Reprise License Manager Update to Mitigate the “HTTP Header Injection Vulnerability”

June 16, 2023 Jeff Lotan

Issue:

You need to know if there is a Reprise License Manager Update to Mitigate the “HTTP Header Injection Vulnerability”

Solution:

IMAGINiT and Reprise have updated their respective files to Mitigate the vulnerability.

It is recommended that your network server admin follow these steps to manually replace the files:

1. Go into Services.msc and stop the “IMAGINiT Reprise License Manager” service.

2. Navigate to the \IMAGINiT Technologies\Reprise License Manager folder and rename the RLM.exe and the rlmutil.exe files.

If you are using the newer version the files will be found in:

C:\Program Files\IMAGINiT Technologies\Reprise License Manager

If you are on the older version the files will be in:

C:\Program Files(x86)\IMAGINiT Technologies\Reprise License Manager

I renamed them to rlm_exe.original and rlmutil_exe.origina just before I pasted in the new ones.

3. For the IMAGINiT Reprise License Manager fixes, download the updates from here: https://www.dropbox.com/s/yrps4lpy32hkekk/RepriseLM_Update_x64_w4_v15.1.zip?dl=0

4. Once downloaded check the box to “Unblock”, click Apply and Ok.

5. Extract the files.

6. Copy/paste these files over to the license manager folder where you renamed the original files.

7. Start the service.

When you bring up the web interface you will need to enter your user name and password. Check the administrator’s manual for the default.

To learn more about the vulnerability see this:

https://portswigger.net/web-security/host-header/exploiting

Created by Jeff Lotan - IMAGINiT Technologies Technical Support

About the Author

Sr. Technical Support Specialist - Licensing<br><br>I am charged with mentoring and training team members in the proper use our systems and tools, documenting NSC processes, and providing feedback and ideas to the management team towards improving the customer experience. I am also a major contributor to our technical support blog and internal knowledge base.
Follow on Linkedin More Content by Jeff Lotan

IMAGINiT Utilities Reprise Licensing issue was detected. License Error Code -37

The start date in the license hasn't occurred yet, e.g., today you try to check out a license containing st...

Welcome to our Hub

Reprise License Manager Update to Mitigate the “HTTP Header Injection Vulnerability”

About the Author

Previous Article

Next Article

Solutions Beyond Software™

Reprise License Manager Update to Mitigate the “HTTP Header Injection Vulnerability”

About the Author

Previous Article

Next Article

Related Content

Having an apostrophe in the parent folder name can prevent AutoCAD Electrical BOM Export in Vault.

How to distribute the display settings for the IMAGINiT Utilities for Vault Client

How to correct blank PDF files being created by the IMAGINiT Vault Client Utilities.

Problems producing a PDF from an AutoCAD .dwg using the IMAGINiT Utilities for Vault Client may be due to the condition of AutoCAD on the Job Processor host and whether the drawing is open in AutoCAD.

Our utilities run directly inside Autodesk Vault and are designed to remove redundancies and rework, by automating repetitive tasks, saving your team time and effort.

Discover the newest Utilities for Vault features. Annual and multi-year Autodesk subscribers with IMAGINiT can now access the IMAGINiT Utilities for Vault Client for free.

Installing the Vault Client 2024.3.1 update on the Vault Server host causes an unhandled exception for the Vault Metadata Update tool from the IMAGINiT Utilities for Vault Server version 24.0.8650.

How to speed up the processing of DXF CAM files, DXF sheet metal flat pattern files and stp files.

With the IMAGINiT Vault Server Utilities, the Job Manager Config utility can send email notifications if the Vault Job processor is offline or backed up.

Move the downloaded IMAGINiT Utilities install files to a folder on the local drive on the machine, such as c:\temp.

If you are familiar with creating and using batch files, then you can activate / generate the Standalone IMAGINiT Utilities during installation using a batch file.

Autodesk ID login on the vault server utilities is not currently supported.

The license error dialog should show you where to find the license. You will need to scroll down a little bit in the dialog to find it.

This soap exception happens due to some back-end issues. Here's what you need to know and do.

When attempting to activate the IMAGINiT Utilities, you receive the following error. “Utilities licensing error was encountered: The remote server returned an unexpected response: (400) Bad Request”

The -6 wrong version is typically that the license is for a different version of the utilities than the license.

The IMAGINiT development team has implemented a new network license manager for the 2022 and newer Utilities.

The start date in the license hasn't occurred yet, e.g., today you try to check out a license containing start=1-mar-2030.

Here are the best practices steps to download and install the Utilities

Learn about all the NEW tools available in IMAGINiT Utilities for Vault that complement and enhance your project functionality, management, and design experience.

Solutions Beyond Software™