<> Trend Micro Incorporated February 17, 2017 ====================================================================== Trend Micro(TM) Control Manager(TM) 6.0 Hotfix - Build 3506 ====================================================================== NOTICE: Trend Micro developed this hotfix as a workaround or solution to a problem reported by customers. As such, this hotfix has received limited testing and has not been certified as an official product update. Consequently, THIS HOTFIX IS PROVIDED "AS IS". TREND MICRO MAKES NO WARRANTY OR PROMISE ABOUT THE OPERATION OR PERFORMANCE OF THIS HOTFIX NOR DOES TREND MICRO WARRANT THIS HOTFIX AS ERROR FREE. TO THE FULLEST EXTENT PERMITTED BY LAW, TREND MICRO DISCLAIMS ALL IMPLIED AND STATUTORY WARRANTIES, INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY, NONINFRINGEMENT AND FITNESS FOR A PARTICULAR PURPOSE. Contents ========================================================== 1. Hotfix Release Information 1.1 Resolved Known Issues 1.2 Enhancements 1.3 Files Included in This Release 2. Documentation Set 3. System Requirements 4. Installation 4.1 Installing 4.2 Uninstalling 5. Post-installation Configuration 6. Known Issues 7. Release History 7.1 Prior Hotfixes 8. Contact Information 9. About Trend Micro 10. License Agreement ========================================================== 1. Hotfix Release Information ====================================================================== After installing this hotfix, Control Manager delivers the correct suspicious object Web API address to the Trend Micro product after completing the registration. 1.1 Resolved Known Issues =================================================================== The following issue is included in this hotfix: Issue: There are directory traversal, information disclosure and XML External Entity (XXE) Processing vulnerabilities found in Report feature. Solution 1: This hotfix resolves these vulnerabilities. 1.2 Enhancements =================================================================== There are no enhancements for this hotfix release. 1.3 Files Included in this Release =================================================================== A. Files for Current Issue ------------------------------------------------------------------- Module Filename Build No. ================ ========= \FileGroup46\ WebUI\WebApp\App_Code\Reports\ ReportHttpHandler.cs n/a WebUI\WebApp\Bin\ ReportUtility.dll 6.0.0.3509 B. Files for Previous Issues ------------------------------------------------------------------- Module Filename Build No. ================ ========= \FileGroup1\ MSSQL\ sp_WSI_UpdateServerStatus.sql n/a \FileGroup2\ WebUI\WebApp\Administration\ adim_LogMaintainenceItemCtrl.ascx n/a adim_LogMaintainenceItemCtrl.ascx.cs n/a admin_LogMaintainence.aspx n/a admin_LogMaintainence.aspx.cs n/a WebUI\WebApp\Administration\App_LocalResources\ admin_LogMaintainence.aspx.resx n/a WebUI\WebApp\App_Data\ LogMaintainenseCfg.xml n/a WebUI\WebApp\Bin\ LogMaintainenceCfgWrapper.NET.dll 6.0.0.3404 \FileGroup3\ MSSQL\ v_BehaviorMonitor.sql n/a \FileGroup4\ WebUI\WebApp\AdHocQuery\ AdHocQuery_Result.aspx n/a \FileGroup5\ MSSQL\ fn_TMCMWF_PolicyResult.sql n/a sp_Policy_GetPolicyList.sql n/a V_PolicyInfo.sql n/a \FileGroup6\ UI\en\script\ cm_utility.js n/a \FileGroup7\ MSSQL\ sp_RecognizeUserGuid.sql n/a \FileGroup8\ DMServer.exe 6.0.0.3413 \FileGroup9\ WFReporting.NET.dll 6.0.0.3416 \FileGroup10\ MSSQL\ fn_UI_SummaryToExport.sql n/a \FileGroup11\ PolicyDatabaseWrapper.dll 6.0.0.3424 WebUI\cgi-bin\ cgiReverseProxy.dll 6.0.0.3424 WebUI\WebApp\ProductTree\ ProductTree.aspx.cs n/a \FileGroup12\ MSSQL\ fn_RansomwareRuleTable.sql n/a WebUI\WebApp\ProductTree\ ProductTree_SSO_Intermediate.htm n/a \FileGroup13\ WebUI\WebApp\Bin\ ReportFactory.dll 6.0.0.3424 \FileGroup14\ LogForwarder.exe 6.0.0.3427 LogForwarder.exe.config n/a LogForwarder\ events.ini n/a LogForwarder\scripts\ Predictive_Machine_Learning.sql n/a \FileGroup15\ IISCfg.exe 6.0.0.3424 Certificate\ openssl.cnf n/a openssl_ca.bat n/a \FileGroup16\ MSSQL\ fn_DDEI_Report_SuspiciousObjURL.sql n/a \FileGroup17\ WebUI\WebApp\ProductTree\ ProductTree_SSO_Intermediate.htm n/a \FileGroup18\ WebUI\WebApp\App_Code\ CasLogDirectInsertHandler.cs n/a WebUI\WebApp\App_Code\RestfulHandler\ DigitalSignatureController.cs n/a \FileGroup19\ casHandlerChildCMStatus.dll 6.0.0.3436 ccgiEventNotificationSetting.dll 6.0.0.3436 cmdHandlerEventFilter.dll 6.0.0.3436 cmdHandlerOutbreak.dll 6.0.0.3436 cmdHandlerRedAlertNotify.dll 6.0.0.3436 cmdHandlerSpecialVirus.dll 6.0.0.3436 ProcessManager.exe 6.0.0.3436 Schema_60_3431_HF.xml n/a MSSQL\ sp_CasInsertAlertNtfJobList.sql n/a sp_CnC_ContactAlertNotification.sql n/a sp_CnC_ContactOutbreakAlertNotification.sql n/a sp_DDEI_ThreatEmailMessageNotification.sql n/a sp_DDEI_ThreatSentToWatchlistNotification.sql n/a sp_DDI_CorrelatedIncidentsNotification.sql n/a sp_DDI_HighRiskDetectionNotification.sql n/a sp_DDI_KnownAttackDetectionNotification.sql n/a sp_DDI_PotentialExploitFoundNotification.sql n/a sp_DDI_SHA1DenyDetectionNotification.sql n/a sp_DDI_StealthProgramsFoundNotification.sql n/a sp_DDI_WormsVirusPropagationFoundNotification.sql n/a sp_InsertAlertNtfJob.sql n/a sp_NetworkVirusAlertProcessing.sql n/a sp_SecurityLogNotification.sql n/a sp_SpecialSpywareAlertProcessing.sql n/a