NOVELL TECHNICAL INFORMATION DOCUMENT TITLE: CIFS update for NW 5.1 and 6.0 TID #: 2971822 README FOR: cifspt9.exe SUPERSEDES: cifspt7.exe NOVELL PRODUCTS and VERSIONS: CIFS - NW6CP ABSTRACT: August 30, 2005: File re-released to document that this patch also addresses a vulnerability exploited by the "worm.rbot.ccc" worm virus. No changes made to any binaries. August 12, 2005: File re-released as public. No changes made to any binaries. This patch contains the necessary files to update CIFS on a NetWare 5.1 SP4 or later, or a NetWare 6 SP1 or later server. ----------------------------------------------------------------- DISCLAIMER THE ORIGIN OF THIS INFORMATION MAY BE INTERNAL OR EXTERNAL TO NOVELL. NOVELL MAKES ALL REASONABLE EFFORTS TO VERIFY THIS INFORMATION. HOWEVER, THE INFORMATION PROVIDED IN THIS DOCUMENT IS FOR YOUR INFORMATION ONLY. NOVELL MAKES NO EXPLICIT OR IMPLIED CLAIMS TO THE VALIDITY OF THIS INFORMATION. ----------------------------------------------------------------- INSTALLATION INSTRUCTIONS: Primary install option: 1. Copy cifspt9.exe to the root of sys. Running the patch will create a cifspt9 folder and extract the patch files into it. 2. Load NWCONFIG | Product Options | Install a product not listed | hit ENTER 3. Press F3 and specify the path to where you extracted cifspt9.exe (i.e:SYS:\cifspt9) 4. CIFSSTOP 5. CIFSSTRT This install option will automatically backup your existing CIFS and to SYS:\System\!cifs.bak. It will also update the NFAW version in the products.dat file to reflect the appropriate patch level (list of installed products in nwconfig). Alternate install option: 1. CIFSSTOP 2. Copy cifspt9.exe to the root of sys. Running the patch will create a cifspt9 folder and extract the patch files into it. 3. Rename SYS:\System\CIFS.NLM 4. Copy the new CIFS.NLM from the path to where you extracted cifspt9.exe (i.e:SYS:\cifspt9) to SYS:\System. 5. CIFSSTRT 6. No reboot is required. This option does not automatically backup your existing files, nor will it update the products.dat file with the appropriate patch level. ISSUE: Security Issue: - Fixed a vulnerability exploited by the "worm.rbot.ccc" worm virus. Which would cause an ABEND resulting in a denial of service. (BZ88438) New Fixes: - Page Fault related to the initial fix for the password length ABEND Previous Fixes Included: - ABEND in CIFS. Password length incorrect. (BZ88438) - ABEND showing up with XP SP2 clients (500371739) - Can't see all files on a "dir" type operation when using Japanese language. (380630) - Fixes an issue where some Network Security/Port Scanners could hard lock NetWare 5.1 and NetWare 6.0 servers if they were running CIFS.NLM. - The logger screen would display the following message over and over: LargeWriteCont: length=60032, lW->length = 60032, error = 0 - Abend when attaching to the CIFS server via SAMBA and SUSE9. - CIFS failure to re-register with WINS after the initial registration expires. - CIFS servers showing up in the adding printers list - CIFS abend - Failure to open "some" text and log files via CIFS on traditional volumes. Self-Extracting File Name: cifspt9.exe Files Included Size Date Time ..\ CIFSPT9.TXT (This file) ..\CIFSPT9\ CIFS.IPS 3503 7-6-2005 4:05:11 pm CIFS.NLM 360031 7-6-2005 10:27:02 am CIFSPT9.TXT 3369 7-6-2005 4:10:39 pm ----------------------------------------------------------------- Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information. -----------------------------------------------------------------