Know the hot fixes and enhancements included in TMCM 6.0 SP3.
|Hot fix solutions for TMCM 6.0 SP3|
Hot Fix 2504
Issue: When users launch the ad hoc query while the UI debug log is enabled, the SQL account and password will appear in the UI debug log file.
Hot Fix 2508
Issue: The SMEX user account and password information of may appear in some related debug logs Control Manager 6.0 generates.
Hot Fix 2509
Issue: Users cannot create a policy using an account that does not have access rights to policy resources.
Hot Fix 2511
Issue: If Control Manager is managing OfficeScan servers and is unable to connect to the Trend Micro Product Registration server, the OfficeScan server license may overwrite the Control Manager license.
Hot Fix 2525
Issue 1: Unable to register a product if the process is waiting in queue for an extended period of time.
Issue 2: When Control Manager 6.0 generates scheduled reports using Control Manager 3.0 templates, the virus count information does not appear on the generated reports.
Issue 3: An issue with an ACL function prevents the following widgets from displaying the required information when users click on items in these widgets.
- DLP Template Matches
- DLP Violated Policy
- Top DLP Incident Sources
- Policy Status
- C&C Callback Events
- Host with C&C Callback Attempts
Issue 4: The domain field in ad hoc query results for ServerProtect for Microsoft Windows NT always displays "N/A" instead of the correct domain name.
Issue 5: After upgrading Control Manager 6.0 to Service Pack 1, it may take a long time to load the Control Manager console product page.
Issue 6: After the OfficeScan server registers to Control Manager 6.0, the Product page will also display information on all OfficeScan clients that the server manages. However, under certain scenarios, the Scan Method and Smart Scan Server Status information that appear on the Product page are inconsistent with the information on the OfficeScan server.
Issue7: Control Manager 6.0 has an Active Directory (AD) synchronize function for endpoints that belong to a domain server and a widget to display information about the synchronized endpoints. However, an issue may prevent Control Manager 6.0 from converting the content format between English and French that can trigger the function and widget to work abnormally.
Issue 8: The Control Manager 6.0 function that purges logs according to a specified time stamp may not work on computers that run on the French version of any operating system. This occurs because the time stamps in logs are translated in the wrong format.
Issue 9: Control Manager 6.0 Service Pack 1 Hot Fix 2225 and Hot Fix 2253 transfer the SQLite database of Endpoint Encryption to a different location. However, Control Manager 6.0 Service Pack 2 does not. As a result, users encounter errors when upgrading to Service Pack 2 without applying Hot Fix 2225 or Hot Fix 2253.
Hot Fix 2531
Issue: After downloading OfficeScan Plug-in Program List, some language versions of OfficeScan plug-ins do not appear under the scheduled download settings page.
Hot Fix 2533
Issue: When Control Manager 6.0 generates reports, it saves report files in the "\Trend Micro\Control Manager\WebUI\exports" folder. Users can manually delete a report from the Control Manager 6.0 console. However, the corresponding report files remain in the folder.
Hot Fix 2534
Issue: The Help icon does not appear on the Control Manager 6.0 Service Pack 2 web console's Policy Management > Create Policy page because some related files are missing.
Hot Fix 2543
Issue: Some files did not update during the Control Manager 6.0 Service Pack 2 package installation.
Hot Fix 2554
Issue: Control Manager 6.0 allows users to create new accounts with both administrator and DLP Compliance Officer roles. However, if the account name does not match the full name, the account cannot receive DLP notification email messages.
Hot Fix 2555
Issue: When users attempt to add path names to OfficeScan scan exclusions policy on the Control Manager 6.0 Service Pack 2 console, all the items on the exclusion list disappear.
Hot Fix 2556
Issue: The "Vendor", "Model" and "Serial ID in Block" fields on the Control Manager Policy for OfficeScan Client Device Control Settings page do not support the ampersand "&" character.
Hot Fix 2559
Issue 1: It takes a long time for the Threat Detection widget to generate ad hoc query VIEW and the VIEW may also contain information that are not consistent with the information on the widget.
