<<<>>> Trend Micro Incorporated August 13th, 2019 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Trend Micro(TM) Control Manager 8.0 - Apex Central English - Windows - 32-bit / 64-bit Hotfix Build 3943 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ NOTICE ============================================================================== Trend Micro developed this hotfix as a workaround or solution to a problem reported by customers. As such, this hotfix has received limited testing and has not been certified as an official product update. Consequently, THIS HOTFIX IS PROVIDED "AS IS". TREND MICRO MAKES NO WARRANTY OR PROMISE ABOUT THE OPERATION OR PERFORMANCE OF THIS HOTFIX NOR DOES TREND MICRO WARRANT THIS HOTFIX AS ERROR FREE. TO THE FULLEST EXTENT PERMITTED BY LAW, TREND MICRO DISCLAIMS ALL IMPLIED AND STATUTORY WARRANTIES, INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY, NONINFRINGEMENT AND FITNESS FOR A PARTICULAR PURPOSE. Contents ============================================================================== 1. Hotfix Release Information 1.1 Resolved Known Issues 1.2 Enhancements 2. Documentation Set 3. System Requirements 4. Installation/Uninstallation 4.1 Installing 4.2 Uninstalling 5. Post-installation Configuration 6. Known Issues 7. Release History 7.1 Prior Hotfixes 8. Contact Information 9. About Trend Micro 10. License Agreement ============================================================================== 1. Hotfix Release Information ============================================================================== 1.1 Resolved Known Issues ============================================================================ This hotfix resolves the following issue(s): (SEG-53908) Issue: Apex Central Log Queries take a very long time to complete when there are more than 200000 agents. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix improves the Log Query performance when there are more than 200000 agents. 1.2 Enhancements ============================================================================ The following enhancements are included in this hotfix: (SEG-57424) Enhancement: The hotfix ensures that the policy status displays correctly after deployment. 2. Documentation Set ============================================================================== To download or view electronic versions of the documentation set for this product, go to http://docs.trendmicro.com - Online Help: The Online Help contains an overview of features and key concepts, and information on configuring and maintaining the product. To access the Online Help, go to http://docs.trendmicro.com - Installation Guide (IG): The Installation Guide contains information on requirements and procedures for installing and deploying the product. - Administrator's Guide (AG): The Administrator's Guide contains an overview of features and key concepts, and information on configuring and maintaining the product. - Getting Started Guide (GSG): The Getting Started Guide contains product overview, installation planning, installation and configuration instructions, and basic information intended to get the product 'up and running'. - Support Portal: The Support Portal contains information on troubleshooting and resolving known issues. - To access the Support Portal, go to http://esupport.trendmicro.com 3. System Requirements ============================================================================== 1. Trend Micro Control Manager 8.0 Apex Central Build 3752 - English - Windows - x32-x64 4. Installation/Uninstallation ============================================================================== This section explains key steps for installing the hotfix. 4.1 Installing ============================================================================ To install, run "apexcentral_80_win_en_hfb3943.zip" on the Apex Central server. A confirmation dialog box displays "Installation successful!" after the system completes the installation. 4.2 Uninstalling ============================================================================ No special uninstallation instructions are provided. Control Manager service packs, patches, and hotfixes can be found on the Trend Micro website or obtained from a technical support engineer. http://downloadcenter.trendmicro.com/index.php?clk=latest&clkval=5180 5. Post-installation Configuration ============================================================================== No post-installation steps required. NOTE: Trend Micro recommends that you update your scan engine and virus pattern files immediately after installing the product. 6. Known Issues ============================================================================== There are no known issues for this hotfix release. 7. Release History ============================================================================== For more information about updates to this product, go to: http://www.trendmicro.com/download 7.1 Prior Hotfixes ============================================================================ Only this hotfix was tested for this release. Prior hotfixes were tested at the time of their release. [Hotfix 3942] (SEG-54401) Issue: Apex Central deploys the wrong action setting for IP-type User-Defined Suspicious Objects (UDSO) that have been added to the SO list using Custom Intelligence Automation APIs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that the correct action for IP-type USDOs are deployed to managed products. [Hotfix 3941] (SEG-54122) Issue: The pie chart in "DLP template Matches" widget displays the "Others" category even when the option is not selected. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix adds an additional filter logic to ensure that information categorized under "Others" does not appear in the pie chart when the option is not selected. [Hotfix 3940] (SEG-56525) Issue: An I18N issue is found in Users/Endpoints. