~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: Patch 1 enables users to configure the ServerProtect agent to use "SLF_TMASSA" instead of "SLF_SpywareVersion" in status logs that it sends to the Control Manager server. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Procedure 5: To configure the ServerProtect agent to use "SLF_TMASSA" in status logs that it sends to the Control Manager Server, create the following key and set its value to "1": Path: HKEY_LOCAL_MACHINE\SOFTWARE\TrendMicro\ TrendMicro Control Manager Agent\SPNT Key: EnableTMASSA Type: DWORD Value: "0", use "SLF_SpywareVersion" "1", use "SLF_TMASSA" --------------------------------------------------------------------- Issue 6 : After users configure a filer into the Filer List of a Normal Server and restart the Normal Server, "SpntSvc.exe" takes up 100% of the CPU resources. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 6 : Patch 1 resolves this issue by improving the thread that sends scan results to the filers. --------------------------------------------------------------------- Issue 7: Sometimes, some unreadable characters are inserted in the message body of SMTP notification email messages. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 7: Patch 1 solves the issue by converting the message body of SMTP notification email messages from Shift-JIS format to JIS format. --------------------------------------------------------------------- Issue 8: "System error 1067" occurs when a Trend Micro ServerProtect service stops. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 8: Patch 1 resolves this issue by fixing a problem when ServerProtect accesses a global variable while the ServerProtect service stops. ---------------------------------------------------------------------- Issue 9: ServerProtect 5.8 is unable to update the spyware pattern file from version 0.9xx.00 to 1.xxx.00, or higher. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 9: After installing this critical patch, ServerProtect 5.8 can update the spyware pattern from version 0.9xx.00 to 1.xxx.00 or higher. --------------------------------------------------------------------- Issue10 : When Version 5.8 of ServerProtect for Network Appliance Filers scans files, the "SpntSvc.exe" program may crash, triggering an "exception(0XC0000005)" error. This happens because "SpntSvc.exe" breaks the heap memory when it runs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution10: Patch 1 resolves the problem by changing how heap memory is released by the "eng50.dll" file. --------------------------------------------------------------------- Issue 11: A vulnerability in the "mrf.exe" module of the Trend Micro Infrastructure (TMI) service may allow an attacker to execute arbitrary codes on vulnerable installations of CMAgent. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 11: Patch 1 addresses the vulnerability to prevent malicious attacks. 3. Documentation Set ======================================================================== In addition to this readme.txt, the documentation set for this product includes the following: o Readme.txt -- version enhancements, basic installation, known issues, and release history o Electronic versions of the printed manuals are available at: http://www.trendmicro.com/download/ o Online help -- Context-sensitive help screens that provide guidance for performing a task. o Knowledge Base -- a searchable database of known product issues, including specific problem-solving and troubleshooting topics. http://esupport.trendmicro.com 4. System Requirements ======================================================================== No changes from system requirements in product readme. 5. Installation/Uninstallation ======================================================================== 5.1 Installation ===================================================================== To apply this package from the same computer as the Information Server: 1. Close the management console. If this is not running at the time of installation, proceed with the next step. 2. Copy the "spnaf_580_win_en_patch1.exe" patch installation file to a temporary folder. 3. Run the patch file. The license screen appears. 4. If you disagree with the terms of the legal agreement, choose the "I do not agree with the terms of the legal agreement." option and click "Cancel" to abort the installation. Otherwise, choose the "I accept the terms of the legal agreement" and click "Next". The "readme" appears. 5. Read the contents of the readme carefully and click "Install". The Information Server deploys the patch to Normal Servers 30 seconds after the installation is completed and restarts the ServerProtect services. Note: If the installation does not complete successfully, contact Trend Micro technical support. To apply this patch to a management console that is not associated with the computer hosting the Information Server: 1. Apply the patch to the Information Server. 2. Close the management console. 3. Go to the management console home directory and backup the "admin.exe" and "spuninst.exe" files to another location. 4. In the Information Server, find the Information Server home directory, copy the "admin.exe" and "spuninst.exe" files to overwrite the local files under the management console home directory. 5.2 Uninstallation ===================================================================== To roll back to the previous build: To roll back the Normal Server to its previous build: 1. Run the following shell commands to stop all ServerProtect services: net stop spntsvc net stop earthagent net stop "TrendMicro Infrastructure" 2. Rename the backup files in the ServerProtect home directory and use them to replace the current files. The names of the backup files have "bak" in the extension. 