Issue 2: A large number of redundant records are created in the "tb_TVCSCommandList" table that can cause the database to grow abnormally.
Issue 3: When users run an ad hoc query for the endpoint view through the "Product Component Status" widget, the query results will not contain any information.
Issue 4: An issue with an ACL function prevents the following widgets from displaying the required information when users click on items in these widgets.
- DLP Incident channel
- DLP Template Matches
- DLP Violated Policy
- Top DLP Incident Sources
- Policy Status
- C&C Callback Events
- Host with C&C Callback Attempts
Issue 5: After applying Control Manager 6.0 Service Pack 2, scheduled reports cannot be generated successfully.
Issue: It takes a long time for Control Manager 6.0 server to generate PDF reports.
Hot Fix 2572
Issue: When the ActiveUpdate action setting is set to "0x0000", Control Manager 6.0 treats it as invalid setting and triggers the wrong action.
Hot Fix 2580
Issue: The user account and password information of Mobile Security may appear in some related debug logs generated by Control Manager 6.0.
Hot Fix 2587
Issue: Users cannot download the Deep Discovery Email Inspector (DDEI) pattern, which is the Script Analyzer Pattern from the Control Manager Download page.
Hot Fix 2588
Issue: When Control Manager 6.0 generates scheduled reports using Control Manager 3.0 templates and the report frequency is specified through the "Every 'n' days" option, the wrong virus count information appear in the generated reports.
Hot Fix 2590
Issue: If a product is renamed after it disconnects from Control Manager 6.0, the corresponding product display name and domain information on the "Directories > Products" page of the Control Manager 6.0 web console are not updated after the product reconnects to Control Manager 6.0.
Hot Fix 2592
Issue: In the "Policy Management > Create Policy > Specify Target" Control Manager 6.0 console, the total number of added end point computers remain zero after users add new end point computers to the list.
Hot Fix 2594
Issue: It may take a long time for Control Manager 6.0 to process C&C Callback Information ad hoc queries.
Hot Fix 2595
Issue: In the Traditional Chinese version of Control Manager 6.0, garbled characters may appear in the notification email messages for changes in the Data Loss Prevention incident status.
Hot Fix 2596
Issue: A possible SQL injection vulnerability is found in the login page of the Control Manager 6.0 console.
Hot Fix 2597
Issue: After users apply Control Manager 6.0 Service Pack 2, "N/A" appears as the computer name of non-product client servers in event notifications.
Hot Fix 2598
Issue: Some column strings are missing from DPI ad hoc queries for Intrusion Prevention Information.
Hot Fix 2599
Issue: Control Manager receives multiple logs for the same malware from Mobile Security for Enterprise.
Hot Fix 2604
Issue: A change in the XML data in Control Manager 6.0 prevents it from editing saved custom templates.
Hot Fix 2607
Issue: Exception errors occur when users attempt to view search results in the product tree page of the Control Manager 6.0 console in a different viewing format.
Hot Fix 2608
Issue: No product information appears on the parent Control Manager web console after users click on a product managed by a child Control Manager on the product tree.
Hot Fix 2609
Issue: Some blank pages may appear in Control Manager reports.
Hot Fix 2611
Issue: The Control Manager widget pool downloaded item for Control Manager 5.5 has been removed from the Control Manager 6.0 web console, but the related data remains in the database.
Hot Fix 2612
Issue: The Network Time Protocol (NTP) Service in Control Manager 6.0 is affected by vulnerabilities triggered by multiple stack-based buffer overflow issues.
Hot Fix 2613
Issue: The support version information for InterScan Messaging Security Virtual Appliance (IMSVA) cannot be displayed clearly when the mouse pointer hovers over the “i" icon for IMSVA in the Policy Template Settings page of the Control Manager 6.0 console.
Hot Fix 2614
Issue: The wrong product information appears for ServerProtect and related products in the product tree on the Control Manager 6.0 console's product summary page.
