.
On Tuesday March 8 2011, Microsoft released 3 new security bulletins (MS11-015 to MS11-017). None of these bulletins apply to CallPilot servers
For additional details please refrence CallPilot Server Security Update-2011 (Mar).
It provides the latest CallPilot-specific server security information relating to the Microsoft security advisories for March 2011 (MS11-015 through MS11-017), none of which are applicable to CallPilot 3.0, 4.0, or 5.0 servers.
Bulletins are posted to the Avaya Partner Portal (http://portal.avaya.com) and Support Portal (http://support.avaya.com)
Important notes regarding the approved security updates for CallPilot 3.0/4.0/5.0 servers:
- Microsoft no longer provides security updates for Windows 2003 Server systems prior to SP2.
- Only apply Windows Server 2003/Service Pack 2 (SP2) via the CallPilot PEPs as documented
- Apply the latest Security Update PEP (CPSECPEP013S) for additional hardening beyond Microsoft security updates
- Apply additional approved Microsoft security updates using Windows Update directly from the server
- Apply additional approved Windows Server 2003 updates as outlined in Appendix-D (if prompted)
- DO NOT install IE 7 or IE 8 on the CallPilot server.
- IE 7 (and MS09-002) and IE 8 can be installed on the customer-provided web-server hosting CPMgr/Reporter.
- High Availability systems should apply KB951847 .NET Framework 3.5 SP1 and Family Update for .NET 2.0 through 3.5
- KB976749 should also be applied to systems wherein MS09-054 has been installed
- MS10-034 requires use of My CallPilot version 05.00.41.110 (and later) to avoid conflicts with downloading the player
- CallPilot 5.0 servers should also update to Adobe Reader 9.3.3. Reference PAA-2010-0006-Global-Rev1 for details.
For additional details please refrence CallPilot Server Security Update-2011 (Mar).
It provides the latest CallPilot-specific server security information relating to the Microsoft security advisories for March 2011 (MS11-015 through MS11-017), none of which are applicable to CallPilot 3.0, 4.0, or 5.0 servers.
Bulletins are posted to the Avaya Partner Portal (http://portal.avaya.com) and Support Portal (http://support.avaya.com)
Important notes regarding the approved security updates for CallPilot 3.0/4.0/5.0 servers:
- Microsoft no longer provides security updates for Windows 2003 Server systems prior to SP2.
- Only apply Windows Server 2003/Service Pack 2 (SP2) via the CallPilot PEPs as documented
- Apply the latest Security Update PEP (CPSECPEP013S) for additional hardening beyond Microsoft security updates
- Apply additional approved Microsoft security updates using Windows Update directly from the server
- Apply additional approved Windows Server 2003 updates as outlined in Appendix-D (if prompted)
- DO NOT install IE 7 or IE 8 on the CallPilot server.
- IE 7 (and MS09-002) and IE 8 can be installed on the customer-provided web-server hosting CPMgr/Reporter.
- High Availability systems should apply KB951847 .NET Framework 3.5 SP1 and Family Update for .NET 2.0 through 3.5
- KB976749 should also be applied to systems wherein MS09-054 has been installed
- MS10-034 requires use of My CallPilot version 05.00.41.110 (and later) to avoid conflicts with downloading the player
- CallPilot 5.0 servers should also update to Adobe Reader 9.3.3. Reference PAA-2010-0006-Global-Rev1 for details.
Comment