{"id":244397,"date":"2021-02-02T22:56:44","date_gmt":"2021-02-02T21:56:44","guid":{"rendered":"https:\/\/www.borncity.com\/blog\/?p=244397"},"modified":"2022-09-14T23:26:30","modified_gmt":"2022-09-14T21:26:30","slug":"kritische-updates-fr-trend-micro-apex-one-officescan-und-wfbs-10","status":"publish","type":"post","link":"https:\/\/borncity.com\/blog\/2021\/02\/02\/kritische-updates-fr-trend-micro-apex-one-officescan-und-wfbs-10\/","title":{"rendered":"Kritische Updates f&uuml;r Trend Micro Apex One, OfficeScan und WFBS 10"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline;\" src=\"https:\/\/borncity.com\/blog\/wp-content\/uploads\/2015\/01\/Schutz.jpg\" width=\"40\" height=\"47\" align=\"left\" \/>Der Hersteller Trend Micro hat kritische Sicherheitsupdates f\u00fcr seine Antivirus-L\u00f6sungen Antivirus for Mac, Apex One, OfficeScan und Worry-Free Business Security freigegeben. Diese sollen eine Schwachstelle beheben, mit der sich Malware erh\u00f6hte Rechte verschaffen kann.<\/p>\n<p><!--more--><\/p>\n<p>Ich bin bereits die Tage bei administrator.de auf <a href=\"https:\/\/administrator.de\/knowledge\/trendmicro-wfbs-10-erneuter-patch-verfuegbar-643461.html\" target=\"_blank\" rel=\"noopener\">diesen Post<\/a> gesto\u00dfen, in dem ein neuer Patch f\u00fcr TrendMicro WFBS 10 avisiert wurde. Der Patch <em>WFBS_100_SP1_WIN_ALL_Patch_2274.exe <\/em>wurde bereits zum 20. Januar 2021 <a href=\"https:\/\/downloadcenter.trendmicro.com\/index.php?regs=de&amp;prodid=39\" target=\"_blank\" rel=\"noopener\">freigegeben<\/a>.\u00a0 Gem\u00e4\u00df den <a href=\"https:\/\/files.trendmicro.com\/documentation\/WFBS_100_SP1_WIN_ALL_Patch_2274.txt\" target=\"_blank\" rel=\"noopener\">Release Notes<\/a> behebt der Patch folgende Probleme:<\/p>\n<blockquote><p>2.2 Resolved Known Issues<br \/>\n===================================================================<br \/>\nThis patch resolves the following issues:<\/p>\n<p>Issue 1:\u00a0\u00a0\u00a0\u00a0 (SEG-94767)<br \/>\nThe copyright year on the Worry-Free Business Security<br \/>\nweb console is 2020.<br \/>\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~<br \/>\nSolution 1:\u00a0 This patch updates the copyright year to 2021.<\/p>\n<p>Issue 2:\u00a0\u00a0\u00a0\u00a0 (SEG-96044)(SEG-93735)<br \/>\nSome Adobe Acrobat DC Subscriptions issues have been<br \/>\ndetected.<br \/>\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~<br \/>\nSolution 2:\u00a0 This patch resolves the issues.<\/p>\n<p>Issue 3:\u00a0\u00a0\u00a0\u00a0 (SEG-95853)<br \/>\nA Citrix Gateway VPN issue has been detected.<br \/>\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~<br \/>\nSolution 3:\u00a0 This patch resolves the issue.<\/p>\n<p>Issue 4:\u00a0\u00a0\u00a0\u00a0 (SEG-96556)<br \/>\nAn issue prevents the Worry-Free Business Security<br \/>\nserver from applying updates manually from the<br \/>\n\"Intranet location containing a copy of the current<br \/>\nfile\" update source.<br \/>\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~<br \/>\nSolution 4:\u00a0 This patch resolves the issue.<\/p>\n<p>Issue 5:\u00a0\u00a0\u00a0\u00a0 (SEG-92003)<br \/>\nPing and Nslookup commands encounter crash when Forefront<br \/>\nThreat Management Gateway(TMG) client is installed<br \/>\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~<br \/>\nSolution 5:\u00a0 This patch resolves the issue.<\/p><\/blockquote>\n<p>Im heise-Newsticker habe ich zudem <a href=\"https:\/\/www.heise.de\/news\/Angreifer-koennten-Nutzerrechte-in-Schutzloesungen-von-Trend-Micro-erhoehen-5043146.html\" target=\"_blank\" rel=\"noopener\">diesen Artikel<\/a> gesehen, der auf angreifbare Schwachstellen in den Trend Micro-Produkten Antivirus for Mac, Apex One, OfficeScan und Worry-Free Business Security hinweist. Es gibt eine als hoch eingestufte Schwachstelle (CVE-2021-25249), \u00fcber die Angreifer Informationen auslesen und ggf. erh\u00f6hte Rechte erlangen k\u00f6nnten. Details und die Sicherheitsupdates, die teilweise zum 28. Januar 2021 freigegeen wurden, lassen sich den nachfolgenden Trend Micro-Artikeln entnehmen.<\/p>\n<ul>\n<li><a href=\"https:\/\/success.trendmicro.com\/solution\/000284202\" target=\"_blank\" rel=\"noopener\">Security Bulletin for Trend Micro Apex One and Apex One as a Service<\/a><\/li>\n<li><a href=\"https:\/\/success.trendmicro.com\/solution\/000284205\" target=\"_blank\" rel=\"noopener\">Security Bulletin for Trend Micro OfficeScan XG SP1<\/a><\/li>\n<li><a href=\"https:\/\/success.trendmicro.com\/solution\/000284206\" target=\"_blank\" rel=\"noopener\">Security Bulletin for Trend Micro Worry-Free Business Security 10 SP1 and Worry-Free Business Security Services<\/a><\/li>\n<li><a href=\"https:\/\/helpcenter.trendmicro.com\/en-us\/article\/TMKA-10191\" target=\"_blank\" rel=\"noopener\">Trend Micro Antivirus for Mac 2021 (Consumer) Memory Exhaustion Denial-Of-Service Vulnerability<\/a><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Der Hersteller Trend Micro hat kritische Sicherheitsupdates f\u00fcr seine Antivirus-L\u00f6sungen Antivirus for Mac, Apex One, OfficeScan und Worry-Free Business Security freigegeben. Diese sollen eine Schwachstelle beheben, mit der sich Malware erh\u00f6hte Rechte verschaffen kann.<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[426,161],"tags":[4328,4315,4313],"class_list":["post-244397","post","type-post","status-publish","format-standard","hentry","category-sicherheit","category-virenschutz","tag-sicherheit","tag-update","tag-virenschutz"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/244397","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=244397"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/244397\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=244397"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=244397"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=244397"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}