sp_SpecialVirusAlertProcessing.sql n/a sp_SpywareFurtherActionNotification.sql n/a sp_VirusAlert_1stFailure.sql n/a sp_VirusAlert_1stSuccess.sql n/a sp_VirusAlert_2ndFailure.sql n/a sp_VirusAlert_2ndSuccess.sql n/a sp_VirusOutbreakAlertProcessing.sql n/a sp_WebSecurityNotification.sql n/a \FileGroup20\ ActiveUpdateInfo.xml n/a MSSQL\ fn_UI_GetPatternVersionFormat.sql n/a ProductClass\SLF_PRODUCT_TVCS\ IDMapping.xml n/a StringTable.xml n/a \FileGroup21\ RestfulServiceUtility.NET.dll 6.0.0.3438 Schema_60_3433_HF.xml n/a MSSQL\ fn_CheckUpperBound_Exception.sql n/a fn_IsURLMatchSOWildcardUrl.sql n/a fn_SOGetMatchingWildcardExceptions.sql n/a fn_UI_QueryBlacklistInfo.sql n/a sp_AddNewSODefinition.sql n/a sp_CleanTempTable_ForWhitelistDist.sql n/a sp_DeleteSODefinition.sql n/a sp_GetSOExceptionList.sql n/a sp_GetSOExceptionList_ForWhitelistDist.sql n/a sp_MergeExceptionSO.sql n/a sp_SwitchView_ForWhitelistDist.sql n/a sp_UpdateBlacklist.sql n/a sp_UpdateBlackList_CheckAndPurgeAutoAddedExceptions.sql n/a sp_UpdateBlacklist_ForSoDist.sql n/a sp_UpdateBlackList_HandleSoFromHub.sql n/a sp_UpdateBlackList_MergeWhitelistFromHub.sql n/a sp_UpdateBlackList_RemoveNoLongerMatchingAutoAddedExceptions.sql n/a sp_UpdateBlackList_UpdateVASOAgainstWildcardExceptions.sql n/a stmt_ResetVASOWildcardExceptionRelatedColumns.sql n/a v_ExportBlacklistInfo.sql n/a v_WhitelistForSoDist_New.sql n/a v_WhitelistForSoDist_Old.sql n/a SuspiciousObjectExporter\ SuspiciousObjectExporter.exe 6.0.0.3438 WebUI\WebApp\AdHocQuery\ AdHocQueryExportProcessing.aspx.cs n/a WebUI\WebApp\bin\ RestfulServiceUtility.NET.dll 6.0.0.3438 WebUI\WebApp\html\suspiciousObjects\js\ suspiciousObjectList.js n/a \FileGroup22\ DbAccessWrapper.NET.dll 6.0.0.3438 DDMRestfulServiceUtility.NET.dll 6.0.0.3438 DnDns.dll 6.0.0.3438 IPAddressRange.dll 6.0.0.3438 LogProcessor.exe 6.0.0.3438 WhoIsClient.dll 6.0.0.3438 MSSQL\ sp_DDM_MailDetectionViewDetail.sql n/a sp_DDM_MailDetectionView_SmartSearchV2.sql n/a sp_DDM_QueryCustomizeColumnsSetting.sql n/a sp_DDM_QuerySNAPInfo.sql n/a sp_DDM_WebDetectionView_SmartSearchV2.sql n/a WebUI\WebApp\App_Code\RestfulHandler\DDM\ DDMResourceController.cs n/a WebUI\WebApp\App_Data\DDM\ emaildetectionview.json n/a webdetectionview.json n/a WebUI\WebApp\Bin\ DDMRestfulServiceUtility.NET.dll 6.0.0.3438 WebUI\WebApp\html\DDM\ emaildetectionview2.html n/a ignorerule.html n/a webdetectionview2.html n/a WebUI\WebApp\html\DDM\js\bundle\ edv2.js n/a es5-sham.min.js n/a es5-shim.min.js n/a ignorerule.js n/a vender.bundle.js n/a wdv2.js n/a \FileGroup23\ ccgiCommandTracking.dll 6.0.0.3451 ccgiEventNotificationSetting.dll 6.0.0.3451 ccgiRedAlert.dll 6.0.0.3451 ccgiUserGroupSetting.dll 6.0.0.3451 cmdHandlerUpdate.dll 6.0.0.3451 cmdReportMonitorThread.dll 6.0.0.3451 WebUI\WebApp\App_Code\ BasePageSessionExpire.cs n/a \FileGroup24\ DMServer.exe 6.0.0.3451 \FileGroup25\ MSSQL\ v_Virus_HTTPFTPDetail.sql n/a v_Virus_MailDetail.sql n/a v_Virus_NetworkDetail.sql n/a \FileGroup26\ MSSQL\ fn_RansomwareRuleTable.sql n/a \FileGroup27\ WebUI\WebApp\Bin\ WebAPICryptographyUtility.NET.dll 6.0.0.3456 \FileGroup28\ LogForwarder.exe.config n/a LogForwarder\scripts\ Predictive_Machine_Learning.sql n/a MSSQL\ v_MachineLearning_Detail.sql n/a \FileGroup29\ ProductClass\SLF_PRODUCT_TVCS\ StringTable.xml n/a WebUI\WebApp\App_Data\ UIMeta.xml n/a \FileGroup30\ ActiveUpdateInfo.xml n/a ProductClass\SLF_PRODUCT_TVCS\ IDMapping.xml n/a StringTable.xml n/a WebUI\WebApp\App_Data\ ActiveUpdateInfo.xml n/a \FileGroup31\ WebUI\WebApp\ WF_SessionCheck.aspx.cs n/a \FileGroup32\ LogForwarder.exe.config n/a LogForwarder\scripts\ Predictive_Machine_Learning.sql n/a MSSQL\ v_MachineLearning_Detail.sql n/a \FileGroup33\ MSSQL\ stmt_AddPolicySupport_TMEAC_TMES.sql n/a \FileGroup34\ casHandlerLog.dll 6.0.0.3465 Schema_60_3447_HF.xml n/a WebUI\WebApp\App_Code\ CasLogDirectInsertHandler.cs n/a \FileGroup35\ Schema_60_3448_HF.xml n/a MSSQL\ sp_Policy_CreatePolicyDetailTasks.sql n/a \FileGroup36\ ActiveUpdateInfo.xml n/a cgiHandlerManualDownload.dll 6.0.0.3479 cgiHandlerScheduleDownload.dll 6.0.0.3479 cmdHandlerHookActiveUpdate.dll 6.0.0.3479 cmdHandlerScheduleDownload.dll 6.0.0.3479 cmdHandlerUpdate.dll 6.0.0.3479 ProductClass\SLF_PRODUCT_TVCS\ IDMapping.xml n/a StringTable.xml n/a WebUI\WebApp\App_Data\ ActiveUpdateInfo.xml n/a \FileGroup37\ MSSQL\ sp_BatchSyncStatusLogExtraInfo.sql n/a \FileGroup38\ DBCleanupTool.exe 6.0.0.3481 DbSchmManager.dll 6.0.0.3481 Schema_60_3451_HF.xml n/a MSSQL\ sp_BatchSyncStatusLogExtraInfo.sql n/a sp_BatchUpdateStatusLog.sql n/a sp_CollectBifDailyLog.sql n/a sp_Purge_StatusLogJournal_A.sql n/a sp_Purge_StatusLogJournal_B.sql n/a \FileGroup39\ EncryptDecryptUtility.NET.dll 6.0.0.3483 RestfulServiceUtility.NET.dll 6.0.0.3483 Schema_60_3453_HF.xml n/a MSSQL\ fn_UI_QueryBlacklistInfo.sql n/a sp_MergeExceptionSO.sql n/a sp_MergeUserDefinedSO.sql n/a sp_UpdateBlackList_MergeWhitelistFromHub.sql n/a PolicyMigrator\ EncryptDecryptUtility.NET.dll 6.0.0.3483 ProductClass\SLF_PRODUCT_TVCS\ StringTable.xml n/a SOTools\ EncryptDecryptUtility.NET.dll 6.0.0.3483 SuspiciousObjectExporter.exe 6.0.0.3490 SuspiciousObjectExporter.exe.config n/a SOTools\App_Data\ ExportCPL.xslt n/a ExportException.xslt n/a ExportSTIX.xslt n/a ExportUDSO.xslt n/a Run.bat n/a Run.ps1 n/a SampleData.xml n/a WebUI\WebApp\AdHocQuery\ AdHocQueryExportProcessing.aspx.cs n/a WebUI\WebApp\Bin\ EncryptDecryptUtility.NET.dll 6.0.0.3483 RestfulServiceUtility.NET.dll 6.0.0.3483 WebUI\WebApp\html\suspiciousObjects\sample\ importExceptionSample.csv n/a importUserDefinedSample.csv n/a \FileGroup40\ MSSQL\ sp_DDM_MailDetectionViewDetail.sql n/a sp_DDM_MailDetectionView_SmartSearchV2.sql n/a sp_DDM_QueryCustomizeColumnsSetting.sql n/a sp_DDM_QuerySNAPInfo.sql n/a sp_DDM_WebDetectionView_SmartSearchV2.sql n/a \FileGroup41\ ccgiCommandTracking.dll 6.0.0.3499 ccgiEventNotificationSetting.dll 6.0.0.3499 cgiHandlerManualDownload.dll 6.0.0.3499 cgiHandlerScheduleDownload.dll 6.0.0.3499 cmdHandlerScheduleDownload.dll 6.0.0.3499 WebUI\cgi-bin\ cgiShowClientAdm.exe 6.0.0.3499 WebUI\WebApp\ WF_Page.aspx.cs n/a WF_SessionCheck.aspx.cs n/a WebUI\WebApp\AdHocQuery\ AdHocQueryExportProcessing.aspx.cs n/a WebUI\WebApp\App_Code\RestfulHandler\ EndpointResourceController.cs n/a SearchResourceController.cs n/a TagResourceController.cs n/a UserDefinedSOResourceController.cs n/a WebUI\WebApp\dlp\ dlp_client_export.htm n/a dlp_compliance_tpl_addedit.js n/a dlp_digitalAccess.htm n/a dlp_Entities_addedit.htm n/a dlp_FileAttr_addedit.htm n/a dlp_Keywords_addedit.htm n/a dlp_listEntities.htm n/a dlp_listEntities_init.js n/a dlp_listEntities_require.js n/a dlp_listFileAttr_require.js n/a dlp_listKeywords_require.js n/a dlp_listTemplates.htm n/a dlp_listTemplates_init.js n/a dlp_listTemplates_require.js n/a WebUI\WebApp\html\indicatorsOfCompromise\ iocList.php n/a WebUI\WebApp\html\suspiciousObjects\ suspiciousObjectList.php n/a \FileGroup42\ MSSQL\ sp_RecognizeUserGuid.sql n/a \FileGroup43\ Resource\en_US\Reports\Desktop\ desktop_osce_client_basic_CR2008.rpt n/a \FileGroup44\ WebUI\WebApp\Bin\ AdHocQueryEngine.NET.dll 6.0.0.3506 ReportFactory.dll 6.0.0.3506 \FileGroup45\ MSSQL\ sp_Policy_GetConnectionInfo.sql n/a \FileGroup501\ PolicyDatabaseWrapper.dll 6.0.0.3403 WebUI\WebApp\Bin\ PolicyDatabaseWrapper.dll 6.0.0.3403 WebUI\WebApp\widget\repository\widgetPool\wp0000\proxy\modEndpointEncryption\ psRestApi.php n/a \FileGroup502\ WebUI\webApp\AdHocQuery\ AdHocQuery_Processor.aspx.cs n/a WebUI\webApp\App_Code\ sCloudService.cs n/a WebUI\webApp\Bin\ WFReporting.NET.dll 6.0.0.3407 WebUI\webApp\widget\repository\widgetpool\wp0000\widget\modPolicyList\ modPolicyList.css n/a module-min.js n/a module.js n/a WebUI\webApp\widget\repository\widgetpool\wp0000\widget\modPolicyList\lang\ en_US.xml n/a WebUI\webApp\widget\repository\widgetpool\wp0000\widget\modPolicyResultStatus\ modPolicyResultStatus.css n/a module-min.js n/a module.js n/a WebUI\webApp\widget\repository\widgetpool\wp0000\widget\modPolicyResultStatus\lang\ en_US.xml n/a \FileGroup503\ WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comDDIDtasSetting\lang\ en_US.xml n/a \FileGroup504\ stmt_AddCommandSupportForTMEAC.sql n/a TempProfiles\ TMEAC_2.0_1.1_en_US.zip n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\proxy\modTMEAC\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modACNgEndpointConnectionStatus\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modACNgKPI\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modACNgRuleManagement\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modACNgTopAggregations\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modACTopAppliedPolicies\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modACTopUsedApplications\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modACTopViolatingUsers\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetBase\modTMEAC\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMEACConnectionSettings\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMEACGeneralSettings\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMEACLogs\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMEACRules\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMEACUpdateSettings\*.* \FileGroup505\ WebUI\WebApp\Bin\ WFReporting.NET.dll 6.0.0.3416 \FileGroup506\ WebUI\WebApp\App_Code\ sCloudService.cs n/a WebUI\WebApp\Bin\ PolicyDatabaseWrapper.dll 6.0.0.3424 WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modOperationList\ module-min.js n/a module.js n/a \FileGroup507\ WebUI\WebApp\widget\repository\widgetPool\wp0000\proxy\modSCO\Handlers\ HandlerFactory.php n/a \FileGroup508\ WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comOSCEPOS\ component.js n/a component.xml n/a \FileGroup509\ webUI\WebApp\widget\repository\widgetPool\wp0000\proxy\modIMSVA\ imsva.php n/a \FileGroup510\ TempProfiles\ TMSM_3.0_1.0_en_US.zip n/a TMSM_3.0_1.0_fr_FR.zip n/a TMSM_3.0_1.0_ja_JP.zip n/a TMSM_3.0_1.0_zh_CN.zip n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\config\ serverlist.xml n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\proxy\modTMSM\ KPIHelper.php n/a Proxy.php n/a StatusManager.php n/a TMSMDBUtility.php n/a TMSM_Constant.php n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modTMSMKPI\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetBase\modProduct\lang\ en_US.xml n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetBase\modTMSM\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMCSS\help\en_US\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMMSS\ component.js n/a component.xml