<> Trend Micro Incorporated November 9th, 2023 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Trend Micro(TM) Deep Discovery Email Inspector 5.1 - GM English - Linux - 64 Bits Critical Patch - Build 1554 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Contents ================================================================ 1. Overview of This Critical Patch Release 1.1. Issues 1.2. Files Included in This Release 2. Documentation Set 3. System Requirements 4. Installation 4.1. Installing 4.2. Uninstalling 5. Post-installation Configuration 6. Known Issues 7. Release History 8. Contact Information 9. About Trend Micro 10. License Agreement ================================================================ 1. Overview of This Critical Patch Release ======================================================================== 1.1. Issues ==================================================================== This Critical Patch resolves the following issue(s): Issue 1: A potential vulnerability is found in the widget library used in Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix updates the widget library to protect against the vulnerability. 1.2. Files Included in This Release ==================================================================== There are no files included in this Critical Patch release. 2. Documentation Set ======================================================================== To download or view electronic versions of the documentation set for this product, go to http://docs.trendmicro.com - Online Help: The Online Help contains an overview of features and key concepts, and information on configuring and maintaining the product. To access the Online Help, go to http://docs.trendmicro.com - Installation Guide (IG): The Installation Guide contains information on requirements and procedures for installing and deploying the product. - Administrator's Guide (AG): The Administrator's Guide contains an overview of features and key concepts, and information on configuring and maintaining the product. - Getting Started Guide (GSG): The Getting Started Guide contains product overview, installation planning, installation and configuration instructions, and basic information intended to get the product 'up and running'. - Support Portal: The Support Portal contains information on troubleshooting and resolving known issues. - To access the Support Portal, go to http://success.trendmicro.com 3. System Requirements ======================================================================== 1. Deep Discovery Email Inspector 5.1 GM Build 1288 - English - Linux - x64 4. Installation ======================================================================== This section explains key steps for installing the Critical Patch. 4.1. Installing ==================================================================== No special instructions are provided. 4.2. Uninstalling ==================================================================== No special instructions are provided. 5. Post-installation Configuration ======================================================================== No post-installation steps are required. 6. Known Issues ======================================================================== Known issues in this release: #1 Known issue: [Reported at: DDEI 2.5.1 Service Pack 1 B1118] **Problem:** When only the "Connect to Smart Protection for Web Reputation Services" option is enabled on the "Administration > Scanning / Analysis > Other Settings > Smart Protection" screen, Deep Discovery Email Inspector does not perform connection tests for the following: * Web Inspection Service * Certified Safe Software Service * Community File Reputation **Solution:** On the "Administration > Scanning / Analysis > Other Settings > Smart Protection" screen, either clear the "Connect to Smart Protection for Web Reputation Services" checkbox or select both "Connect to Smart Protection for Web Reputation Services" and "Connect to global services using Smart Protection Server". #2 Known issue: [Reported at: DDEI 2.5.1 Service Pack 1 B1118] **Problem:** If Web Reputation Service and Community File Reputation are unreachable using IPv4 addresses in a dual-stack network, the Administration > System Maintenance > Network Services Diagnostics screen still displays the final resolved IPv4 addresses for these services. #3 Known issue: [Reported at: DDEI 2.5.1 Service Pack 1 B1118] **Problem:** When performing sandbox analysis using a Windows 10 image that requires higher system resources, the performance of Deep Discovery Email Inspector may be affected. **Solution:** Trend Micro recommends evaluating the system load capacity on Deep Discovery Email Inspector before using a Windows 10 sandbox environment for analysis. #4 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** Deep Discovery Email Inspector cannot receive incoming emails messages from other IPv6 subnets if the "Hosts in the same address class" option is enabled on the "Administration > Mail Settings > Limits and Exceptions" screen. #5 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** After daylight savings time changes to standard time on Deep Discovery Email Inspector, a duplicate time value appears on widgets. #6 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** While operating in SPAN/TAP mode, Deep Discovery Email Inspector cannot capture VLAN traffic that is encapsulated by Cisco Inter-Switch Link (ISL) protocol. #7 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** Deep Discovery Email Inspector is unable to import Virtual Analyzer images from an FTP server in active mode. Deep Discovery Email Inspector security does not allow this type of connection. **Solution:** Trend Micro recommends using FTP servers in passive mode, or importing the Virtual Analyzer images through another method. #8 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** Deep Discovery Email Inspector cannot read the subject of email messages in non-standard formats. **Solution:** Trend Micro recommends only routing standard-formatted email messages. Most mail user agents cannot read email messages in non-standard formats. #9 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** Time format in the following pages cannot be changed if "Date and time format" in the "System Settings > Time" page is changed. 