<<USE COURIER REGULAR 10 FONT IF YOU WOULD LIKE TO PRINT THIS DOCUMENT>>


  Trend Micro Incorporated                             February 10, 2017

  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  Trend Micro(TM) InterScan(TM) Messaging Security Virtual Appliance 9.1
                  Patch 1 Critical Patch - Build 1644
  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

     Contents
     ===================================================================

     1.  Overview of this Critical Patch Release

         1.1 Issues

         1.2 Files Included in this Release

     2.  Documentation Set

     3.  System Requirements

     4.  Installation

         4.1 Installing

         4.2 Uninstalling

     5.  Post-Installation Configuration

     6.  Known Issues

     7.  Release History

     8.  Contact Information

     9.  About Trend Micro

     10. License Agreements

     ===================================================================


  1. Overview of this Critical Patch Release
  ======================================================================
     This critical patch resolves vulnerabilities in the InterScan
     Messaging Security Virtual Appliance (IMSVA) 9.1 Patch 1 program.


     1.1 Issues
     ===================================================================
     This critical patch resolves the following issue:

     Issue:    IMSVA 9.1 Patch 1 is affected by certain vulnerabilities.
               ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~             
     Solution: This critical patch removes the vulnerabilities.


     1.2 Files Included in this Release
     ===================================================================

     A. Files for Current Issues
     -------------------------------------------------------------------
        Files for Issue
     -------------------------------------------------------------------
        Filename                                       Build No.
     -------------------------------------------------------------------
        LdapUserWSAction.class                         9.1.0.1644
        MTASettingAction.class                         9.1.0.1644
        MTASettingAction$1.class                       9.1.0.1644
        MTASettingAction$2.class                       9.1.0.1644
        MTASettingAction$3.class                       9.1.0.1644
        MTASettingAction$4.class                       9.1.0.1644
        MTASettingAction$5.class                       9.1.0.1644
        MTASettingAction$6.class                       9.1.0.1644
        MTASettingAction$7.class                       9.1.0.1644
        MTASettingAction$8.class                       9.1.0.1644
        MTASettingAction$9.class                       9.1.0.1644
        MTASettingAction$10.class                      9.1.0.1644
        MTASettingAction$11.class                      9.1.0.1644
        MTASettingAction$12.class                      9.1.0.1644
        MTASettingAction$13.class                      9.1.0.1644
        MTASettingAction$14.class                      9.1.0.1644
        MTASettingAction$15.class                      9.1.0.1644
        MTASettingAction$16.class                      9.1.0.1644
        MTASettingAction$17.class                      9.1.0.1644
        MTASettingAction$18.class                      9.1.0.1644
        MTASettingAction$19.class                      9.1.0.1644
        MTASettingAction$20.class                      9.1.0.1644
        MTASettingAction$21.class                      9.1.0.1644
        MTASettingAction$22.class                      9.1.0.1644
        MTASettingAction$23.class                      9.1.0.1644
        MTASettingAction$24.class                      9.1.0.1644
        MTASettingAction$25.class                      9.1.0.1644
        MTASettingAction$26.class                      9.1.0.1644
        Utility.class                                  9.1.0.1644
        smtp_tls_certificate_add.jsp                   9.1.0.1644
        validation.jsp                                 9.1.0.1644
        DkimSignAction.class                           9.1.0.1644
        DkimSignAction$1.class                         9.1.0.1644
        DkimSignAction$LogLevel.class                  9.1.0.1644
        DetailReportAction.class                       9.1.0.1644
        QtEditAreaAction.class                         9.1.0.1644
        imss6Errors.properties                         9.1.0.1644
        imss6Errors_en.properties                      9.1.0.1644
        quarantines_settings_detail.jsp                9.1.0.1644
        archive_settings_detail.jsp                    9.1.0.1644

     B. Files for Previous Issues
     -------------------------------------------------------------------
        Not applicable.


