<> Trend Micro Incorporated September 27, 2017 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Trend Micro(TM) ScanMail(TM) (for Microsoft(TM) Exchange(TM)) 12.0 Critical Patch 1 for Service Pack 1 Patch1 Build 1755 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Contents ========================================================== 1. Overview of This Critical Patch Release 1.1 Issues 1.2 Files Included in This Release 2. Documentation Set 3. System Requirements 4. Installation 4.1 Installing 4.2 Uninstalling 5. Post-installation Configuration 6. Known Issues 7. Release History 8. Contact Information 9. About Trend Micro 10. License Agreement ========================================================== 1. Overview of This Critical Patch Release ====================================================================== This critical patch resolves several vulnerabilities in ScanMail (for Microsoft Exchange) 12.0 Patch 1 for Service Pack 1. Refer to "Issues" for more information. NOTE: Please install this critical patch before completing any procedure in this section (see "Installation"). 1.1 Issues =================================================================== This critical patch resolves the following issues: Issue 1: ScanMail (for Microsoft Exchange) 12.0 Patch 1 for Service Pack 1 communicates with the ActiveUpdate (AU) server by HTTP which is unencrypted ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This critical patch enables ScanMail (for Microsoft Exchange) 12.0 to communicate with the AU server by HTTPS by default. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Procedure 1: To configure this feature: a. Install this critical patch (see "Installation"). b. Open the Registry Editor. c. Locate the following key and set the appropriate value: Path: HKLM\SOFTWARE\TrendMicro\ScanMail for Exchange\CurrentVersion Key: AUFromHTTPSServer Type: REG_DWORD Data value: "1" = (default) enables the solution "0" = disables the solution d. Restart ScanMail (for Microsoft Exchange). ------------------------------------------------------------------- Issue 2: A Cross-Site Request Forgery (CSRF) vulnerability in ScanMail (for Microsoft Exchange) 12.0 Patch 1 for Service Pack 1 may allow remote attackers to submit a malicious request to the ScanMail server. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This critical patch resolves the CSRF vulnerability. ------------------------------------------------------------------- Issue 3: A cross-site scripting (XSS) vulnerability in ScanMail (for Microsoft Exchange) 12.0 Patch 1 for Service Pack 1 may enable attackers to inject client-side scripts into web pages viewed by other users. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This critical patch resolves the XSS vulnerability. 1.2 Files Included in This Release =================================================================== A. Files for Current Issues ------------------------------------------------------------------- Files for Issue 1 ---------------------------------------------------------------- Filename Build No. ---------------------------------------------------------------- [SMEX]\ cfgSmexSettings.dll 12.0.0.1755 Files for Issue 2 ---------------------------------------------------------------- Filename Build No. ---------------------------------------------------------------- [SMEX]\ filterwtp.dll 12.0.0.1755 servPolicycontroller.dll 12.0.0.1755 servWebUIprocessor.dll 12.0.0.1755 uiWebActiveUpdatet.dll 12.0.0.1755 uiWebadministration.dll 12.0.0.1755 uiWebAlert.dll 12.0.0.1755 uiWebDTASSetting.dll 12.0.0.1755 uiWebLog.dll 12.0.0.1755 uiWebManualscan.dll 12.0.0.1755 uiWebRealtimescan.dll 12.0.0.1755 uiWebSchedulescan.dll 12.0.0.1755 uiWebSearchDestroy.dll 12.0.0.1755 uiWebServerManagement.dll 12.0.0.1755 uiWebSessionManager.dll 12.0.0.1755 utilPolicy.dll 12.0.0.1755 [SMEX]\web\html session_expired.htm N/A [SMEX]\web\html\administration Add_Server_Management_Group.htm N/A Add_Special_Group.htm N/A Admin_debugger.htm N/A Admin_Group.htm N/A Admin_Management.htm N/A CM_Settings.htm N/A CM_Settings_Progress.htm N/A Contact_CGI.htm N/A Edit_Server_Management_Group.htm N/A Edit_Special_Group.htm N/A InternalDomain_Setting.htm N/A Maintainer_Group.htm N/A Maintainer_Management.htm N/A Notification_Settings.htm N/A Product_License.htm N/A Product_License_Edit.htm