1. "Last updated" time of each widget in "Dashboard > Add Widgets" 2. "Last update" time in widget preview screenshot 3. Time in email screenshot in "Detection" details. **Solution: ** 1. For "Last updated" time of each widget, it was a limitation of the widget framework used in Deep Discovery Email Inspector to show time in a corresponding format. 2. For "Last update" time in the widget preview screenshot, it is not possible to be changed due to the fact that the preview screenshot is a picture. 3. For the time shown in the email screenshot, it was created by the third-party email client. It depends on locale to show proper time format, not the user-defined time format. #10 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** Some risky URLs in an email may not be rewritten to be a link redirected to blocking or warning page, even if the same URLs have been rewritten, if there are more than 60 URLs in an email. **Solution:** Deep Discovery Email Inspector will at most extract 60 URLs from an email for scanning by default. If some of the URLs were scanned have a risk, they will be rewritten to a link that can redirect to a blocking or warning page. If the number of URLs in the email exceeds 60, some of URLs will not be rewritten due to the fact that they were not extracted by Deep Discovery Email Inspector. #11 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** In Deep Discovery Email Inspector 2.5, submission filters were updated to allow the user to select the specific file type groups to be analyzed. After upgrading from Deep Discovery Email Inspector 2.1, the specific file type group, (which includes file types selected in Version 2.1) will be automatically selected to be analyzed. Afterward, the other file types which belong to the specific file type group will be also selected for analyzing. **Solution:** Re-configure "Submission Filters" in the "Administration > Scanning / Analysis > Virtual Analyzer > Settings" page to select the necessary file type groups. #12 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** Deep Discovery Email Inspector cannot scan password-protected Office PowerPoint 2003 files. **Solution:** The encryption of Office PowerPoint 2003 files is different from later versions, and this format cannot be decrypted. #13 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** If the user enables "Connect to Smart Protection Server for Web Reputation Services" in the "Administration > Scanning / Analysis > Other Settings > Smart Protection" page, the internal Virtual Analyzer will not run the URL block reason query, Census query or the Certified Safe Software Service query. Additionally, it will not provide Smart Feedback. **Solution:** This is the configuration of the internal Virtual Analyzer. The user can either disable "Connect to Smart Protection for Web Reputation Services" in the "Administration > Scanning / Analysis > Other Settings > Smart Protection" page or enable both "Connect to Smart Protection Server for Web Reputation Services" and "Connect to global services using Smart Protection Server" in the "Administration > Scanning / Analysis > Other Settings > Smart Protection" page. #14 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** When integrated with Deep Discovery Analyzer, the final risk level of a malicious URL in Deep Discovery Email Inspector is different with the risk level in Deep Discovery Analyzer. **Solution: **Deep Discovery Analyzer can support several different products with varying risk levels, so for Deep Discovery Email Inspector, the risk level for malicious URLs returned by Virtual Analyzer (no matter whether either internal Virtual Analyzer or Deep Discovery Analyzer) will be downgraded one level. #15 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** After upgrading from Deep Discovery Email Inspector 2.1 to 2.5, the web console cannot be redirected to the login page automatically. Additionally, the certificate of Deep Discovery Email Inspector will be changed, therefore the user needs to confirm and accept the new certificate. **Solution:** Re-open Deep Discovery Email Inspector web console and login again. #16 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** For the same email attachment which has a different file name, after being analyzed by Deep Discovery Analyzer, the analysis reports for the two attachments will have the same file name. **Solution:** As the current specification of Deep Discovery Analyzer, it will return the cached analysis result for the same files or URLs to Deep Discovery Email Inspector. #17 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** Under Microsoft Edge and IE10, there will be two delete icons at the end of "Search" box in "Dashboard > Add Widgets" page. **Solution:** Microsoft IE10 and Edge will create a delete icon for "Search" box by default. However, Widget Framework has already created another delete icon. #18 Known issue: [Reported at: DDEI 2.5.0 GM B1300] **Problem:** Under the current specifications of Deep