<html><body><div style="color:#000; background-color:#fff; font-family:HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif;font-size:14pt"><div><span>XII is what I was told.</span></div><div style="color: rgb(0, 0, 0); font-size: 18.6667px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"><br><span></span></div><div style="color: rgb(0, 0, 0); font-size: 18.6667px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"><span>Thanks!</span></div><div style="color: rgb(0, 0, 0); font-size: 18.6667px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"><span><br></span></div><div><br></div>  <div style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande,
 sans-serif; font-size: 14pt;"> <div style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 12pt;"> <div dir="ltr"> <hr size="1">  <font size="2" face="Arial"> <b><span style="font-weight:bold;">From:</span></b> Alan Coopersmith <alan.coopersmith@oracle.com><br> <b><span style="font-weight: bold;">To:</span></b> Duane Fish <duanedfish@yahoo.com> <br><b><span style="font-weight: bold;">Cc:</span></b> "xorg@lists.x.org" <xorg@lists.x.org> <br> <b><span style="font-weight: bold;">Sent:</span></b> Wednesday, September 17, 2014 10:41 PM<br> <b><span style="font-weight: bold;">Subject:</span></b> Re: CVE-1999-0526 Vulnerbility on W2k8 R2<br> </font> </div> <div class="y_msg_container"><br>On 09/17/14 07:07 PM, Duane Fish wrote:<div class="qtdSeparateBR"><br><br></div><div class="yqt7553096489" id="yqtfd12210"><br clear="none">> Please feel free to "talk down" to me - I know very little
 about this app<br clear="none">> running on one of our servers.  I was told that this was a Vulnerability and I'm<br clear="none">> supposed to resolve it.</div><br clear="none"><br clear="none">Software shipped by X.Org does not suffer from this vulnerability unless you<br clear="none">disable our default access control.<br clear="none"><br clear="none">X servers for Windows 2008 probably come from some other vendor though, and<br clear="none">you'll need to ask them how they configure it.<br clear="none"><br clear="none">Do you know which X server product you are running on that system?<br clear="none"><br clear="none">-- <br clear="none">    -Alan Coopersmith-              <a shape="rect" ymailto="mailto:alan.coopersmith@oracle.com" href="mailto:alan.coopersmith@oracle.com">alan.coopersmith@oracle.com</a><br clear="none">     Oracle Solaris Engineering - <a shape="rect"
 href="http://blogs.oracle.com/alanc" target="_blank">http://blogs.oracle.com/alanc</a><div class="yqt7553096489" id="yqtfd59596"><br clear="none"></div><br><br></div> </div> </div>  </div></body></html>