Hot Fix 2618
Issue: The background entity IP synchronization process retrieves the wrong information from the database that prevents it from running normally.
Hot Fix 2620
Issue: The LDAP group type of a newly-created rule automatically changes to "Users" after users save the new rule and then reopen the rule in the "InterScan Web Security Virtual Appliance DLP" policy setting page.
Hot Fix 2621
Issue: The "SLF_RuleID" field for DPI logs in the "tb_LogIntrusionPrevention" database table may truncate some information.
Hot Fix 2623
Issue: SQL connection issues prevent Control Manager 6.0 from running scheduled tasks normally.
Hot Fix 2634
Issue: The performance of "DMServer.exe" may slow down in debug mode that can trigger Control Manager 6.0 to behave abnormally.
Hot Fix 2638
Issue: When products send status logs to Control Manager 6.0 using version 1.3 or any lower log template version, the status of some up-to-date components may appear outdated on the Control Manager 6.0 console.
Hot Fix 2639
Issue: The wrong C&C callback count information appears in the "Host with C&C Callback Attempts" widget because of an aggregation issue in Control Manager 6.0.
Hot Fix 2640
Issue: Users can only add up to five sets of OfficeScan connection settings to the "Active Directory and Widget Settings" page because the “+” button on the page becomes grayed-out once the fifth set of connection settings is added. However, when users click the "+" button again, the input field will still be added to the list.
Hot Fix 2641
Issue: When users reinstall any hot fix that has been uninstalled previously from Control Manager 6.0 Service Pack 2, some SQL operations required for installation do not run successfully.
Hot Fix 2646
Issue: The "PolicyMigrator.exe" tool may parse a period ‘.’ character as a comma ‘,’ while exporting existing Control Manager policies in computers running French or German operating system versions.
Hot Fix 2647
Issue: An issue prevents users from logging on to the InterScan Web Security Appliance (IWSVA) 6.0 Service Pack 1 console through single sign-on (SSO) by HTTPS from the Control Manager 6.0 console.
Hot Fix 2648
Issue: The Deep Discovery Endpoint Sensor mind map supports Microsoft Internet Explorer 9 browser but Control Manager 6.0 sets the browser compatibility to Internet Explorer 7. As a result, the "Advanced Threats Investigation" widget may not be able to display information correctly in Internet Explorer 9.
Hot Fix 2656
Issue: When you drill down on the Virus Detection widget, the information that appears under the “Other” category are inconsistent with the information in the summary count.
Hot Fix 2659
Issue: Users cannot install Control Manager 6.0 hot fixes successfully because the hot fix installation process cannot replace some files that are running at the time of installation.
Hot Fix 2660
Issue: This hot fix corrects the ServerProtect Information Server limit and prevents Control Manager 6.0 from showing the "Invalid managed product selection” warning under the scenario described above.
Hot Fix 2663
Issue: When users generate a report with multiple templates, the report may display duplicate contents across the different templates.
Hot Fix 2664
Issue: Control Manager 6.0 cannot import an Active Directory user account if the account name contains an exclamation point ‘!’.
Hot Fix 2665
Issue: Users encounter a timeout issue while searching for target computers in the "Specify Target(s)" field when creating policies.
Hot Fix 2666
Issue: The Log Generation Time information in all Alert type notifications are in the wrong time zone.
Hot Fix 2667
Issue: The Compromised Host field in the C&C Callback Information page and in the C&C Callback Events widget displays the computer's Loopback IP address instead of the compromised computer’s name or IP address.
Hot Fix 2668
Issue: Some custom report templates are product-specific but the corresponding template names and view names are not specific to any product.
Hot Fix 2670
Issue: C&C reports do not display any information but ad hoc queries for the same time periods return several results.
Hot Fix 2671
Issue: Control Manager 6.0 sends an "Unable to upload file" notification when it detects a virus file and cannot upload the file to the correct folder even when it has successfully performed the required action on the file. This happens because Control Manager 6.0 treats this scenario as a failed action result.