Discovery Email Inspector, Single-Sign-On from Control Manager is not supported under the HTTP protocol. **Solution:** Log into the Control Manager web console using HTTPS protocol. #19 Known issue: [Reported at: DDEI 2.6.0 GM B1298] When Deep Discovery Email Inspector connects to a proxy server that supports multiple HTTP authentication methods, some services (except ActiveUpdate and product license registration) may not function properly. On the Network Services Diagnostics screen, the service status becomes Unsuccessful. #20 Known issue: [Reported at: DDEI 2.6.0 GM B1298] When a message contains more than one suspicious file attachment with the same SHA1 value, the Detections screen displays only one entry for the multiple file attachments. #21 Known issue: [Reported at: DDEI 2.6.0 GM B1298] If the default gateway is configured on a network interface other than eth0 using CLISH, the web console does not display the current default gateway and DNS settings. 7. Release History ======================================================================== For more information about updates to this product, go to: http://www.trendmicro.com/download Prior Hotfixes ==================================================================== Only this Critical Patch was tested for this release. Prior hotfixes were tested at the time of their release. [Hotfix 1550] Enhancement 1: This Hotfix allows Deep Discovery Email Inspector to integrate with Trend Vision One to enable collaborative security analytics in a hybrid environment. [Hotfix 1542] Issue 1: When multiple policies are matched, Deep Discovery Email Inspector may not insert the selected stamps into email messages. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue. Issue 2: Processing some email messages may result in high system CPU usage. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves the issue. [Hotfix 1531] Issue 1: When adding a certificate in the web console, the system does not allow IP address input for the subject alternative name. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue. Issue 2: Email messages may stay in the processing queue for analysis by the external Virtual Analyzer. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves the issue. [Hotfix 1528] Enhancement 1: This Hotfix enhances the performance of the 'Delete All' function in Message Queue Logs page. Enhancement 2: This Hotfix updates the YARA module for enhanced malware protection. Enhancement 3: This Hotfix enhances Virtual Analyzer to support Microsoft OneNote file scanning. Enhancement 4: This Hotfix increases the file size limit for appliance firmware updates. [Hotfix 1520] Issue 1: Deep Discovery Email Inspector may incorrectly block email messages with attachments based on content filtering rules. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue. Issue 2: Deep Discovery Email Inspector may not be able to extract the "To" address from email headers. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves the issue. Issue 3: Deep Discovery Email Inspector may not submit some attachments with suspicious scripts to Virtual Analyzer for analysis. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix ensures that Virtual Analyzer analyzes all attachments with suspicious scripts. Enhancement 1: This Hotfix updates the system timezone module to remove Daylight Savings Time (DST) for Mexico. [Hotfix 1512] Issue 1: Users are unable to submit email samples with encoded headers Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves this issue. Issue 2: Some password-protected files may not be scanned in Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves this issue. Issue 3: A vulnerability (CVE-2023-22809) is found in the component sudo. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix updates the component to resolve the vulnerability. Issue 4: After a system reboot, some processes may not be started properly in Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves this issue. Issue 5: A vulnerability (CVE-2021-3711) is found in the OpenSSL library used in Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This Hotfix updates the OpenSSL library to resolve the vulnerability. Issue 6: Only replicate policy settings from Deep Discovery Director in hidden page may not function properly. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 6: This Hotfix fixed this issue by reloading policy after replication. Issue 7: Sometimes the debug log file of Message Tracking Logs may be too large because of failed log rotation. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 7: Add log file size monitor to ensure that the log file can be rotated successfully. Issue 8: Message Tracking Log may be not synchronized between Deep Discovery Email Inspector and Deep Discovery Director. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 8: Add timeout mechanism in Message Tracking Log formating before synchronizing with Deep Discovery Director. Issue 9: Sometimes users may be unable to release quarantined messages if they have changed port-binding settings. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 9: This hotfix resolves the issue. Enhancement 1: This hotfix enables Deep Discovery Email Inspector to support the Intel(TM) E810 100G Low Profile NIC card. Enhancement 2: This Hotfix enabes the telnet and nslookup commands only in privilege mode in CLISH. Enhancement 3: This Hotfix updates the default value of bounce_queue_lifetime from 0 to 1 in hidden page. Enhancement 4: This Hotfix upgrades the U-Sandbox module to version 5.7.1264 to support Windows 10 21H2. [Hotfix 1493] Issue 1: Only replicate policy settings from Deep Discovery Director in hidden page may not function properly. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix fixed this issue by reloading policy after replication. Issue 2: Sometimes the debug log file of Message Tracking Logs may be too large because of failed log rotation. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: Add log file size monitor to ensure that the log file can be rotated successfully. Issue 3: Message Tracking Log may be not synchronized between Deep Discovery Email Inspector and Deep Discovery Director. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: Add timeout mechanism in Message Tracking Log formating before synchronizing with Deep Discovery Director. Issue 4: Sometimes users may be unable to release quarantined messages if they have changed port-binding settings. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This hotfix resolves the issue. Enhancement 1: This Hotfix enabes the telnet and nslookup commands only in privilege mode in CLISH. Enhancement 2: This Hotfix updates the default value of bounce_queue_lifetime from 0 to 1 in hidden page. Enhancement 3: This Hotfix upgrades the U-Sandbox module to version 5.7.1264 to support Windows 10 21H2. [Hotfix 1486] Issue 1: Users are unable to submit email samples with encoded headers Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves this issue. Issue 2: Some password-protected files may not be scanned in Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves this issue. Issue 3: A vulnerability (CVE-2023-22809) is found in the component sudo. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix updates the component to resolve the vulnerability. Issue 4: After a system reboot, some processes may not be started properly in Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves this issue. Issue 5: A vulnerability (CVE-2021-3711) is found in the OpenSSL library used in Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This Hotfix updates the OpenSSL library to resolve the vulnerability. Enhancement 1: This hotfix enables Deep Discovery Email Inspector to support the Intel(TM) E810 100G Low Profile NIC card. [Hotfix 1474] Issue 1: DMARC authentication may be unsuccessful when the contents of the "From" field in the email header is wrapped. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves this issue. Issue 2: Deep Discovery Email Inspector does not insert the message stamp if the email message body is empty. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix updates the related component to resolve this issue. Enhancement 1: This Hotfix updates the HTTP headers for the Apache web server to enhance product security. [Hotfix 1472] Issue 1: Vulnerabilities (CWE-285 and CWE-79) are found in Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix updates the related modules to resolve the vulnerabilities. Issue 2: After changing the address group settings, policy address group exceptions may not work properly. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves the issue. Issue 3: A vulnerability (CVE-2021-41617) is found in OpenSSH. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix updates the related modules to resolve the vulnerability. Enhancement 1: This Hotfix adds a new OID for deferred queue notification in SNMP query. Enhancement 2: This Hotfix enables support for numeric input for keyword and expression criteria in content filtering rules. Enhancement 3: This Hotfix enhances the debug log feature to synchronize with Deep Discovery Director for improved troubleshooting. Enhancement 4: This Hotfix upgrades the U-Sandbox module to version 5.7.1261 to support Windows 10 21H1. Enhancement 5: This Hotfix adds the telnet and nslookup commands in CLISH. [Hotfix 1466] Issue 1: Vulnerabilities (CWE-285 and CWE-79) are found in Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix updates the related modules to resolve the vulnerabilities. Issue 2: After changing the address group settings, policy address group exceptions may not work properly. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves the issue. Issue 3: A vulnerability (CVE-2021-41617) is found in OpenSSH. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix updates the related modules to resolve the vulnerability. Issue 4: DMARC authentication may be unsuccessful when the contents of the "From" field in the email header is wrapped. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves this issue. Enhancement 1: This Hotfix adds a new OID for deferred queue notification in SNMP query. Enhancement 2: This Hotfix enables support for numeric input for keyword and expression criteria in content filtering rules. Enhancement 3: This Hotfix enhances the debug log feature to synchronize with Deep Discovery Director for improved troubleshooting. Enhancement 4: This Hotfix upgrades the U-Sandbox module to version 5.7.1261 to support Windows 10 21H1. Enhancement 5: This Hotfix adds the telnet and nslookup commands in CLISH. [Hotfix 1457] Issue 1: A DNS query timeout causes SPF (Sender Policy Framework) checks to be unsuccessful in Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue. Issue 2: A vulnerability (CVE-2022-40674) is found in the component libexpat. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix updates the libexpat component to resolve the vulnerability. Issue 3: Vulnerabilities (CWE-285 and CWE-79) are found in Deep Discovery Email Inspector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix updates the related modules to resolve the vulnerabilities. Issue 4: When network teaming is enabled, Deep Discovery Email Inspector does not display the correct network interface status information. