY OF ANY KIND.

Related:

  • No Related Posts

7022982: Security Vulnerability: “Spectre V2” vulnerability re-introduced after installing kernel modules or drivers.

This document (7022982) is provided subject to the disclaimer at the end of this document.

Environment

SUSE Linux Enterprise Server 11 Service Pack 3 (SLES 11 SP3)

SUSE Linux Enterprise Server 11 Service Pack 4 (SLES 11 SP4)

SUSE Linux Enterprise Server 12 Service Pack 2 (SLES 12 SP2)

SUSE Linux Enterprise Server 12 Service Pack 3 (SLES 12 SP3)

Situation

To help mitigate thehardware implementation causing Spectre Variant 2 vulnerability,SUSE as an operating system vendor has released and is continuingto work on mitigations for these side channel attacks in the Linuxkernel and other packages.
One of the mitigationsagainst the Spectre Variant 2 vulnerability is to compile codewithout use of indirect jumps. This method is known as “Retpoline”.Many of the latest SUSE kernel updates have been built using theretpoline methods. For this mitigation to be fully effective, allrunning kernel object code, including loadable kernel modules,needs to be compiled using the retpoline methods. That requires allthird party, externally delivered kernel modules to be built in aretpoline manner.
On SLE 12 SP2 andgreater, when using the latest update kernels, a warning is shownwhen loading a module not flagged as being built with retpolinesupport:
[ 19.503350] Spectre V2 : System may be vulnerable tospectre v2
Note this issue isalso present on SLE 11 SP4 but will not show the warningmessage.
Seeing this messagemeans that your system may have been re-introduced to the SpectreVariant 2vulnerability.

Resolution

The SUSE SolidDriverteam will begin rolling out updates to the Installation Kits,Driver Kits and DUDs hosted on drivers.suse.com to provideretpoline built modules. We will focus on OS versions that arecurrently shipping and in support, specifically SLE 12 SP3, SLE 12SP2 and SLE 11 SP4. We will systematically go through andre-build/re-post these kits and let corresponding partners knowwhen they have been madeavailable.
For partners who needto re-build their own retpoline ready kernel modules and drivers,instructions can be found on our SolidDriver websitehere:

Cause

CVE-2017-5715 (Spectre – variant 2)

Additional Information

For more informationabout SUSE’s approach to the Spectre Meltdown issues see thefollowing:

Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented “AS IS” WITHOUT WARRANTY OF ANY KIND.

Related:

  • No Related Posts

7002366: Helpful TIDs on DSfW

This document (7002366) is provided subject to the disclaimer at the end of this document.

Environment

Novell Open Enterprise Server 11 SP2 (OES11SP2)
Novell Open Enterprise Server 11 SP1 (OES11SP1)
Novell Open Enterprise Server 2 SP3 (OES2SP3)

Domain Services for Windows

DSfW

Situation

A list of helpful TIDs on Domain Services for Windows.

Resolution

Pre-Install/Install

7002172

Preparing for Domain Services for Windows Install

7001884

Verify a Domain Services for Windows Install
7009927
Preparing for an ADC Install of Domain Services for Windows
7000068
DSfW: List of Install TIDs

Latest issues

7022955DSfW: Unable to join Windows 10 version 1709 workstation to domain

7015222 CASAcli -l returns Found 0 credentials Novell named fails to start
7014532 DSfW Installation/upgrade causes novell-named to fail to start
xadsd: [NETLOGON] Workstation failed to authenticate: 0xc0000022
7014409 DSfW: ndsd crashes in libxadsdk.so with empty SID in ldapsearch
7011732 DSfW: ADC install fails NDS error: bad password (-222)
7011671
Installation of OES11SP1 Domain Services for Windows fails if November 2012 patch is installed
7009930 Provisioning for new DSfW domain Controller Fails with -614 error during the Assign Rights Task
7009567 Security Vulnerability – DSfW non-administrative domain users have all rights to new Group Policy Objects
7009358 MMC shows objects multiple times after applying August Maintenance Patch
7006851 Workstations with duplicate names joined to the domain cause slow logins
7007011 Password Policy is Overwritten with GPO Password Policy

7005705

Directory \servernamesysvol”domain name” isn’t accessible anymore after updating Samba.

