=====================================================================
                                    CERT-Renater

                         Note d'Information No. 2008/VULN358
_____________________________________________________________________

DATE                      : 17/09/2008

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running LANDesk Management Suite,
                                 LANDesk Security Suite,
                                 LANDesk Server Manager.

======================================================================
http://community.landesk.com/support/docs/DOC-3276
______________________________________________________________________

Vulnerability in Intel QIP Service


Problem:

A vulnerability in the Intel QIP Service could allow remote code
execution. This vulnerability affects LANDesk Management Suite, LANDesk
Security Suite, and LANDesk Server Manager 8.8 and eariler.


FIX:

LANDesk has released fixes for versions 8.7 & 8.8 or the above mentioned 
products. If you are using a version less than these two please upgrade
to the latest version to avoid this vulnerability.



For 8.7 Download SWD-1620987.5

For 8.8 Download SWD-1620988.2

CVE ID: CVE-2008-2468

Special note:

LANDesk would like to thank TippingPoint and Aaron Portnoy for reporting
this issue.

======================================================================

           =========================================================
           Les serveurs de référence du CERT-Renater
           http://www.urec.fr/securite
           http://www.cru.fr/securite
           http://www.renater.fr
           =========================================================
           + CERT-RENATER          | tel : 01-53-94-20-44          +
           + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
           + 75013 Paris           | email: certsvp@renater.fr     +
           =========================================================