n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMMSS\help\en_US\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMMSS\lang\ en_US.xml n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMRTSCAN\ component.js n/a component.xml n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMRTSCAN\help\en_US\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMRTSCAN\lang\ en_US.xml n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMSCANEXC\help\en_US\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMSCSCAN\ component.js n/a component.xml n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMSCSCAN\help\en_US\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMSCSCAN\lang\ en_US.xml n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMSM\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMSP\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMUS\ component.js n/a component.xml n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMUS\help\en_US\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMUS\lang\ en_US.xml n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMWTP\help\en_US\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMSMWTP\lang\ en_US.xml n/a \FileGroup511\ WebUI\WebApp\App_Code\ sCloudService.cs n/a \FileGroup512\ sCloudProcessor.NET.exe 6.0.0.3438 \FileGroup513\ WebUI\WebApp\Bin\ WFReporting.NET.dll 6.0.0.3438 WebUI\WebApp\widget\repository\widgetPool\wp0000\proxy\modDDEI\ Proxy.php n/a \FileGroup514\ TempProfiles\ DDAN_5.8_1.0_en_US.zip n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetBase\modProduct\lang\ en_US.xml n/a \FileGroup515\ WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comOSCEBMS\ component.js n/a component.xml n/a \FileGroup516\ sCloudProcessor.NET.exe 6.0.0.3465 WebUI\WebApp\widget\repository\widgetPool\wp0000\inc\ product_auth.php n/a \FileGroup517\ sCloudProcessor.NET.exe 6.0.0.3465 \FileGroup518\ WebUI\WebApp\widget\repository\widgetPool\wp0000\proxy\modOSCE\ proxy.php n/a \FileGroup519\ MSSQL\ stmt_InitMobileSecurityProductInfo.sql n/a TempProfiles\ TMMS_9.6_1.0_en_US.zip n/a TMMS_9.6_1.0_fr_FR.zip n/a TMMS_9.6_1.0_ja_JP.zip n/a TMMS_9.6_1.0_zh_CN.zip n/a TMMS_9.6_1.1_en_US.zip n/a TMMS_9.6_1.1_fr_FR.zip n/a TMMS_9.6_1.1_ja_JP.zip n/a TMMS_9.6_1.1_zh_CN.zip n/a TMMS_9.7_1.1_en_US.zip n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modMDMDevInstalledAndroidMalware\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modMDMDevInstalledAndroidPrivacy\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modMDMDevInstalledAndroidRepack\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modMDMDevInstalledAndroidVulnerability\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widget\modMDMDevInstallediOSMalware\*.* WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMMSAMCP\ component.js n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMMSEASP\ comTMMSEASP.css n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMMSEPP\ component.js n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMMSFLP\ component.js n/a component.xml n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comTMMSFLP\lang\ en_US.xml n/a \FileGroup520\ WebUI\WebApp\widget\repository\widgetPool\wp0000\proxy\modDDEI\ Proxy.php n/a \FileGroup521\ WebUI\WebApp\widget\repository\widgetPool\wp0000\proxy\modIWSS\ Proxy.php n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\proxy\modIWSVA\ Proxy.php n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\proxy\modOSCE\ Proxy.php n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\proxy\modSMEX\ Proxy.php n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comIWSS\iwss\js\ iwss_dlpsettings.js n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comIWSVA\iwsva\js\ iwsva_dlpsettings.js n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comOSCEDACS\ component.js n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comOSCEDDS\ component.js n/a WebUI\WebApp\widget\repository\widgetPool\wp0000\widgetComponent\comSMEXDLP\ component.js n/a 2. Documentation Set ====================================================================== To download or view electronic versions of the documentation set for this product, go to http://docs.trendmicro.com 3. System Requirements ====================================================================== Trend Micro recommends installing Control Manager 6.0 Service Pack 3 Patch 2 before installing this hotfix. 4. Installation ====================================================================== This section explains key steps for installing the hotfix. 4.1 Installing =================================================================== To install, run "tmcm_60_sp3_patch2_win_en_hfb3506.exe on the " Control Manager server. A confirmation dialog box displays "Installation successful!" after the system completes the installation. 4.2 Uninstalling =================================================================== To roll back to the previous build: 1. Obtain the hotfix backup path information from the registry key: \HKEY_Local_Machine\Software\TrendMicro\TVCS\Hotfix\B3506 \Backup Dir 2. Open the backup folder. For example: C:\Program files\Trend Micro\Control Manager\HotFix\Bxxxx-B3506 3. Double-click "Uninstall.bat". A confirmation dialog box displays "Uninstallation successful!" after the system completes the rollback process. Control Manager 6.0 service packs, patches, and hotfixes can be found on the Trend Micro web site or obtained from a technical support engineer. http://www.trendmicro.com/download/product.asp?productid=7 5. Post-installation Configuration ====================================================================== No post-installation steps are required. NOTE: Trend Micro recommends that you update your scan engine and virus pattern files immediately after installing the product. 