Skip to page content or Skip to Accesskey List.

Work

Main Page Content

Serious Filemaker Pro 5 Bugs

Rated 3.89 (Ratings: 0)

Want more?

 
Picture of isaac

Isaac

Member info

User since: 14 Dec 1998

Articles written: 67

Blue World Communications has announced three "serious" security issues in the Web Companion that accompanies FileMaker Pro 5, allowing anyone on the Internet to view the contents of a Web Companion configured database, send that data via email to anyone else, and also send anonymous or impersonated email, regardless of Web Database Security preferences.

The issues are related directly to the introduction of new XML and email features to FileMaker Pro 5, and affect anyone with a Web site that makes use of the FileMaker Pro 5 Web Companion. If credit card numbers are stored in one of these databases, they can be viewed via manipulation of the security hole.

The security problems may be solved by disabling the Web Companion, or using an alternative version or database solution. Blue World also provides other methods detailed within their press release, which can be viewed on their Web site or on MacInTouch.com

FileMaker, Inc. is aware of the issues and claims that no users have experienced problems so far. They have indicated that users watch their Web site for details of a fix that should be released within a week.

isaac

Isaac is a designer from Adelaide, South Australia, where he has run Triplezero for almost a decade.

He was a member and administrator of evolt.org since its founding in 1998, designed the current site, and was a regular contributor on evolt.org's direction-setting discussion list, theforum.

On the side, he runs Opinion, Hoops SA, Confessions, Daily Male, and Comments, as well as maintaining a travel gallery at Bigtrip.org.

The access keys for this page are: ALT (Control on a Mac) plus:

evolt.org Evolt.org is an all-volunteer resource for web developers made up of a discussion list, a browser archive, and member-submitted articles. This article is the property of its author, please do not redistribute or use elsewhere without checking with the author.