Hot Fix 2672
Issue: When users query Data Loss Prevention Incidents through the "DLP Incident Investigation" widget, the data count in the query results is not consistent with the data count in the "Ad Hoc Query > DLP Incident Information" page.
Hot Fix 2673
Issue: The Control Manager 6.0 report generation function allows users to add custom templates for collecting information about registered products. However, reports generated using custom templates may display incorrect information if certain columns contain null values.
Hot Fix 2675
Issue: An issue with a related SQL query prevents users from accessing drill down information in the Product Application Compliance widget.
Hot Fix 2676
Issue: An issue can prevent the data sync function from working properly between parent and child Control Managers. As a result, the total number of endpoints displayed in the console of some child Control Managers may not match the information on the parent Control Manager console.
Hot Fix 2678
Issue: The event notifications for C&C Callback Outbreak Alerts display time in the wrong format and time zone.
Hot Fix 2682
Issue: Users can configure Control Manager 6.0 to add specific types of event logs to syslog through the event setting pages. The information in the "Event time" field in these event logs is always in the UTC time zone. However, when users view the Ad Hoc Query page in data view, the corresponding event time information is in the local time zone.
Hot Fix 2688
Issue: When users delete a ServerProtect for Microsoft Windows NT Normal Server from the "Product" page and then add it back again, the status information for this Normal Server will no longer appear on the Control Manager console.
Hot Fix 2510
Enhancement: This hot fix enables Control Manager 6.0 to support items related to Deep Discovery Email Inspector 2.0 Service Pack 2.
- Two new Deep Discovery Email Inspector widgets:
- Email Messages with Advanced Threats
- Top Email Recipients of Advanced Threats
- Deep Discovery Email Inspector component download and deployment from Control Manager
- Single sign-on (SSO) from the Control Manager console
- Log queries for the following three logs on Control Manager
- Status logs
- Content Security logs
- Blacklist/Suspicious Object logs
- Reporting on Control Manager
- Alerts for the following two events on Control Manager:
- Email Messages with Advanced Threats
- Advanced Threat Sent to Recipient in Watchlist
Hot Fix 2524
Enhancement: This hot fix enables Control Manager to automatically delete all Active Directory Users information from the computer once the Active Directory synchronization function is disabled. This enhancement can help prevent issues in computers connected to a network that is protected by certain privacy policies.
Hot Fix 2525
Enhancement 1: This hot fix allows users to filter "Synchronize OfficeScan clients and domains" command tracking logs in ad hoc queries and in the command tracking filter.
Enhancement 2: This hot fix adds the "Infected File" and "File Path" information to the following syslog event notifications:
- Special virus alert
- Special spyware/grayware alert
- Virus found - first action unsuccessful and second
- Action unavailable
- Virus found - first and second actions unsuccessful
- Virus found - first action successful
- Virus found - second action successful
- Spyware/Grayware found - action successful
- Spyware/Grayware found - further action required
Enhancement 3: This hot fix enables users to update the Protocol Information Extraction Pattern through Control Manager 6.0.
Hot Fix 2532
Enhancement: This hot fix enables Control Manager 6.0 to connect to an SQL server using a valid account name and/or password that contains a double quote (") character.
Hot Fix 2536
Enhancement: Control Manager 6.0 can only send summary reports of all Data Loss Prevention incidents in directly managed accounts to the DLP Compliance Officer. This hot fix adds the "Incidents from all managed users" option in the DLP notification settings page of the Control Manager 6.0 console. When enabled, this option allows Control Manager 6.0 to send summary reports of all Data Loss Prevention incidents in all managed users to the DLP Compliance Officer.
Hot Fix 2537
Enhancement: This hot fix enables ad hoc queries and reports to display the end-point pattern update status of patterns that are one version older than the latest version as "1 version old" instead of just "Out-of-date".
Hot Fix 2538
Enhancement: This hot fix enables Control Manager 6.0 to add "User Justification Reason" information in Data Loss Prevention (DLP) logs.
Hot Fix 2541
Enhancement: This hot fix enables the "Threat detection" widget to classify virus logs with unsuccessful second action results as "Unsuccessful" instead of classifying these under the "Other" category.
