Remote code execution vulnerability found in Apache Tomcat for Windows
Almots all the major versions (Apache Tomcat 7.x, Apache Tomcat 8.x and Apache Tomcat 9.x ) of the widely used server application Apache Tomcat, are affected with a remote code execution vulnerability (CVE-2019-0232). A Remote code execution vulnerability is a critical vulnerability that allows an attacker to access your system and make changes, no matter where they are. This vulnerability is fixed in the latest update for each Apache Tomcat release. Thererefore, it is imperative that you detect
Patch Manager Plus now supports April 2019 Patch Tuesday updates
Good day. A quick update on the April 2019 Patch Tuesday. New Security Bulletins : 2019-04 Security Update for Adobe Flash Player for Windows (KB4493478) 2019-04 Security Only Quality Update for Windows Server 2008 (KB4493458) 2019-04 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4493448) 2019-04 Security Only Quality Update for Windows Server 2012 for x64-based Systems (KB4493450) 2019-04 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4493467)
Desktop Central now supports Patch Tuesday April 2019 updates
Good day. A quick update on the April 2019 Patch Tuesday. New Security Bulletins : 2019-04 Security Update for Adobe Flash Player for Windows (KB4493478) 2019-04 Security Only Quality Update for Windows Server 2008 (KB4493458) 2019-04 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4493448) 2019-04 Security Only Quality Update for Windows Server 2012 for x64-based Systems (KB4493450) 2019-04 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4493467)
Join us for a live webinar featuring most awaited "Request Life Cycle" feature
Hello folks, We are delighted to announce the release of ServiceDesk Plus version 10 with our much-awaited "Request Life Cycle" (RLC) feature. RLC lets you design the complete life cycle of a ticket visually using a simple, drag and drop canvas. Break down the life cycle of a request into various statuses and transitions, i.e., conditional actions required to move from one status to another. You can apply the following using RLC Guidance to the technician throughout the request process. Dive deep
SupportCenter Plus version 8.1 - Build - 8113 released
Dear User(s) We released SupportCenter Plus version 8.1 - Build - 8113. Please refer the Migration path table available here and upgrade to our latest build 8113. Enhancements made and Issues Fixed list is available here Note : As a best Practice, please do the upgrade only in your Test environment and based on the status, do the upgrade in the Production. Steps to do the Upgrade is available here You can contact our support at support@supportcenterplus.com for any assistance. Following is the support
[Tips & Tricks] Benefits of configuring VIP user in ServiceDesk Plus
One of the outcomes of IT Service Management is the regulation, consistency, and predictability in the delivery of services. Any business thrives on customer service and when a major chunk of the revenue is coming from a small section of customers, they are labeled as VIP users. They are usually executives from IT and the business (e.g.CEO, CIO, CxOs, IT head, ). Given that their time is very much valuable, we need to give them the extra care and keep them happy. In ServiceDesk, it is much easier
Released : Requests Life Cycle
Dear Users, "Requests Life Cycle" for ServiceDesk Plus Cloud is released today and is available live. Request Life Cycle Configure a clear sequence of statuses for any incoming request so that the assigned technician is guided to the next possible transition(s) easily. The next possible transition for any request is displayed in the request details page. Associate a life cycle to any number of templates. However, a template can be associated with only one life cycle. The life cycle contains nodes
Chrome releases a new stable version 73.0.3683.103
Google has just rolled out a new update for Chrome 73 that comes with some minor bug fixes and performance updates. With this latest update, Chrome will be inching closer to releasing the next big update — Chrome 74. Patch Manager Plus now supports updating your endpoints to the latest version - Chrome 73.0.3683.103. If you're looking to update your Chrome, just look for Bulletin ID - TU-017 and Patch ID - 309433 (32-bit) and 309434 (64-bit)
Chrome releases a new stable version 73.0.3683.103
Google has just rolled out a new update for Chrome 73 that comes with some minor bug fixes and performance updates. With this latest update, Chrome will be inching closer to releasing the next big update — Chrome 74. Desktop Central now supports updating your endpoints to the latest version - Chrome 73.0.3683.103. If you're looking to update your Chrome, just look for Bulletin ID - TU-017 and Patch ID - 309433 (32-bit) and 309434 (64-bit)
Apache 2.4.39 to fix important web server vulnerabilities
The CVE-2019-0211, a privilege escalation vulnerability, affecting Apache versions 2.4.17 to 2.4.38 could allow any under-privileged user to execute arbitrary code on the targeted server with root privileges. This vulnerability along with three low and two other important severity issues are addressed in the latest Apache httpd 2.4.39 version. With Vulnerability Manager Plus, you can detect these vulnerabilities and your network servers that are affected by these vulnerabilities. It is advisable
Announcing the release of ADAudit Plus' latest version: Build 6000