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix resolves the I18N issue. [Hotfix 3939] (SEG-52169) Issue: Apex Central cannot overwrite policy settings when the Apex One agent changes a policy locally. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that policies are deployed normally. (SEG-52539) Enhancement: This hotfix ensures that sub services can restart normally after stopping unexpectedly. [Hotfix 3938] (SEG-48481) Issue: The Web Console Timeout setting does not work normally. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that the Web Console Timeout setting works normally. [Hotfix 3934] (SEG-53424) Issue 1: The Antivirus Pattern Compliance dashboard of Control Manager incorrectly shows "-1%". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This hotfix ensures that Antivirus Pattern Compliance dashboard correctly shows the true value. (SEG-46083) Issue 2: Apex Central could not deploy the policy to agents with an IP address in the IPv6 ISATAP format. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This hotfix ensures that Apex Central translates the IPv6 ISATAP address to binary so it can deploy policies to affected agents correctly. (SEG-47934) Issue 3: The "Product Connection Status" widget does not display any information. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This hotfix ensures that the "Product Connection Status" widget displays information normally. (VRTS-3302) Issue 4: The Dashboard is affected by Cross-Site Scripting (XSS) issues. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This hotfix resolves the issue. (SEG-55203) Issue 5: The scan exclusion settings for Apex One Security Agent child policies are lost if the parent policy is edited. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This hotfix resolves the issue. (SEG-52169) Issue 6: The Apex Central policy cannot overwrite an Apex One agent configuration that has been edited locally. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 6: This hotfix ensures that policies deployed to Apex One work normally. (SEG-45082) Issue 7: The license information of Trend Micro ServerProtect(TM) for Linux(TM) does not display in the product directory. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 7: This hotfix ensures that the ServerProtect for Linux license information does displays normally in the product directory. (SEG-39862) Issue 8: The MDR server receives incomplete log from Control Manager when network is slow. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 8: This hotfix would ensure that Control Manager send complete log to MDR server. (SEG-51696) Issue 9: In the "Log Maintenance" page, the number of product event logs always shows "0" even when there are logs in tb_AVEventLog. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 9: This hotfix ensures that the correct product event log count displays on the "Log Maintenance" page. (SEG-49098) Issue 10: When users add a User-Defined Suspicious Object with Scan Action set to "Block", the action will be saved as "Log" instead of "Block". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 10: This hotfix resolves the issue to ensure that users can save User-Defined Suspicious Objects with "Block" scan action normally. (SEG-51689) Issue 11: The endpoint count on Compliance Reports generated by Control Manager does not match the actual Trend Micro OfficeScan(TM) agent count. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 11: This hotfix ensures that the correct endpoint count appears in Control Manager Compliance Reports. (VRTS-3308), (VRTS-3300) Issue 12: An information leakage issue was found in the Dashboard. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 12: This hotfix resolves the issue. (SEG-2782), (SEG-3307), (SEG-3303), (SEG-2634), (SEG-3302), (SEG-3305), (SEG-3306) Issue 13: The Dashboard, LogQuery, Active Directory, and Compliance Settings pages of the Control Manager web console are affected by Reflected Cross-Site Scripting (XSS) issues. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 13: This hotfix removes these issues. (SEG-50646), (SEG-50211) Issue 14: An issue prevents Control Manager from applying Device Control Setting rules to the Trend Micro OfficeScan(TM) Agent Policy. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 14: This hotfix resolves the issue so Control Manager can apply Device Control Setting rules to the OfficeScan Agent Policy. (SEG-49142) Issue 15: A performance issue prevents the Control Manager web console from displaying Log Query results. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 15: This hotfix resolves the performance issue so Log Query results can be displayed normally. (SEG-52299) Issue 16: The AD sync function cannot work normally when there is a large number of AD Organizational Units (OU). ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 16: This hotfix ensures that the AD sync function can handle a large number of AD OUs. (SEG-53232) Issue 17: The information in exported CSV and XML files may not match the corresponding information in the Control Manager web console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 17: This hotfix ensures that the information in exported CSV and XML files match the information on the Control Manager web console. (SEG-50524) Issue 18: Administrators cannot deploy policy settings from Control Manager to Apex One. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 18: This hotfix resolves the issue to ensure that Control Manager successfully deploys policy settings to Apex One. (SEG-50431) Issue 19: The following Network Content Inspection Engine (NCIE) log headers are confusing users: * Traffic/Connection * Endpoint IP * Endpoint Port * Destination IP * Destination Port * Destination Domain * Target Process ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 19: This hotfix renames the following Network Content Inspection Engine (NCIE) log headers to minimize confusion: CONFUSING HEADING -> FIXED HEADING * Traffic/Connection -> Traffic Direction * Endpoint IP -> Local IP Address * Endpoint Port -> Local IP Address Port * Destination IP -> Remote IP Address * Destination Port -> Remote Address Port * Destination Domain -> Remote Domain * Target Process -> Process (SEG-46207) Enhancement 1: This hotfix updates the Deep Discovery Advanced Filter search mechanism to prevent a UI script injection error. (SEG-45978) Enhancement 2: This hotfix adds a new filter type "Security risk scan filter" in the log query page. (SEG-52911) Enhancement 3: This hotfix enables Apex Central to support Trend Micro Deep Discovery Director 5.0. (SEG-51288) Enhancement 4: This hotfix adds the option to configure Apex Central to use a proxy server for hub/node registration and synchronization. (SEG-54282) Enhancement 5: This hotfix enables Control Manager to support TMES 1.6 Update 6. (SEG-41891) Enhancement 6: Duplicate GUID Agents now are recorded. (SEG-54795) Enhancement 7: The update extends PHP execution time. (SEG-54570), (SEG-54549) Enhancement 8: Trend Micro Security for Mac policy deployment on reliability and optimizing for huge amount of agent counts environment. (SEG-52290) Enhancement 9: This hotfix ensures that when users trigger the duplicate policy tasks, redundant tasks are not sent. (SEG-52537) Enhancement 10: This hotfix ensures that LogForwarder enables the ping function only when the connection protocol is UDP. (SEG-50431) Enhancement 11: The following Network Content Inspection Engine (NCIE) log headers are confusing users: * Traffic/Connection * Endpoint IP * Endpoint Port * Destination IP * Destination Port * Destination Domain * Target Process ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 11: This hotfix renames the following Network Content Inspection Engine (NCIE) log headers to minimize confusion: CONFUSING HEADING -> FIXED HEADING * Traffic/Connection -> Traffic Direction * Endpoint IP -> Local IP Address * Endpoint Port -> Local IP Address Port * Destination IP -> Remote IP Address * Destination Port -> Remote Address Port * Destination Domain -> Remote Domain * Target Process -> Process (SEG-25746) Enhancement 12: This hotfix integrates Control Manager with version 9.1 of Trend Micro InterScan(TM) Messaging Security Suite (IMSS) for Linux(TM). (SEG-48870) Enhancement 13: This hotfix adds the new "Predictive Machine Learning Local File Model" pattern. (SEG-48870) Enhancement 14: This hotfix adds the new "Predictive Machine Learning Local File Model" pattern. (SEG-47616) Enhancement 15: This hotfix redefines the following variables in Trend Micro Data Loss Prevention(TM) (DLP) syslog content. Product_Entity/Endpoint - endpoint name Managing_Server – Trend Micro OfficeScan(TM) server name (SEG-41900) Enhancement 16: This hotfix adds the following two fields in the "Incident Details" page. * Last modified date * Last modified by (SEG-54068), (SEG-53261) Enhancement 17: This hotfix improves the performance of the policy detail pages of the Apex Central web console. (SEG-55171) Enhancement 18: Cloud service integration with Cloud App Security allows you to sweep protected mailboxes, correlate Active Directory user information, and generate Analysis Chains in Apex Central to better understand threat vectors and distribution across the entire network. [Hotfix 3926] (SEG-53424) Issue: The Antivirus Pattern Compliance dashboard of Control Manager incorrectly shows "-1%". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This hotfix ensures that Antivirus Pattern Compliance dashboard correctly shows the true value. (SEG-54068) Enhancement 1: This hotfix improves the performance of the policy detail pages of the Apex Central web console. (SEG-52290) Enhancement 2: This hotfix ensures that when users trigger the duplicate policy tasks, redundant tasks are not sent. 8. Contact Information ============================================================================== A license to Trend Micro software usually includes the right to product updates, pattern file updates, and basic technical support for one (1) year from the date of purchase only. After the first year, you must renew Maintenance on an annual basis at Trend Micro's then-current Maintenance fees. Contact Trend Micro via fax, phone, and email, or visit our website to download evaluation copies of Trend Micro products. http://www.trendmicro.com/us/about-us/contact/index.html NOTE: This information is subject to change without notice. 9. About Trend Micro ============================================================================== Smart, simple, security that fits As a global leader in IT security, Trend Micro develops innovative security solutions that make the world safe for businesses and consumers to exchange digital information. Copyright 2019, Trend Micro Incorporated. All rights reserved. Trend Micro, Control Manager, and the t-ball logo are trademarks of Trend Micro Incorporated and are registered in some jurisdictions. All other marks are the trademarks or registered trademarks of their respective companies. 10. License Agreement ============================================================================== View information about your license agreement with Trend Micro at: http://www.trendmicro.com/us/about-us/legal-policies/license-agreements/ Third-party licensing agreements can be viewed: - By selecting the "About" option in the application user interface - By referring to the "Legal" page of the Administrator's Guide