N/A Proxy_Settings.htm N/A scan_method_setting.htm N/A SearchDestroy_Group.htm N/A SearchDestroy_Management.htm N/A SearchOperator_Group.htm N/A SearchOperator_Management.htm N/A Server_Management_Group_List.htm N/A Spam_Maintenance.htm N/A Special_Group_List.htm N/A SSO_Setting.htm N/A [SMEX]\web\html\alerts Outbreak.htm N/A Setting.htm N/A System.htm N/A [SMEX]\web\html\dtas Connect_DTAS_Process.htm N/A DTAS_Process_cgi.htm N/A Virtual_Analyzer.htm N/A [SMEX]\web\html\logs DeleteProgress.htm N/A Maintenance_Automatic.htm N/A Maintenance_Manual.htm N/A [SMEX]\web\html\quarantine DeleteProgress.htm N/A Maintenance_Automatic.htm N/A Maintenance_Manual.htm N/A [SMEX]\web\html\reports Maintenance.htm N/A Scheduled_Edit.htm N/A Scheduled_List.htm N/A [SMEX]\web\html\scan Antispam.htm N/A Attachmentblocking.htm N/A Attachmentblocking_Add_Account.htm N/A Attachmentblocking_Add_Exception.htm N/A Attachmentblocking_Add_Rule.htm N/A Attachmentblocking_Directory.htm N/A Attachmentblocking_Edit_Exception.htm N/A Attachmentblocking_Edit_Rule.htm N/A Attachmentblocking_Exception_List.htm N/A Contentfiltering_Add_Antispam.htm N/A Contentfiltering_Add_Exempt.htm N/A Contentfiltering_Add_Exempt_E.htm N/A Contentfiltering_Add_Exempt_E2K7.htm N/A Contentfiltering_Add_General.htm N/A Contentfiltering_Add_Monitor.htm N/A Contentfiltering_Add_Monitor_E2K7.htm N/A Contentfiltering_Add_Policy_All.htm N/A Contentfiltering_Add_Policy_Any.htm N/A Contentfiltering_Add_Policy_Type.htm N/A Contentfiltering_Directory.htm N/A Contentfiltering_Edit_Antispam.htm N/A Contentfiltering_Edit_Exempt.htm N/A Contentfiltering_Edit_Exempt_E2K7.htm N/A Contentfiltering_Edit_General.htm N/A Contentfiltering_Edit_Getsynonym.htm N/A Contentfiltering_Edit_Monitor.htm N/A Contentfiltering_Edit_Monitor_E2K7.htmN/A Contentfiltering_Edit_Policy_All.htm N/A Contentfiltering_Edit_Policy_Any.htm N/A Contentfiltering_List.htm N/A DLP_Directory.htm N/A DLP_ExpressionKeywords_List.htm N/A DLP_Expression_Add.htm N/A DLP_Expression_Edit.htm N/A DLP_Keyword_Add.htm N/A DLP_Keyword_Edit.htm N/A DLP_Rule_Add.htm N/A DLP_Rule_Edit.htm N/A DLP_Rule_List.htm N/A DLP_Templates_List.htm N/A DLP_Template_Add.htm N/A DLP_Template_Edit.htm N/A Email_Reputation_Service.htm N/A Manualscan.htm N/A Manualscan_Status.htm N/A Scheduledscan.htm N/A Scheduledscan_List.htm N/A smart_source_add.htm N/A smart_source_edit.htm N/A smart_source_setting.htm N/A Virusscanning.htm N/A WebThreatProtection.htm N/A [SMEX]\web\html\searchdestroy databases_Import.htm N/A mailboxes_Import.htm N/A Search_Result.htm N/A Task_List.htm N/A [SMEX]\web\html\summary Activate_E12.htm N/A Reactivate_E12.htm N/A Servermanagement_replication.htm N/A System.htm N/A [SMEX]\web\html\updates Manual.htm N/A Scheduled.htm N/A Source.htm N/A [SMEX]\web\javascripts SearchDestroy.js N/A trend-ui-new.js N/A Files for Issue 3 ---------------------------------------------------------------- Filename Build No. ---------------------------------------------------------------- [SMEX]\ uiWebLog.dll 12.0.0.1755 B. Files for Previous Issues ------------------------------------------------------------------- Not applicable. 2. Documentation Set ====================================================================== To download or view electronic versions of the documentation set for this product, go to http://docs.trendmicro.com In addition to this Readme file, the documentation set for this product includes the following: - Online Help: The Online Help contains an overview of features and key concepts, and information on configuring and maintaining ScanMail (for Microsoft Exchange). To access the Online Help, go to http://docs.trendmicro.com - Installation Guide (IG): The Installation Guide contains information on requirements and procedures for installing and deploying ScanMail (for Microsoft Exchange). - Administrator's Guide (AG): The Administrator's Guide contains an overview of features and key concepts, and information on configuring and maintaining ScanMail (for Microsoft Exchange). - Support Portal: The Support Portal contains information on troubleshooting and resolving known issues. To access the Support Portal, go to http://esupport.trendmicro.com 3. System Requirements ====================================================================== Install this critical patch only on