PARALLELS PLESK PANEL – SECURITY ADVISORY

1. PARALLELS PLESK PANEL
2. PARALLELS PLESK PANEL – SECURITY ADVISORY
3.  
4. Parallels Plesk Panel Customer:
5.  
6. Please read this message in its entirely and take the recommended actions.
7.  
8. On February 9, we notified you of a security vulnerability in some older versions of Parallels Plesk Panel (see below). In that notification, we recommended updating to one of several versions of Plesk where this vulnerability had already been patched.
9.  
10. If you have already applied the recommended update or were already running an up-to-date version, no further action is required.
11.  
12. For others, in order to make updating easier, especially for those providers with many Plesk instances, we have released additional "MicroUpdates" that allow for patching additional versions of Plesk without having to perform a full version upgrade.
13.  
14. These patches are available for:
15.  
16. Plesk 10.3
17. Plesk 10.2
18. Plesk 10.1
19. Plesk 10.0
20. Plesk 9.5
21. Plesk 9.3
22. Plesk 9.2
23. Plesk 9.0
24. Plesk 8.6
25. Plesk 8.4
26. Plesk 8.2
27.  
28. Please follow our Knowledge Base article for instructions to install these patches: http://kb.parallels.com/en/113321
29.  
30. Parallels takes the security of our customers very seriously and encourages you to take the recommended actions as soon as possible.
31.  
32. Thanks,
33.  
34. -The Plesk Panel Team
35.  
36. Originally Notified on February 9, 2012:
37.  
38. Parallels has been informed of a SQL injection security vulnerability in some older versions of Plesk. This vulnerability is considered critical in nature and customers are advised take action quickly.
39.  
40. A patch has been released to resolve this vulnerability. Based on the version and operating system of Plesk you use, please follow the instructions below.
41.  
42. Linux
43.  
44. Plesk 10 - Update to Plesk 10.3.1 MicroUpdate #6 or later.
45. Update Instructions: here
46. If possible, it is recommended to update all the way to Plesk 10.4.4 to provide the most stable user experience.
47.  
48. Plesk 9 - Update to Plesk 9.5.4 MicroUpdate #11 or later
49. Update Instructions: here
50.  
51. Plesk 8 - Update to Plesk 8.6.0 MicroUpdate #2 or later
52. Update Instructions: here
53.  
54. Windows
55.  
56. Plesk 10 - Update to Plesk 10.3.1 MicroUpdate #6 or later.
57. Update Instructions: here
58. If possible, it is recommended to update all the way to Plesk 10.4.4 to provide the most stable user experience.
59.  
60. Plesk 9 - Apply Fix from Parallels Knowledge Base
61. Update Instructions: here
62.  
63. Plesk 8 - Apply Fix from Parallels Knowledge Base
64. Update Instructions: here
65.  
66. If you are already at or above the Version and MicroUpdate levels indicated above - you are already protected from this vulnerability.
67.  
68. Parallels takes the security of our customers very seriously and urges you to act quickly by applying these patches.
69.  
70. ©2012 Parallels Holdings Ltd. All rights reserved.
71.  
72. This message was intended for [email protected]=) You were added to this list October 15, 2009.
73.  
74. To update your subscription options, click here. Use this link to unsubscribe.
75. Parallels, Inc.
76. 500 SW 39th St, Suite 200
77. Renton, WA 98057
78.  
79. License Agreement | Terms of Use | Privacy Policy