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves the issue. Issue 5: When more than three network interfaces are in use on Deep Discovery Email Inspector, the user may not be able to collect network data on the hidden page. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This Hotfix resolves the issue. Enhancement 1: This Hotfix enhances the System Logs to display pattern versions for update events. Enhancement 2: This Hotfix updates the debug log module to enhance product security. [Hotfix 1448] Issue 1: When deleting messages with a long message ID, Deep Discovery Email Inspector may not be able to include related EUQ audit logs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue. Issue 2: Deep Discovery Email Inspector is unable to send attachments from email messages with an invalid format to Virtual Analyzer for analysis. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves the issue to ensure that Virtual Analyzer can analyze the attachments. Issue 3: The Database Import function on the hidden web console screen may not work properly. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix resolves the issue. Issue 4: Deep Discovery Email Inspector may not be able to decrypt some encrypted PDF files. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves the issue. Issue 5: The ActiveUpdate module may not work properly when the certificate expires in 2025. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This Hotfix updates the local ActiveUpdate module to resolve the issue. Enhancement 1: This Hotfix enhances the debug logs for message tracking and web console services for easy troubleshooting. [Hotfix 1435] Issue 1: After performing a configuration backup and restore, DKIM signing may not function properly. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue. Issue 2: An issue related to Apache Tomcat sessions may cause the system CPU usage level to stay at 100%. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves the issue. Issue 3: The delivery status in message tracking logs is incorrect for expired email messages without the envelop sender information. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix updates the related modules to indicate the correct delivery status ('Delivery unsuccessful'). Issue 4: An unexpected error may occur when the task_monitor service starts. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves the issue. Issue 5: Deep Discovery Email Inspector may not be able to import policies from another Deep Discovery Email Inspector appliance with an older hotfix version. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This Hotfix resolves the issue. Issue 6: A vulnerability (CVE-2022-2068) is found in the "c_rehash" script. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 6: This Hotfix updates the related modules to use the openssl rehash script instead of the system c_rehash script. Issue 7: Virtual Analyzer may reject email messages with the unsupported SMTPUTF8 extension. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 7: This Hotfix disables the SMTPUTF8 setting in postfix to resolve the issue. Issue 8: An issue may prevent users from saving SNMP password setting successfully. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 8: This Hotfix resolves this issue. Enhancement 1: This Hotfix enhances the debug logs for Message Tracking Logs and Syslog services. Enhancement 2: This Hotfix adds support for a new file type (.shtml) in Virtual Analyzer. [Hotfix 1426] Issue 1: If the date and time format is set to "en-GB", users are unable to add an identity provider in the web console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue. Issue 2: Deep Discovery Email Inspector may sometimes send additional SNMP traps for alert events. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves the issue. Issue 3: False-positive detections may occur when scanning redirected URLs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix resolves the issue. Issue 4: Deep Discovery Email Inspector may not be able to deliver email messages containing large attachments. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves the issue. Issue 5: When configuring a policy, the system may not save the priority order for content filtering rules properly. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This Hotfix ensures that the priority order is correct when saving a policy. Issue 6: An issue may prevent users from querying Message Tracking logs successfully. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 6: This Hotfix resolves the issue. Enhancement 1: This Hotfix provides the option on the hidden page to import only policy settings replicated from Deep Discovery Director and set Deep Discovery Email Inspector to bypass policy replication from Deep Discovery Director when policy settings are the same. [Hotfix 1417] Issue 1: After a system reboot, the scanner service may not start properly. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue so the scanner service can start properly after a system reboot. Issue 2: On the Message Tracking Logs screen, the status for some email messages is always "Queued for sandbox analysis". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves the issue. Enhancement 1: This Hotfix provides a hidden option to set the proxy authentication type. [Hotfix 1411] Issue 1: Deep Discovery Email Inspector is unable to perform the DKIM verification process successfully for some email messages. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue. Issue 2: The system displays incorrect time zone information for some cities on the management console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves the issue. Issue 3: A known vulnerability (CVE-2022-0778) is detected in the OpenSSL library version the system is using. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix updates the OpenSSL library version to patch the vulnerability. Issue 4: An issue may prevent users from querying Message Tracking logs successfully. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves the issue. Enhancement 1: This Hotfix provides a new option in the hidden page to set the system to not archive email message locally if it only matches content filtering rule with the "pass and tag" action. [Hotfix 1407] Issue 1: An issue may prevent users from querying Message Tracking logs successfully. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue. Issue 2: U-Sandbox can not detect some types of malicious URLs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: Upgrade U-Sandbox version to 5.7.1235 to resolve the issue. Issue 3: Users may be able to import an invalid certificate into Deep Discovery Email Inspector, which causes the web portal to be inaccessible. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix resolves the issue. Issue 4: Exported CSV files for detected messages may sometimes be empty after users change the time range period. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves the issue. Issue 5: LDAP synchronization may sometimes stop working. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This Hotfix resolves the issue. Issue 6: Malicious emails may be not detected in sandbox analysis. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 6: This Hotfix upgrades the Trend Micro URL Filtering Engine (TMUFE) to resolve this issue. Issue 7: Some syslog servers cannot correctly parse certain types of generated syslog files by the internal Virtual Analyzer. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 7: This Hotfix resolves this issue by wrapping the Virtual Analyzer syslogs with "\n". Issue 8: The internal Virtual Analyzer network check may fail when another test runs at the same time. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 8: This Hotfix resolves this issue. Enhancement 1: This Hotfix allows users to export detailed message delivery information on the Message Tracking log screen. Enhancement 2: This Hotfix replaces the term "Anonymous" with "Protected" in the web console. Enhancement 3: This Hotfix enhances the detection capability of password-protected files in Deep Discovery Email Inspector. Enhancement 4: This Hotfix enables Deep Discovery Email Inspector to support subdomains with an asterisk in the policy rules setting for email addresses (for example, "`*@*.test.com`" and "`*@*test.com`"). [Hotfix 1397] Issue 1: An issue may prevent users from querying Message Tracking logs successfully. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue. Issue 2: U-Sandbox can not detect some types of malicious URLs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: Upgrade U-Sandbox version to 5.7.1235 to resolve the issue. Enhancement 1: This Hotfix allows users to export detailed message delivery information on the Message Tracking log screen. Enhancement 2: This Hotfix replaces the term "Anonymous" with "Protected" in the web console. Enhancement 3: This Hotfix enhances the detection capability of password-protected files in Deep Discovery Email Inspector. [Hotfix 1394] Issue 1: Email messages sometimes stay in the processing queue for Virtual Analyzer analysis. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix updates the process monitoring mechanism to resolve this issue. Issue 2: An issue prevents users from deleting messages by clicking the "Delete All" button on the Queue Management screen. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves this issue. Enhancement 1: This Hotfix enables support for a new Dell hardware model and sets the web console to display "Deep Discovery Email Inspector 7300 V1". Enhancement 2: This Hotfix removes passwords from debug logs for enhanced security. [Hotfix 1386] Issue 1: Exported CSV files for detected messages may sometimes be empty after users change the time range period. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue. Issue 2: LDAP synchronization may sometimes stop working. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves the issue. Issue 3: Malicious emails may be not detected in sandbox analysis. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix upgrades the Trend Micro URL Filtering Engine (TMUFE) to resolve this issue. Issue 4: Some syslog servers cannot correctly parse certain types of generated syslog files by the internal Virtual Analyzer. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves this issue by wrapping the Virtual Analyzer syslogs with "\n". Issue 5: Users may be able to import an invalid certificate into Deep Discovery Email Inspector, which causes the web portal to be inaccessible. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This Hotfix resolves the issue. Issue 6: The internal Virtual Analyzer network check may fail when another test runs at the same time. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 6: This Hotfix resolves this issue. Enhancement 1: This Hotfix enables Deep Discovery Email Inspector to support subdomains with an asterisk in the policy rules setting for email addresses (for example, "`*@*.test.com`" and "`*@*test.com`"). [Hotfix 1380] Enhancement 1: This Hotfix enables Deep Discovery Email Inspector to support subdomains with an asterisk in the policy rules setting for email addresses (for example, "`*@*.test.com`" and "`*@*test.com`"). [Critical Patch 1372] Issue 1: Active Update and some global services have stopped working because the backend server certificate has changed. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Critical Patch updates the local certificate to resolve the issue. [Hotfix 1369] Issue 1: Sometimes, Time-of-Click URL rewriting may corrupt the HTML content of an email message. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue. Issue 2: Deep Discovery Email Inspector may not be able to accurately rate the risk level of redirected URLs during scanning. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix updates the URL prefilter in Virtual Analyzer to enable it to handle malicious redirected URLs properly. Issue 3: An issue may prevent users from querying Message Tracking logs successfully. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix resolves the issue. [Hotfix 1362] Issue 1: Some syslogs follow a different time zone from the system time zone. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix ensures that the syslog uses the system time zone. Issue 2: The libspf2 library is affected by a CVE-2021-20314 vulnerability. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix updates the libspf2 library to resolve the vulnerability. Issue 3: Sometimes, email messages remain in the queue for Sandbox Analysis status. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix updates the thread monitoring mechanism to prevent this issue. Issue 4: Sometimes, DMARC authentication fails when the contents of the "From" email header is text wrapped. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves this issue. Issue 5: Deep Discovery Email Inspector may reject normal authentic email messages when the "Reject messages to unknown recipients" feature is enabled. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This Hotfix resolves this issue. Issue 6: Report notifications that use an external SMTP server does not support TLS 1.2. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 6: This Hotfix resolves this issue. Issue 7: Deep Discovery Email Inspector may recognize some unencrypted PDF files as encrypted documents. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 7: This Hotfix updates Usandbox to version 5.7.1224 to resolve this issue. Enhancement 1: This Hotfix adds real-time LDAP connection status checks in Connection Issue alerts. Enhancement 2: This Hotfix enables Deep Discovery Email Inspector to remove email messages from the message queue based on sender information. [Hotfix 1339] Issue 1: Duplicate Message Tracking logs are generated when a message is deleted from the message queue. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves this issue. Issue 2: Sometimes, Deep Discovery Email Inspector returns a "queue file write error" to the sender of an email message. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves this issue. Issue 3: Garbled characters display on the dashboard when users login to the web console by Single Sign-on (SSO). ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix resolves this issue. Issue 4: Deep Discovery Email Inspector may recognize some encrypted PDF files as unencrypted documents. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves this issue. Issue 5: Sometimes, the exported Detections log file is empty. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This Hotfix resolves this issue. Enhancement 1: This Hotfix adds a new setting in the hidden page to disable the email header extraction from MIME file attachments. Enhancement 2: This Hotfix adds an audit log for viewing Virtual Analyzer reports. Enhancement 3: This Hotfix adds a new setting in the hidden page to enable Deep Discovery Email Inspector to scan a downloaded URL linked password-protected file with the password information obtained from the corresponding email message. [Hotfix 1331] Issue 1: An issue prevents Deep Discovery Email Inspector from detecting certain special URLs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the issue so malicious URLs are detected properly. Issue 2: The scanner process may stop unexpectedly while scanning some special EGG file attachments. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix ensures that Deep Discovery Email Inspector handles EGG file attachments properly. Issue 3: An issue prevents certain information from displaying properly on the console when users change the policy order. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix resolves this issue. Enhancement 1: This Hotfix adds the delivered host information to the message tracking logs query page. [Hotfix 1323] Issue 1: The scanner process may stop unexpectedly during DKIM signing of some special email samples. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves this issue. [Hotfix 1319] Issue 1: The sender filtering process does not match the header address with the Approved/Blocked Senders list. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves this issue. Issue 2: Email messages may be quarantined unexpectedly because of a time-out issue or error in the Virtual Appliance. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix upgrades Usandbox to version 5.7.1221 to resolve this issue. Issue 3: Some settings in the Notifications template are lost after the configuration is exported and imported. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix resolves this issue. Issue 4: The OpenSSL library is affected by a CVE-2021-3711 vulnerability. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix upgrades OpenSSL to resolve the vulnerability. Issue 5: An issue prevents users from querying Message Tracking logs for some special email messages. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This Hotfix resolves this issue. Issue 6: Some encrypted PDF files are detected as unencrypted documents. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 6: This Hotfix resolves this issue. [Hotfix 1309] Issue 1: The Time-of-Click Protection feature changes the location of URLs in the email body. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves this issue. Issue 2: The Sender Filtering feature inserts X-headers into the email body. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves this issue. Issue 3: Inaccurate Last Update time information displays in the TLS settings page. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix resolves this issue. Issue 4: Email Reputation Services does not work normally sometimes. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves this issue. [Hotfix 1305] Issue 1: Network Service Diagnostic does not complete and remains in testing. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix ensures that Network Diagnostic Process proceeds normally. Enhancement 1: This Hotfix enables Deep Discovery Email Inspector to extract garbled URLs. [Hotfix 1304] Issue 1: SNMP query results always indicate that the length of the Message Delivery Queue is "0". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves this issue. Issue 2: Sometimes, an issue prevents the scanner service from starting after a pattern update. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves the issue so the scanner service can start normally after a pattern update. Issue 3: Advanced Threat Scan Engine cannot support some PDF's encryption algorithm and miss judges them as password protected files. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: Upgrade U-Sandbox version to 5.7.1216 to resolve the issue. Enhancement 1: This Hotfix enables Deep Discovery Email Inspector to extract and detect URLs in an email calendar. [Hotfix 1299] Issue 1: The message tracking log export function may be vulnerable to Formula Injection. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves the vulnerability. Issue 2: Deep Discovery Email Inspector sends URLs that contain double quotation marks (") to the Web Reputation Service (WRS) which can cause false detections. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves this issue. Issue 3: An issue prevents users from querying Message Tracking logs for some special email messages. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix resolves this issue. Issue 4: The information in the action results column in Detected Messages reports on the exported file do not match the information on the web console when the "Quarantine a copy of the original message when stripping attachments or redirecting links" option is enabled on the policy. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves this issue. [Hotfix 1297] Issue 1: Certain archived Microsoft(TM) Windows(TM) executable files cannot be sent to the internal virtual analyzer for analysis. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 1: This Hotfix resolves this issue. Issue 2: Sometimes, an unexpected syslog exception error triggers a disk full issue. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 2: This Hotfix resolves this issue. Issue 3: Message Tracking Log timestamps in Deep Discovery Director are one hour behind the corresponding timestamps in Deep Discovery Email Inspector during Daylight Savings Time (DST). ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 3: This Hotfix ensures that the Message Tracking Log timestamps are consistent between Deep Discovery Director and Deep Discovery Email Inspector. Issue 4: Sometimes, an issue prevents Deep Discovery Email Inspector from executing the service-status command. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 4: This Hotfix resolves the issue. Issue 5: The "Reject messages to unknown Recipients" feature does not work properly because the LDAP checking mechanism is case-sensitive. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution 5: This Hotfix resolves this issue. 8. Contact Information ======================================================================== A license to Trend Micro software usually includes the right to product updates, pattern file updates, and basic technical support for one (1) year from the date of purchase only. After the first year, you must renew Maintenance on an annual basis at Trend Micro's then-current Maintenance fees. Contact Trend Micro via fax, phone, and email, or visit our website to download evaluation copies of Trend Micro products. https://www.trendmicro.com/en_us/contact.html NOTE: This information is subject to change without notice. 9. About Trend Micro ======================================================================== Smart, simple, security that fits. As a global leader in IT security, Trend Micro develops innovative security solutions that make the world safe for businesses and consumers to exchange digital information. Copyright 2023, Trend Micro Incorporated. All rights reserved. Trend Micro, the t-ball logo, OfficeScan, Trend Micro Security (for Mac), Control Manager, Trend Micro Apex One, and Trend Micro Apex Central are trademarks of Trend Micro Incorporated and are registered in some jurisdictions. All other product or company names may be trademarks or registered trademarks of their owners. 10. License Agreement ======================================================================== View information about your license agreement with Trend Micro at: https://www.trendmicro.com/en_us/about/legal.html Third-party licensing agreements can be viewed: - By selecting the "About" option in the application user interface - By referring to the "Legal" page of the Administrator's Guide