Vulnerabilities / Threats
1/13/2010
01:48 PM
Connect Directly
RSS
E-Mail
50%
50%

VMware To Buy Zimbra From Yahoo

The open-source email and collaboration software will be used to build out VMware's virtualization infrastructure for cloud computing environments.

VMware has struck a deal with Yahoo to acquire all of Zimbra's technology and intellectual property. It plans to use Zimbra's open-source email and collaboration software to build out VMware's virtualization infrastructure for cloud computing environments. Financial terms were not disclosed.

Acquiring an email provider is an unexpected move from VMware. However, Steve Herrod, chief technology officer for the company, said Zimbra fits VMware's strategy of adding a ready-to-run application layer at the top of its vCloud software stack.

"With Zimbra, we will now offer our partners an even higher level of cloud capability; one where customers can simply use an application without worrying about the details of how and where it runs," Herrod said Tuesday in the company's blog.

VMware's cloud stack starts with its vSphere compute and storage infrastructure, which is topped by the simplified Java development environment VMware got last August with its $420 million acquisition of SpringSource. The platform provides a runtime environment for developers code, while handling all the calls to VMware's virtualization infrastructure.

Zimbra's software would be packaged with the rest of the stack "to deliver a well integrated portfolio of compute, application development and core IT service clouds," Herrod said. Along with Zimbra's e-mail, calendaring and collaboration software, other core IT services that would be at home in VMware's stack are file and print services and identity management.

"All four of these technology areas are common to companies large and small," Herrod said. "Furthermore, each area is taking growing amounts of IT attention, time, and money without furthering the ultimate goals of the company."

Zimbra offers on-premise software, which is popular among small and medium-sized businesses. It also sells its technology as a hosted service. Customers include Comcast and NTT Communications.

Overall, Zimbra technology powers more than 55 million mailboxes, according to the company. Zimbra's software also runs Yahoo Mail and Yahoo Calendar. Under the deal, Yahoo would have the right to continue to use Zimbra technology in its communication services.

The purchase is expected to close during the current quarter.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-0485
Published: 2014-09-02
S3QL 1.18.1 and earlier uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object in (1) common.py or (2) local.py in backends/.

CVE-2014-3861
Published: 2014-09-02
Cross-site scripting (XSS) vulnerability in CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted reference element within a nonXMLBody element.

CVE-2014-3862
Published: 2014-09-02
CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to discover potentially sensitive URLs via a crafted reference element that triggers creation of an IMG element with an arbitrary URL in its SRC attribute, leading to information disclosure in a Referer log.

CVE-2014-5076
Published: 2014-09-02
The La Banque Postale application before 3.2.6 for Android does not prevent the launching of an activity by a component of another application, which allows attackers to obtain sensitive cached banking information via crafted intents, as demonstrated by the drozer framework.

CVE-2014-5136
Published: 2014-09-02
Cross-site scripting (XSS) vulnerability in Innovative Interfaces Sierra Library Services Platform 1.2_3 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
This episode of Dark Reading Radio looks at infosec security from the big enterprise POV with interviews featuring Ron Plesco, Cyber Investigations, Intelligence & Analytics at KPMG; and Chris Inglis & Chris Bell of Securonix.