6. Known Issues ====================================================================== There are no known issues for this hotfix release. 7. Release History ====================================================================== For more information about updates to this product, go to: http://www.trendmicro.com/download 7.1 Prior Hotfixes =================================================================== NOTE: Only this hotfix was tested for this release. Prior hotfixes were tested at the time of their release. Hotfix 3403 Issue 1: Control Manager 6.0 Service Pack 3 Patch 2 does not deploy the APIKey of a registered Deep Discovery Analyzer to the OfficeScan server, if the Deep Discovery Analyzer has registered to Control Manager before upgrading to version 6.0 Service Pack 3 Patch 2. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix ensures that Control Manager deploys the APIKey of registered Deep Discovery Analyzers to the OfficeScan server. Issue 2: Endpoint Encryption cannot run the SOAPClient task after the PHP in Control Manager is upgraded to version 5.6 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This hotfix ensures that Endpoint Encryption can run the SOAPClient task with PHP 5.6. Hotfix 3404 Enhancement: This hotfix adds the "Log Entries" column in the "Log Maintenance" setting page. This new column displays the total number of logs. Hotfix 3405 Issue: Control Manager generates blank ad hoc query reports when users query the "Detailed Behavior Monitoring Information" for a specific OfficeScan server but do not select all the domains under the server. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that Control Manager can generate "Detailed Behavior Monitoring Information" ad hoc query reports for selected domains or all domains under an OfficeScan server. Hotfix 3406 Issue: Garbled characters may appear in the Control Manager web console "Ad Hoc Query" page when users access the page in Chrome and Firefox. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that the "Ad Hoc Query" page displays normally in Chrome and Firefox. Hotfix 3407 Enhancement: This hotfix adds two new columns, "Offline" and "With Issues", in the "Policy Status" widget and "Policy Management" page to display offline agents and agents with other issues separately from other agents with "Pending" status. Hotfix 3408 Enhancement: This hotfix updates the VA setting information for Deep Discovery Inspector 3.8 Service Pack 3 on the Deep Discovery Inspector widget. From: - Isolated network - Specified network To: - No network / Isolated network - Custom network / Specified network Hotfix 3409 Issue: Sometimes, users cannot save changes to the Recipients settings of Event Notifications. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that users can save the changes to the Recipients settings of Event Notifications. Hotfix 3410 Issue: The Ransomware Prevention widget on the Control Manager web console displays the total number of infected files but does not display the detailed information when users click on the number. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that the Ransomware Prevention widget displays the detailed information when users click on the number of infected files. Hotfix 3413 Issue: Products may not be able to register to Control Manager successfully if the AD Server responds slowly. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix resolves the issue by separating the AD Query process and Product Registration handle process. Hotfix 3414 Enhancement: This hotfix applies the following updates related to TMEAC 2.0 Service Pack 1. - Rule Management: This hotfix enables users to edit rules on all widgets that display a single rule column but users will only be able to create rules through the dedicated rule management widget. - SO Deployment: This hotfix enables Control Manager to support deployment of SO service credentials to a TMEAC 2.0 server. - SO Log: This hotfix enables Control Manager to supporting SO log collection (File Infect Log 1.0) for newly registered TMEAC 2.0 servers. Matches within the EAC inventory are reported as "Action: Log" and "Type: Scheduled Scan" while matches in the policy actions block log are reported as "Action: Block" and "Type: Realtime Scan". - Policy/Rules Selection: This hotfix enables Control Manager to support enabling SO blocking for SOs with "block" or "quarantine" action. - Policy/Log: This hotfix adds the "Reduce impact of log 'Any'" option which allows it to filter DLL accesses from "Policy action" logs when "Any" logs are selected (migrated from TMEAC 2.0-P1). - Policy/Deployment: This hotfix raises the default polling interval from two to 15 minutes and removes polling intervals that are less than five minutes. - Widgets: This hotfix updates the "Uncategorized Applications" template in KPI and the Application Event widgets to display applications correctly when the "Any" category is selected as log configuration with the "Reduce impact of 'Any'..." option enabled (migrated from TMEAC 2.0-P1). - Widgets: This hotfix resolves cross-site scripting (XSS) vulnerabilities in the widget names and chart labels. Hotfix 3416 Issue: The Dashboard page of the Control Manager web console is affected by an SQL injection vulnerability. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix resolves the vulnerability. Hotfix 3417 Issue: The time information in the "Directories > User/Endpoint > Security Threats" page of the Control Manager web console is in the wrong time zone. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that the time information in the "Security Threats" page is in local time. Hotfix 3418 Issue: An issue prevents users from logging onto multiple OfficeScan servers by SSO through the Control Manager console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that users can log on to multiple OfficeScan servers by SSO from the Control Manager console. Hotfix 3419 Enhancement: This hotfix enables the Cloud App Security, Hosted Email Security, and Worry-Free Business Security Services to support ransomware detection information on the Ransomware Prevention Widget. Hotfix 3420 Issue: Users cannot disable the "Display a notification when a C&C Callback is detected" setting of the OfficeScan agent policy on the "Privileges and other settings" page of the Control Manager web console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that users can successfully enable or disable the "Display a notification when a C&C Callback is detected" setting of the OfficeScan agent policy. Hotfix 3421 Issue: "Product Status Information" reports generated in grid form display an extra column labelled "Color". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix removes the "Color" column from "Product Status Information" reports generated in grid form. Hotfix 3422 Enhancement: This hotfix enables the Control Manager LogForwarder tool to support Predictive Machine Learning logs. Hotfix 3423 Enhancement: This hotfix enables Control Manager to create new SHA2-based certificates for its web server and to replace the old SHA1-based certificates with these new certificates. Hotfix 3424 Issue: Control Manager does not support double-byte characters in URLs under the list of suspicious objects on Deep Discovery Email Inspector reports, as a result, the Control Manager web console displays these URLs as "?". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix enables Control Manager to support double-byte characters in URLs in Deep Discovery Email Inspector reports. Hotfix 3425 Enhancement: This hotfix helps ensure that Control Manager 6.0 can deploy policies to IMSVA 9.1 after it is upgraded to IMSVA 9.1 Patch 1. Hotfix 3429 Enhancement: This hotfix adds the following for Trend Micro Security (for Mac). - New policy settings - Scan Method - Agent Self-Protection - New scan settings for the policy settings - Manual Scan Settings - Real-time Scan Settings - Scheduled Scan Settings - New update settings for the policy setting - New Security (for Mac) Key Performance Indicators Widget Hotfix 3430 Issue: In a Control Manager cluster environment, the Deep Discovery Analyzer related schedules are not correctly implemented when registering a new Deep Discovery Analyzer server. This results in the clustered servers not receiving the Suspicious Object List from Deep Discovery Analyzer. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: 1. If Control Manager is clustered, modify the following setting in SystemConfiguration.xml: - "m_strLookBackIP" Change to '127.0.0.1" in the Control Manager root directory after applying this hotfix. 2. If the public host name is different from the Control Manager server's actual host name (such as in the case of a cluster), "sCloudService" connects to the Control Manager server using the m_strLoopBackIP setting. The modification will prevent Control Manager from recognizing the request as being external. 3. When TMCM WebApp checks whether a request is a local request, it will check all IPs from all network cards, instead of only checking the default IP. Hotfix 3431 Issue 1: During DST, the wrong timestamps appear on email notifications and in syslogs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix ensures that Control Manager adds the correct timestamps to email notifications and syslogs when DST is enabled. Issue 2: The watermark for "tb_avviruslog_specialVirusNotif" increases significantly within a short period of time even when there are no new virus logs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution2: This hotfix ensures the stored procedure that updates the watermark of "tb_avviruslog_specialVirusNotif" is not triggered when there are no new virus logs. Hotfix 3432 Enhancement: This hotfix enables Control Manager 6.0 to support Deep Discovery Email Inspector 2.6 and DDI 3.8 SP5 to use the new ActiveUpdate components. Hotfix 3433 Enhancement: This hotfix enables Control Manager to allow users to use wildcard characters in domains and URLs in the Virtual Analyzer Suspicious Objects Exception List. Hotfix 3434 Enhancement: This hotfix enables Control Manager to support SSO to multiple products simultaneously without overwriting sessions. This means that users can log on to several product servers and maintain each session in separate browser windows at the same time. Hotfix 3435 Issue: SQL injection vulnerabilities and XML External Entity injection vulnerabilities have been identified in the Control Manager 6.0 program. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix improves the way Control Manager filters input parameters to remove the vulnerabilities and protect against attacks. Hotfix 3436 Enhancement: This hotfix enables Deep Discovery Analyzer (DDAN) 5.8 to register to Control Manager. Hotfix 3437 Issue: There are no logs that appear in a one-time report when Control Manager removes the client (who sent the logs) from the product directory. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hot fix ensures that one-time report display all logs even if the client does not exist in product directory. Hotfix 3438 Issue: Control Manager does not sort detections belonging to both command-and-control (C&C) callback and ransomware types onto the Ransomware Prevention widget. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix enables Control Manager to sort detections onto the Ransomware Prevention widget even if these detections belong to both the C&C callback and ransomware types. Hotfix 3439 Issue: If the impersonate function is enabled on Control Manager Web Server (IIS), and a Trend Micro OfficeScan X is registered on the same Control Manager server, the IIS working thread sometimes crashes. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix prevents the crash from occurring when this situation occurs. Hotfix 3440 Issue: Users cannot save policy settings in the "Policies > Policy Management > OfficeScan Agent > Behavior Monitoring Settings > Enable Event Monitoring" function of the Control Manager web console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that users can successfully save Event Monitoring settings of the OfficeScan agent policy. Hotfix 3441 Enhancement: This hotfix adds the following fields in the Predictive Machine Learning logs of the Control Manager Syslog: - CM Received Log Time - File SHA1 - Device External ID Hotfix 3442 Issue: When querying OfficeScan Behavior Monitoring data in Control Manager, some many columns display abnormally. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that users can perform Ad Hoc Query of "Detailed Behavior Monitoring Information" and display the following columns correctly: - Policy - Event Type - Action - Operation Hotfix 3443 Enhancement: This hotfix adds the following PML-related engines onto the Control Manager AU: - Advanced Threat Scan Engine (32-bit) for Predictive Machine Learning - Advanced Threat Scan Engine (64-bit) for Predictive Machine Learning - Contextual Intelligence Engine (32-bit) - Contextual Intelligence Engine (64-bit) - Contextual Intelligence Query Handler (32-bit) - Contextual Intelligence Query Handler (64-bit) Hotfix 3444 Issue: An authentication bypass issue exists in the Control Manager dashboard. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that requests require authentication in Control Manager. Hotfix 3445 Enhancement: This hotfix adds the following fields in the Control Manager Syslog: - CM Received Log UTC Time - File SHA1 - Device External ID - Machine Name - File Name Hotfix 3446 Issue: Policy statuses are inconsistent between the Users/Endpoints User Detail view and the Policy Management view for Trend Micro Endpoint Sensor and Trend Micro Endpoint Application Control product policies. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures the status are presented consistenly for all views. Hotfix 3447 Enhancement: The hotfix enables Control Manager to send the Data Loss Prevention log from the cascading child Control Manager servers and store it on a database table in the cascading parent Control Manager server. Administrators use the logs in this special table for backup purposes only; there is no UI interacting with the table. The tables in the Parent Control Manager Server are: - tb_LogDataLossPrevention_CasStorage - tb_LogDataLossPreventionAction_CasStorage - tb_LogDataLossPreventionTemplate_CasStorage Procedure: To enable the feature: a. Install this hotfix on Parent Control Manager Server. b. Open the "SystemConfiguration.xml" file using a text editor on Parent Control Manager Server. c. Locate the "m_CascadingTableNameMapping" key and set its value to "1". Note: To disable the feature, set "m_CascadingTableNameMapping=0". d. Save the changes and close the file. e. Restart Control Manager. Hotfix 3448 Issue: An issue prevents policies with specified targets to redeploy daily. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures policies redeploy daily. Hotfix 3449 Enhancement: This hotfix adds PLM-related components onto Control Manager ActiveUpdate (AU): - Plug-in Manager Widget / Data Access Layer Module (2.3) - OfficeScan Plug-in Program List (2.3) Hotfix 3450 Issue: The last update time of the SPNT endpoint pattern and engine files is not updated correctly. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hot fix ensures that the last update time of endpoint pattern and engine files is updated accordingly. Hotfix 3451 Issue: Control Manager cannot handle status logs once the queue exceeds 2,147,483,647 logs. When this happens, Control Manager will not be able to update the Product Status. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix enables Control Manager to handle up to 9,223,372,036,854,775,807 logs. Hotfix 3452 Enhancement 1: This hotfix supports Trend Micro Mobile Security (TMMS) 9.6 and adds five (5) widgets of TMMS: - iOS Malware Scan Summary - Android Vulnerability Scan Summary - Android Modified App Scan Summary - Android Malware Scan Summary - Android Privacy Data Leak Scan Summary Enhancement 2: This hotfix enables Trend Micro Mobile Security (TMMS) 9.7 to register to Control Manager. Hotfix 3453 Enhancement 1: This hotfix enhances the export tool to export the Suspicious Object list as CSV files and the import tool to import Suspicious Object list onto Control Manager. This hot fix also adds the "filterCRC" column ("SuspiciousObjectExporter.exe" and "ImportSOFromCSV.exe"). Enhancement 2: Remove the previous version of the "SuspiciousObjectExporter.exe" file in the "SuspiciousObjectExporter" folder and add a new version of the file to the "SOTools" folder in the Control Manager root folder. Hotfix 3473 Issue 1: Some stored procedures use data types that are not supported in Microsoft(TM) SQL Server 2005. This situation causes installations to fail. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix refines those store procedures that is supported in SQL server 2005, which produces successful installations. Issue 2: There is a compatibility issue of redirect mode between DDM v1.1 and v1.2. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This hotfix resolves the compatibility issue of redirect mode for DDM v1.1 and v1.2. Hotfix 3500 Issue 1: There are SQL injection vulnerabilities found in the "Scheduled Download", "Manual Download", and "Event Notification" pages ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix resolves these vulnerabilities. Issue 2: There are privilege escalation vulnerabilities found in some pages that allow authenticated low privilege users access to certain pages not granted to them by administrators. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This hotfix resolves this issues by allowing authorized users access only to certain web pages as defined by the administrator. Hotfix 3502 Issue: The Ransomware Prevention widget on the Control Manager web console displays the total number of infected files, but it does not display the detailed information when users click on the number of infected files. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that the Ransomware Prevention widget displays the detailed information when users click on the number of infected files. Hotfix 3503 Issue: Control Manager reports incorrectly displays the OfficeScan Intellitrap Pattern out-of-date ratio. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hot fix ensures that Control Manager reports display the out-of-date ratio of OfficeScan Intellitrap Pattern. Hotfix 3504 Enhancement: When there is a large number of Control Manager reports, the total number of reports may be displayed using scientific notation. This may cause misunderstanding and misinterpretation of the information in certain countries that use a different scientific notation format. This hotfix enables Control Manager to display the information completely even when dealing with very large numbers. Hotfix 3505 Issue: Control Manager delivers an incorrect suspicious object Web API address to the product. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hot fix ensures that Control Manager delivers the correct suspicious object Web API address to the product after completing the registration. 8. Contact Information ====================================================================== A license to Trend Micro software usually includes the right to product updates, pattern file updates, and basic technical support for one (1) year from the date of purchase only. After the first year, you must renew Maintenance on an annual basis at Trend Micro's then-current Maintenance fees. Contact Trend Micro via fax, phone, and email, or visit our website to download evaluation copies of Trend Micro products. http://www.trendmicro.com/us/about-us/contact/index.html NOTE: This information is subject to change without notice. 9. About Trend Micro ====================================================================== Smart, simple, security that fits As a global leader in IT security, Trend Micro develops innovative security solutions that make the world safe for businesses and consumers to exchange digital information. Copyright 2017, Trend Micro Incorporated. All rights reserved. Trend Micro, Control Manager, OfficeScan, Data Loss Prevention, InterScan, ScanMail, Deep Security, and the t-ball logo are trademarks of Trend Micro Incorporated and are registered in some jurisdictions. All other marks are the trademarks or registered trademarks of their respective companies. 10. License Agreement ====================================================================== View information about your license agreement with Trend Micro at: http://www.trendmicro.com/us/about-us/legal-policies/ license-agreements/ Third-party licensing agreements can be viewed: - By selecting the "About" option in the application user interface - By referring to the "Legal" page of the Administrator's Guide