3. Run the following commands to start the ServerProtect services: net start spntsvc net start earthagent net start "TrendMicro Infrastructure" Note: The "TrendMicro Infrastructure" refers to the CMAgent Service. You only need to issue the 'net end/start "TrendMicro Infrastructure"' command if this service is installed. To roll back the Information Servers and management console to the previous build: 1. Close the management console. If it is not running at this time, proceed to the next step. 2. Stop the Information Server. 3. Copy the backup files from the "is_backup/filegroup10" folder in the ServerProtect home directory to the ServerProtect home directory. 4. Start the Information Server. To roll back the Trend Control Manager Agent and Infrastructure Service to its previous build: 1. Stop the Information Server. 2. Stop "TrendMicro Infrastructure". 3. Copy the backup files from the "is_backup/filegroup100" folder (found under the ServerProtect home directory) to the main ServerProtect home directory. For example, you can find the main ServerProtect home directory at "C:\Program Files\Trend\SProtect\". 4. Open the Trend Micro Management Infrastructure (TMI) folder and copy the backup files from the "backup" folder (found under the TMI home directory) to the main TMI home directory. For example, you can find the main TMI home directory at "C:\Program files\Trend\Common\TMI\Backup". 5. Start the Information Server. 6. Start "TrendMicro Infrastructure". 6. Post-installation Configuration ======================================================================== No post-installation steps are required. Note: Trend Micro recommends that you update your scan engine and virus pattern files immediately after installing the product. 7. Known Issues ======================================================================== The following is a known issue in this release: 7.1 The Anti-Rootkit driver may not be installed successfully if users do not restart the computer after a Microsoft(TM) Windows(TM) update. ===================================================================== To resolve this issue, users need to restart the computer after a Microsoft Windows update. This allows a successful Anti-Rootkit driver installation. 8. Release History ======================================================================== Previous releases include the following: - ServerProtect 5.8 for Network Appliance Filers general release March 24, 2011 9. Files Included in this Release ======================================================================== Module Filename Build No. --------------------------------------------------------------------- Control Manager Agent libEN_Product.dll 5.80.0.1086 Information Server StRpcCln.dll 5.80.0.1086 Earthagent.exe 5.80.0.1086 32-bit Normal Server StRpcSrv.dll 5.80.0.1086 StUpdate.exe 5.80.0.1086 NtApRPC.dll 5.80.0.1086 eng50.dll 5.80.0.1086 notification.dll 5.80.0.1086 StRpcCln.dll 5.80.0.1086 64-bit Normal Server StRpcSrv.dll 5.80.0.1086 StUpdate.exe 5.80.0.1086 NtApRPC.dll 5.80.0.1086 eng50.dll 5.80.0.1086 Notification.dll 5.80.0.1086 StRpcCln.dll 5.80.0.1086 Control Manager Agent libEN_Product.dll 5.80.0.1086 libMRF_AP.dll 1.12.0.1156 libMRF_CM.dll 1.12.0.1156 libMRF_Common.dll 1.12.0.1156 libMRF_DM.dll 1.12.0.1156 libMRF_Entity.dll 1.12.0.1156 libTMI_DataMarshal.dll 1.12.0.1156 mrf.exe 1.12.0.1156 MRF_CM.dll 1.12.0.1156 Normal Server Hot Fix File Hotfix.ini n/a Patch files Tmpatch.exe 2.0.0.1022 readme.txt n/a license.txt n/a 10. Contact Information ======================================================================== A license to the Trend Micro software usually includes the right to product updates, pattern file updates, and basic technical support for one (1) year from the date of purchase only. After the first year, Maintenance must be renewed on an annual basis at Trend Micro's then-current Maintenance fees. You can contact Trend Micro via fax, phone, and email, or visit us at: http://www.trendmicro.com Evaluation copies of Trend Micro products can be downloaded from our Web site. Global Mailing Address/Telephone Numbers ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ For global contact information in the Asia/Pacific region, Australia and New Zealand, Europe, Latin America, and Canada, refer to: http://www.trendmicro.com/en/about/overview.htm The Trend Micro "About Us" screen displays. Click the appropriate link in the "Contact Us" section of the screen. Note: This information is subject to change without notice. 11. About Trend Micro ======================================================================== Trend Micro Incorporated, a global leader in Internet content security and threat management, aims to create a world safe for the exchange of digital information for businesses and consumers. A pioneer in server-based antivirus with over 20 years experience, we deliver top-ranked security that fits our customers'needs, stops new threats faster, and protects data in physical, virtualized and cloud environments. Powered by the Trend Micro Smart Protection Network(TM) infrastructure, our industry-leading cloud-computing security technology and products stop threats where they emerge, on the Internet, and are supported by 1,000+ threat intelligence experts around the globe. For additional information, visit www.trendmicro.com. Copyright 2011, Trend Micro Incorporated. All rights reserved. Trend Micro, the t-ball logo, Smart Protection Network, Control Manager, and ServerProtect are trademarks of Trend Micro Incorporated and are registered in some jurisdictions. All other marks are the trademarks or registered trademarks of their respective companies. 12. License Agreement ======================================================================== Information about your license agreement with Trend Micro can be viewed at: http://www.trendmicro.com/en/purchase/license/ Third-party licensing agreements can be viewed: - By selecting the "About" option in the application user interface - By referring to the "Legal" page of the Getting Started Guide or Administrator's Guide