  2. Documentation Set
  ======================================================================
     To download or view electronic versions of the documentation set 
     for this product, go to http://docs.trendmicro.com.

     In addition to this Readme file, the documentation set for this 
     product includes the following:

     - Online Help: The Online Help contains an overview of features
       and key concepts, and information on configuring and
       maintaining IMSVA.
     
       To access the Online Help, go to http://docs.trendmicro.com

     - Installation Guide (IG): The Installation Guide contains
       information on requirements and procedures for installing and
       deploying IMSVA. 
     
     - Administrator's Guide (AG): The Administrator's Guide contains
       an overview of features and key concepts, and information on
       configuring and maintaining IMSVA.

 
  3. System Requirements
  ======================================================================
     Trend Micro recommends installing IMSVA 9.1 Patch 1 before 
     installing this critical patch, otherwise, the installation will 
     fail.


  4. Installation
  ======================================================================
     This section explains key steps for installing the critical patch.
 
     NOTE: You must install this critical patch on all computers running
           IMSVA 9.1.


     4.1 Installing
     ===================================================================
     To install:
 
     1. Upload the installation package (.tar.gz) to IMSVA using any 
        tool, for example, winscp.
 
     2. Connect to IMSVA through Secure Shell Interface (SSH) using any 
        tool, for example, putty, and log in using the root user 
        account. 

     3. Change to the folder where you uploaded the installation package 
        in step 1. 

     4. Extract the contents of the file using the following command:

        tar -zxvf imsva_91_en_criticalpatch1644.tar.gz

     5. Once the files have been extracted, run the following command
        to go to the installation directory.

        cd ./imsva_91_criticalpatch1644 
 
     6. Run the "./imssinst" command and follow the screen prompts to
        complete installation.

        The following message appears when the system completes the
        installation:

        "Installation is complete and related services are started."

     NOTE: For rollback purposes, the installation program moves the
           original IMSVA files to "/opt/trend/imss/patch/CP_B1644".


     4.2 Uninstalling
     ===================================================================
     To roll back to the previous build:

     1. Go to the folder where you extracted the critical patch files.

     2. Run the "./imssinst" command and follow the screen prompts to
        complete rollback.

        The following message appears when the system completes the
        rollback process:

        "Rollback is complete and related services are started."


  5. Post-installation Configuration
  ======================================================================
     No post-installation steps are required.

     NOTE: Trend Micro recommends that you update your scan engine and
           virus pattern files immediately after installing the product.


  6. Known Issues
  ======================================================================
     There are no known issues for this release.


  7. Release History
  ======================================================================
     For more information about updates to this product, go to:

     http://www.trendmicro.com/download


  8. Contact Information
  ======================================================================
     A license to Trend Micro software usually includes the right to
     product updates, pattern file updates, and basic technical support
     for one (1) year from the date of purchase only. After the first
     year, you must renew Maintenance on an annual basis at 
     Trend Micro's then-current Maintenance fees.

     Contact Trend Micro via fax, phone, and email, or visit our website
     to download evaluation copies of Trend Micro products.

     http://www.trendmicro.com/us/about-us/contact/index.html

     NOTE: This information is subject to change without notice.


  9. About Trend Micro
  ======================================================================
     Smart, simple, security that fits

     As a global leader in IT security, Trend Micro develops innovative
     security solutions that make the world safe for businesses and
     consumers to exchange digital information.

     Copyright 2017, Trend Micro Incorporated. All rights reserved.

     Trend Micro, InterScan, and the t-ball logo are trademarks of 
     Trend Micro Incorporated and are registered in some jurisdictions. 
     All other marks are the trademarks or registered trademarks of 
     their respective companies.


  10. License Agreements
  ======================================================================
     View information about your license agreement with Trend Micro at: 
    
     http://www.trendmicro.com/us/about-us/legal-policies/
       license-agreements

     Third-party licensing agreements can be viewed:
    
     - By selecting the "About" option in the application user interface

     - By referring to the "Legal" page of the Administrator's Guide