Useful information

7002907

Important log files for DSFW

7001886

Services and Network Ports used by DSfW

7003070

Ldapsearch for DSfW
7012461 How to Export an Object or a User
7007276
DSfW TIDs regarding VMWare View
7012534
List of DSfW Bug Fixes In Maintenance Patches
7012113 Configuring BlackBerry Device Service with DSfW
7001887
Daemons Domain Services for Windows uses

7003552

LDAP application does not work after installing DSfW into tree and DSfW server is down

7003989

Member server crashes when joining domain

7003990

Changing DSfW domain name
7006307
How to find the DSfW domain name
7006988
How to rename DSfW nebios name
7008032
How to rename a DSfW Domain User

7004002

Dynamic group is displayed as unknown object in MMC

7004405

DSfW Group Types

7004683

DSfW Default Configuration smb.conf files

7003443

Delegate control in MMC does not work with DSfW

7005685

Failed to open the Group Policy Object. You do not have appropriate rights.
7008428 Windows versions supported with Domain Services for Windows
7004782
Kerberos authentication for the user without UserPrincipalName (UPN) attribute fails
7003443
Delegate control in MMC does not work
7006844 How to Consolidate Matching DNS Zones
7013478 DNS Record is Missing – How to recreate a DSfW DNS Record
7010886

7012947
Using ldapsearch to find DNS-DHCP Loctor Objects

Unable to read locator reference from NCP server

Troubleshooting

3576510

Basic Troubleshooting of Domain Services for Windows
7009601
Tools Needed to Troubleshoot a Workstation Joining a DSfW Domain
7009602 How To Take a LDAP / NMAS Trace for DSfW
7009603 Troubleshooting Application Authentication
7006275 Troubleshooting DSfW Group Policy Objects
7010462 Troubleshooting slow login or unresponsive server
7006270
Simple script to test if GPO is being executed

7002577

After DSfW install, LDAP search does not return all entries

7004481

Error: The Password does not meet the password policy when joining workstation to domain
7006254
Users can not change passwords “Windows cannot set the password for <user>

7005568

Password Restriction Joining a workstation to a DSfW domain
7005721
DSfW Universal password policy gets reset every 30 minutes

7002344

Winbind Fails to start when server is rebooted

7006446

DNS Fails to start – CASA Credential Not found

7012947

Novell DNS Fails to start – Unable to read locator reference from NCP server

7002267

Failed to configure XAD

3925469

Deleter name not showing up when trying to salvage files

7002756

Unable to access sysvol when using \domainsysvol

7003431

Unable to create DSfW users with MMC

7004943

wbinfo -u fails on DSfW server

7005617

DSfW Universal Password changes do not modify Kerberos password

7004291

Unable to access the netlogon share on an ADC in a DSfW domain
7006468
Unable to add additional Domain Controller when the domain ends in .local
7007273
Intruder Detection Settings are not retained
7006446
xadcntrl validate shows novell-named is unused
7008500 How to enable debug logging for DSfW sysvol synchronization
Failed install/ how to remove DSfW

7005431

How to Remove a DSfW server, domain, and forest

7000122

Cleaning up after a failed Domain Services Installation – OES2SP1 Only

7004954

DSfW install Fails in “Set Credentials for Accounts”

7002274

DSfW Install Fails due to international characters

7003727

Invalid Credentials when installing DSFW server

7003617

Adding a samba server as a member server crashes xadsd
7008427 DSfW install fails associating DomainDNS object class with domain object

7008305

Provisioning wizard samify task fails on Netware server license objects

Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented “AS IS” WITHOUT WARRANTY OF ANY KIND.

Related:

  • No Related Posts

7022980: IDM 4.7 – Bidirectional eDir Driver 4.0.4.0 does not connect over SSL

Please accept our apologies for this inconvenience. The article you are looking for may have been removed, its name may have changed, or it is temporarily unavailable.

Click the Knowledgebase link above to search the knowledgebase, or use the links in the top navigation bar to help you locate similar support information.

Thank you for your patience.

Related:

  • No Related Posts