Hot Fix 2542
Enhancement: This hot fix adds the following new options to the Database Cleanup Tool "Cleanup Tasks" setting:
- Excess status log data
This option allows users to manually clean status log journal tables.
- Shrink Database
This option shrinks the database.
Both these options can help keep the database size manageable.
Hot Fix 2543
Enhancement: This hot fix enables users to add a column for the active directory (AD) user display name information in Data Loss Prevention (DLP) incident logs. This ensures that the information appears on the DLP Incident Investigation widget and in DLP notification summary reports on Control Manager 6.0.
Hot Fix 2548
Enhancement: This hot fix enables the policy management page to filter OfficeScan clients in multiple IP ranges or multiple OS types simultaneously and allows users to specify up to 20 different IP ranges at a time.
Hot Fix 2549
Enhancement: This hot fix enables Control Manager 6.0 to display the first level domain information of OfficeScan clients that belong to a registered OfficeScan server. Users will see the information under the new "Domain" column when they view the "Ad Hoc Query > Detailed Virus/Malware Information" page in data view mode and will be able to add this information to custom report templates.
Hot Fix 2558
Enhancement: This hot fix supports the pattern "Threat Encyclopedia Information Pattern" for TMCM to display the rating information of threat detections when users drill down in "Threat Detection Results" widget.
Hot Fix 2562
Enhancement: This hot fix adds a "Destination" column in iDLP violation logs in Control Manager 6.0. This new column displays the intended destination path of files that contain digital assets.
Hot Fix 2564
Enhancement: This hot fix enables Control Manager 6.0 to support Intrusion Prevention Logs (DPI) for Deep Security Manager 9.5 Service Pack 1 and Vulnerability Protection 2.0 Service Pack 1.
Hot Fix 2567
Enhancement: This hot fix enables Control Manager 6.0 to support logs from Vulnerability Protection and Deep Security Manager in the following ad hoc queries:
- Intrusion Prevention Information
- Integrity Monitoring Information
Hot Fix 2568
Enhancement: This hot fix enables Control Manager 5.5 to support the Virus Scan Engine (Linux 64-bit) component for ServerProtect for Linux.
Hot Fix 2571
Enhancement: This hot fix enables Control Manager 6.0 to support the InterScan Messaging Security Virtual Appliance (IMSVA) 9.0 DLP policy template and older IMSVA DLP policy template versions.
Hot Fix 2584
Enhancement: This hot fix enables Control Manager 6.0 to support the new expression validator "China Bank Account" in the DLP Data Identifiers page of the Control Manager console.
Enhancement: This hot fix adds the DataExportTool in Control Manager 6.0. This tool allows users to configure Control Manager 6.0 to send syslogs to the syslog server regularly.
Enhancement 1: This hot fix enables Control Manager 6.0 to support the following items related to Trend Micro:
- Vulnerability Protection 2.0 Service Pack 1:
- new "Vulnerability Protection Vulnerable Endpoints"widget
- new "Intrusion Prevention Information" view for
- ad hoc query for Intrusion Prevention logs
- Complete User Protection (CUP) integration:
- New category in Inventory view: Intrusion
- Prevention Event
- License Management
- SSO from Managed Servers
- Heart beat
Enhancement 2: This hot fix enables Control Manager 6.0 to support Intrusion Prevention logs and Intrusion Prevention Information ad hoc queries from Deep Security Manager 9.5 Service Pack 1.
Hot Fix 2617
Enhancement: This hot fix enhances the Control Manager 6.0 Service Pack 2 performance in processing and displaying "Pattern/Rule Status" ad hoc query results.
Hot Fix 2619
Enhancement: This hot fix enables Control Manager 6.0 to add the user name and domain information in the user information field of syslog notifications for spyware logs that do not contain any other user information.
Hot Fix 2625
Enhancement: This hot fix allows users to configure Control Manager 6.0 to send email notifications to users under the "Unexpected_Event" group if it encounters looping management relations while it synchronizes data with the Active Directory server.
