[German]Trend Micro has released patch 2190 for its Worry Free Business Security 10.0 (TM WFBS 10.0) for Windows 10.
Advertising
Trend Micro Worry-Free Business Security (TM WFBS) protects small businesses, users and assets from data theft, identity theft, risky websites, and spam (Advanced version only). Blog reader Tom B. kindly sent me a short email that the package has been updated.
TM WFBS 10.0 Service Pack 1 Patch – Build 2190
TM WFBS 10.0 Service Pack 1 Patch – Build 2190
The patch (WFBS_100_SP1_WIN_ALL_Patch_2190.exe) was released on 16 March 2020. It supports the Windows 10 November 2019 Update (Version 1909) on clients. In the readme file TM further states that the patch fixes the following important errors:
Issue 1: (VRTS-3690)
Worry-Free Business Security is affected by a Local
Privilege Escalation vulnerability and an IPC
Authentication Bypass vulnerability.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Solution 1: This patch resolves these vulnerabilities.
Issue 2: (SEG-65986)
There is a typographical error on the agent
installation screen.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Solution 2: This patch corrects typographical error on the agent
installation screen.
Issue 3: (SEG-62792)
An issue prevents users from enabling the "Antispam â€"
Spam detections in total messages received exceed"
notification.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Solution 3: This patch resolves the issue to ensure that the
notification can be enabled successfully.
Issue 4: (SEG-63050)
An Apache(TM) Service error appears in the system
eventlog.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Solution 4: This patch resolves the Apache error.
Issue 5: (SEG-63427)(SEG-62691)
An "AgentStatusDC.exe" error appears on the event
viewer.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Solution 5: This patch resolves the "AgentStatusDC.exe" error.
Advertising
Issue 6: (SEG-65938)
The Trend Micro Security Agent listener service may
not shutdown properly after receiving a pre-shutdown
command.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Solution 6: This patch resolves this issue.
Issue 7: (VRTS-3847)
Certain vulnerabilities in Worry-Free Business
Security may allow dll side loading at
libcurl/openssl.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Solution 7: This patch resolves the vulnerabilities to prevent
non-privileged access.
Issue 8: (VRTS-3747)(VRTS-3749) (related to VRTS-3744)
The combination of two possible 0-day directory
traversal vulnerabilities leads to a Remote Code
Execution (RCE) vulnerability which can grant attackers
SYSTEM privileges to the management server.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Solution 8: This patch updates the Worry-Free Business Security
server program to remove the vulnerability.
Issue 9: (VRTS-4188)
The Worry-Free Business Security is affected by a
Directory Traversal Authentication Bypass
Vulnerability.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Solution 9: This Patch updates the Worry-Free Business
Security server program to remove the vulnerability.
The file WFBS_100_SP1_WIN_ALL_Patch_2190.exe can be downloaded from this Trend Micro Site via the register tab Produkt Patch.