computers protected by the latest ScanMail (for Microsoft Exchange) 12 Service Pack 1 Patch 1. Download the latest Service Pack and Patch from the following site: http://www.trendmicro.com/download 4. Installation ====================================================================== This section explains key steps for installing the critical patch. NOTES: - This critical patch supports remote and multi-server deployment. - This critical patch automatically restarts the following services on both Normal and Cluster Servers: - ScanMail (for Microsoft Exchange) Master Service - ScanMail (for Microsoft Exchange) System Watcher - ScanMail EUQ Monitor - To install or uninstall this critical patch, you must have at least local administrator and domain user privileges. - The installation and uninstallation steps are the same as for ScanMail (for Microsoft Exchange) 12.0 Service Pack 1 Patch 1. Refer to the "Trend Micro ScanMail (for Microsoft Exchange) 12.0 Service Pack 1 Patch 1 Installation and Upgrade Guide" for detailed information. - Register online with Trend Micro within 30 days of installation to continue downloading new pattern files and product updates from the Trend Micro website. Register during installation or online at: http://olr.trendmicro.com/ 4.1 Installing =================================================================== To install, run "ssmex_120_sp1_win_en_patch1_criticalpatch1_b1755.exe" and select "Install". The framework automatically installs the hotfix to the correct directory and replaces the outdated files. The "Successfully completed" count increases upon the completion of the installation. 4.2 Uninstalling =================================================================== To roll back to the previous build, you can either - run "smex_120_sp1_win_en_patch1_criticalpatch1_b1755.exe" and select "uninstall"; or - run "uninstall.bat" in the following hotfix folder: {SMEX_HOME}\Patch\Critical Patch 1\Uninstall The framework automatically rolls back to the previous build and a confirmation message indicating a successful uninstallation is displayed on the setup screen. 5. Post-Installation Configuration ====================================================================== No post-installation steps are required. NOTE: Trend Micro recommends that you update your scan engine and virus pattern files immediately after installing the product. 6. Known Issues ====================================================================== There are no known issues for this critical patch release. 7. Release History ====================================================================== For more information about updates to this product, go to: http://www.trendmicro.com/download 8. Contact Information ====================================================================== A license to Trend Micro software usually includes the right to product updates, pattern file updates, and basic technical support for one (1) year from the date of purchase only. After the first year, you must renew Maintenance on an annual basis at Trend Micro's then-current Maintenance fees. Contact Trend Micro via fax, phone, and email, or visit our website to download evaluation copies of Trend Micro products. http://www.trendmicro.com/us/about-us/contact/index.html NOTE: This information is subject to change without notice. 9. About Trend Micro ====================================================================== Smart, simple, security that fits As a global leader in IT security, Trend Micro develops innovative security solutions that make the world safe for businesses and consumers to exchange digital information. Copyright 2017, Trend Micro Incorporated. All rights reserved. Trend Micro, ScanMail, and the t-ball logo are trademarks of Trend Micro Incorporated and are registered in some jurisdictions. All other marks are the trademarks or registered trademarks of their respective companies. 10. License Agreement ====================================================================== View information about your license agreement with Trend Micro at: http://www.trendmicro.com/us/about-us/legal-policies/ license-agreements Third-party licensing agreements can be viewed: - By selecting the "About" option in the application user interface - By referring to the "Legal" page of the Administrator's Guide