This hot fix also enables Control Manager 6.0 to keep records of these events. Users can view these logs by switching to Ad Hoc Query view in the "Product Information > Control Manager Information > Control Manager Event Information" query results.
Hot Fix 2627
Enhancement 1: This hot fix makes the following changes related to Endpoint Encryption on Control Manager 6.0:
- Simplifies Active Directory integration
- Adds authentication checks across multiple OUs
- Enhances policy deployment performance
- Enhances user password validation process
Hot Fix 2627
Enhancement 2: This hot fix enables the Control Manager server to deploy the list of approved USB devices of the Device Control Settings to the OfficeScan server.
Hot Fix 2628
Enhancement: This hot fix enables Control Manager 6.0 Service Pack 2 to add the following information to Pattern/Rule Status ad hoc query results:
- operating system name
- domain name
- update agent name
Hot Fix 2629
Enhancement: This hot fix moves the configuration file related to the 90-day setting of some dashboard widgets from the scope of pool updates. This change ensures that the setting does not roll back by mistake during a widget pool update.
Hot Fix 2630
Enhancement: This hot fix adds a new event type "Managed product unreachable" under the "Unusual" event category in the "Administration > Event Center" page of the Control Manager console. When this new option is selected, users will be able to configure Control Manager 6.0 to send email notifications to a list of recipients if it cannot establish a connection with a registered product.
Hot Fix 2635
Enhancement: This hot fix enables Control Manager 6.0 to support two new events for the Control Manager Syslog Forwarder Tool (DataExportTool.exe).
- Behavior Monitoring
- Device Access Control
Hot Fix 2636
Enhancement: This hot fix renames the "Tree Path" criteria under "Pattern/Rule Status" in the ad hoc query page and policy setting page of the Control Manager 6.0 console to "OfficeScan domain hierarchy".
Hot Fix 2642
Enhancement: Control Manager 6.0 allows users to query Product Auditing Event Logs in the "AdHocQuery > Product Information > Managed Product Information" page. This hot fix adds this data view to the "Reports > Custom Templates" page to enable users to view Product Auditing Event Logs from the page.
Hot Fix 2643
Enhancement: This hot fix enables Control Manager 6.0 to support the following components:
- Deep Discovery Malware Pattern
- Deep Discovery Memory Inspection Pattern
Hot Fix 2649
Enhancement: This hot fix allows users to switch the display format of the "Product Connection Status" widget back to the old format which provides an overview of all products under "Active", "Abnormal", and "Inactive" status.
Hot Fix 2655
Enhancement: This hot fix enables Control Manager 6.0 to display the name of accessed processes in Personal Firewall Logs. Users can view this information by launching aC&C Callback Information query in the "AdHocQuery > Security Threat Information > Overall Threat Information" page and viewing the results in dataview.
Hot Fix 2657
Enhancement: This hot fix adds the "Destination" field on the "DLP Incident Investigation > Incident Information > Incident Details" widget page. This new column displays the intended destination path of files that contain digital assets.
Hot Fix 2658
Enhancement 1: This hot fix enables Control Manager 6.0 to support the following two new events for the Control Manager Syslog Forwarder Tool (DataExportTool.exe):
- Pattern Update Status
- Engine Update Status
Enhancement 2: For consistency with the information from the Control Manager Syslog Forwarder Tool, this hot fix also enables Control Manager 6.0 to display either"Up-to-date" or "Out-of-date" in the "Engine Status" field on the "AdHocQuery > Engine Status" page in data view instead of displaying "N/A" when the engine file is up-to-date.
Hot Fix 2662
Enhancement: This hot fix enables Control Manager 6.0 to support the Vulnerability Protection Rule Update component for Vulnerability Protection 2.0.
Hot Fix 2674
Enhancement: This hot fix adds the "OfficeScan Domain Hierarchy" column in the "Ad Hoc Query > Detailed Virus/Malware Information" page to display the domain tree path of OfficeScan clients.