Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Important Information for Trend Micro Solutions and Microsoft January 2018 Security Updates (Meltdown and Spectre)

    • Updated:
    • 29 Aug 2018
    • Product/Version:
    • Deep Security 10.All
    • Deep Security 9.0
    • Deep Security 9.5
    • Deep Security 9.6
    • Deep Security as a Service All.All
    • IM Security 1.6
    • OfficeScan 11.All
    • OfficeScan as a Service All.All
    • OfficeScan XG.All
    • PortalProtect 2.1
    • PortalProtect 2.5
    • ServerProtect for EMC Celerra 5.8
    • ServerProtect for Microsoft Windows/Novell Netware 5.8
    • ServerProtect for Network Appliance Filer 5.8
    • ServerProtect for Storage 6.0
    • Trend Micro Endpoint Sensor 1.6
    • Worry-Free Business Security Services 6.3
    • Worry-Free Business Security Standard/Advanced 9.All
    • Platform:
    • Windows 10
    • Windows 2008 32-Bit
    • Windows 2008 64-Bit
    • Windows 2008 Datacenter
    • Windows 2008 Datacenter 64-bit
    • Windows 2008 Enterprise
    • Windows 2008 Enterprise 64-bit
    • Windows 2008 Essential Business Server
    • Windows 2008 Server Core
    • Windows 2008 Server Foundation
    • Windows 2008 Server R2
    • Windows 2008 Server R2 Datacenter
    • Windows 2008 Server R2 Enterprise
    • Windows 2008 Server R2 with Hyper-V(TM)
    • Windows 2008 Small Business Server
    • Windows 2008 Standard
    • Windows 2008 Standard 64-bit
    • Windows 2011 Small Business Server Essentials
    • Windows 2011 Small Business Server Standard
    • Windows 2012
    • Windows 2012 Datacenter
    • Windows 2012 Datacenter R2
    • Windows 2012 Enterprise
    • Windows 2012 Enterprise R2
    • Windows 2012 Server Essential R2
    • Windows 2012 Server Essentials
    • Windows 2012 Server Foundation R2
    • Windows 2012 Server R2
    • Windows 2012 Standard
    • Windows 2012 Standard R2
    • Windows 2016
    • Windows 2016 Server Core
    • Windows 2016 Server Datacenter
    • Windows 2016 Server Standard
    • Windows 7 32-Bit
    • Windows 7 64-Bit
    • Windows 8 32-Bit
    • Windows 8 64-Bit
    • Windows 8.1 32-Bit
    • Windows 8.1 64-Bit
    • Windows Server 2012 32-Bit
    • Windows Server 2012 64-Bit
Summary
Last updated: August 28, 2018
Information has recently been released about a set of vulnerabilities commonly referred to as Meltdown and Spectre that could be exploited at a hardware (CPU) layer on multiple operating systems including Microsoft Windows, Linux, and Apple macOS.  
There are a few important pieces to note for Trend Micro customers:
  • These are not vulnerabilities in Trend Micro products.
  • Microsoft began issuing out-of-band security patches starting on January 3, 2018 for Windows platforms, and is requiring its customers to check compatibility with anti-malware products before installing this patch.
  • Trend Micro's endpoint and security products listed below are compatible with Microsoft's January 2018 security patches.
  • It is highly recommended that customers test any patch or solution mentioned in a non-production environment first before a wider deployment.
  • At this time, there are no known in-the-wild exploits of either the Meltdown or Spectre vulnerabilities; however, there is a POC remote exploit for Spectre.  Trend Micro has released some out-of-band protection updates for this.

Please read further for more information.

 

 
Looking for information on consumer Trend Micro Security products? Please click here for more information.
Details
Public

On January 3, 2018, Microsoft began to release its monthly Security Bulletin early for some platforms due to newly revealed CPU security flaws - commonly referred to as "Meltdown" and "Spectre". Microsoft's January 2018 patches implement new requirements (KB4072699) to target the delivery of the patches and to ensure that security and anti-malware software is compatible. 

 
UPDATE - Microsoft has revised and/or removed some of the earlier reported requirements for security patches (such as a previous REGKEY) in KB4072699 above. The remainder of this article has been updated to reflect the updated guidance.

Microsoft has requested that security vendors verify product compatibility with this new patch, and Trend Micro commercial endpoint and server security products - including Trend Micro OfficeScan, Worry-Free Business Security, and Deep Security - are affected by these new Microsoft requirements. Our compatibility testing is underway and the latest information can be found below.

Compatibility Testing

As part of our regular process, Trend Micro's product development team conducts pre-release compatibility testing with Microsoft security releases to try prevent major issues. Due to the early emergency deployment of Microsoft's patch beginning on January 3, Trend Micro's complete compatibility testing was not finalized on day zero. However, Trend Micro has completed testing on the endpoint and server security products listed below and will continue to update this article as necessary.

ProductTested Version(s)Platform
OfficeScan11.0 and aboveWindows
Worry-Free Business Security Standard/Advanced9.0 and aboveWindows
Worry-Free Business Security Services6.2 and aboveWindows
ServerProtect for Storage6.0Windows
ServerProtect for Microsoft Windows (SPNT)5.8Windows
ServerProtect for EMC Celerra (SPEMC)5.8Windows/EMC
ServerProtect for Network Appliance Filers (SPNAF)5.8Windows/NAF
Deep Security (Agent and Virtual Appliance)9.0, 9.5, 9.6, 10.0 and aboveWindows
Trend Micro Vulnerability Protection2.0Windows
Trend Micro Endpoint Sensor1.6Windows
Trend Micro IM Security1.6 and 1.6.5Windows
PortalProtect for SharePoint2.1, 2.1 R2 and 2.5Windows
Control Manager7.0Windows
Trend Micro ScanMail for Exchange12.0, 12.5*Windows

* Please note that even though that Trend Micro ScanMail for Exchange is a messaging security product, Trend Micro did find some initial incompatibility with the January 3rd patches after testing.  Microsoft identified the issue on their end and has released some updates to resolve this.  Please see article Trend Micro KB article 1119222 for more information.

 

Non-Microsoft Solution Compatibility

As Microsoft products are not the only ones affected by Meltdown and Spectre, Trend Micro has information on other solutions and platforms such as Apple macOS and Linux. Below are some links to specific information on compatibility of Trend Micro products with non-Microsoft operating systems:

Trend Micro Protection

As of now, there are no current known in-the-wild exploits of the Spectre and Meltdown vulnerabilities. However, there have been some proof of concept (POC) ones shared in the community which highlight some theoretical remote attacks using Spectre. Trend Micro has proactively released the following out-of-band updates:

  • Trend Micro TippingPoint - Digtal Vaccine #DV9051
  • Trend Micro Deep Security & Vulnerability Protection - DSRU18-003

External Reference(s)

Trend Micro Blogs

Microsoft Information

Other 3rd Party Information

Premium
Internal
Rating:
Category:
Update
Solution Id:
1119183
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.