Dear All, Greetings from ManageEngine ADAudit Plus! We are delighted to announce the release of ManageEngine ADAudit Plus' latest version: Build 6000. With the latest build 6000- get faster search and data retrieval with the all new DataEngine. Deploy a client-side software agent to smoothen out log collection over WAN connections. Utilize risk assessment reports based on advanced user behavior analytics and machine learning. Other enhancements and fixes have also been made to enrich your experience,
Google Chrome is affected by zero day vulnerabilities
Zero day vulnerabilities have been disclosed for different versions of Chrome. Vulnerability Affected versions Type confusion vulnerability in JSPromise::TriggerPromiseReactions Google Chrome 72.0.3626.96 (Official Build) (64-bit) Google Chrome 74.0.3702.0 (Official Build) dev (64-bit) Type confusion vulnerability in V8TrustedTypePolicyOptions::ToImpl Google Chrome 72.0.3626.81 (Official Build) (64-bit) Internal object leak vulnerability in ReadableStream Not known To know which systems
Microsoft warns BSOD on devices after enabling EUDC
Microsoft has warned that if per font end-user-defined characters (EUDC) is enabled, the system will stop working and a blue screen will appear at startup. But it can be avoided if you don't install the following updates: KB4489894, KB4489890, KB4489888 and KB4489889. Vulnerability Manager Plus has suspended these updates and for users who already have these updates in your endpoints, kindy follow the steps given in the Microsoft's official KB article. https://support.microsoft.com/en-in/help/4496149
ServiceDesk Plus 10016 Released
Dear Users, SDP 10016 has been released and can be downloaded from the URL below, https://www.manageengine.com/products/service-desk/service-packs.html Behavior Change SD-77145: Username field in the EWS configuration now allows names and e-mail address. A separate e-mail field is added. New Feature SDF-76768 : Following enhancements have been added in MDM-SDP Request Actions. Option to associate profiles to devices and groups. Option to distribute apps to devices and groups. Option to revoke
Microsoft warns BSOD on devices after enabling EUDC
Microsoft has warned that if per font end-user-defined characters (EUDC) is enabled, the system will stop working and a blue screen will appear at startup. But it can be avoided if you don't install the following updates: KB4489894, KB4489890, KB4489888 and KB4489889. Patch Manager Plus has suspended these updates and for users who already have these updates in your endpoints, kindly follow the steps given in the Microsoft's official KB article. https://support.microsoft.com/en-in/help/4496149
Microsoft warns BSOD on devices after enabling EUDC
Microsoft has warned that if per font end-user-defined characters (EUDC) is enabled, the system will stop working and a blue screen will appear at startup. But it can be avoided if you don't install the following updates: KB4489894, KB4489890, KB4489888 and KB4489889. Desktop Central has suspended these updates and for users who already have these updates in your endpoints, kindly follow the steps given in the Microsoft's official KB article. https://support.microsoft.com/en-in/help/4496149
Next Release : Requests Life Cycle
Dear Users, We are planing for the release of Requests Life Cycle shortly and below are the details : Requests Life Cycle Configure a clear sequence of statuses for any incoming request so that the assigned technician is guided to the next possible transition(s) easily. The next possible transition for any request is displayed in the request details page. Associate a life cycle to any number of templates. However, a template can be associated with only one life cycle. The life cycle contains nodes
Newsletter de Marzo!
¡Newsletter de Marzo! Actualízate sobre todas las novedades que tenemos este mes y recuerda inscribirte aquí para recibirlos mensualmente en tu buzón de correo
Password Manager Pro How-to Tutorials
Hi all, We've created an exclusive playlist on our YouTube channel for publishing how-to video tutorials. This playlist will include a multitude of hands-on videos by our product expert to explain how Password Manager Pro's features work. We currently have two videos in the playlist: 1. How to manually add a resource in Password Manager Pro, manage the privileged accounts associated with it, and configure remote password reset for the resource. https://zurl.co/RXTS 2. How to leverage our all-new
Password Manager Pro - Security Advisory for version 10000
Hi, This is a security advisory for all Password Manager Pro customers, announcing a security issue that we've identified in version 10.0 build number 10000. The 10000 version upgrade pack was released on March 26th, 9 AM Eastern Standard Time. The issue was identified on March 28th, 6 AM Eastern Time and the upgrade pack was immediately pulled down from our website. Therefore, this security issue affects only a highly-selective subset of Password Manager Pro customers who performed an upgrade
Free training online: Optimize firewall performance
Stay ahead with the Firewall Analyzer free training online, join our product expert and gain insight on the ways to optimize firewall performance. The given below is the training agenda. Perform in-depth impact analysis for a proposed new rule using the new “Rule Impact Analysis” feature Learn how to get a detailed view of used rules, unused rules, rule anomalies and rule optimisation. Monitor 'Who' made 'What' changes, 'When' and 'Why' to firewall configuration. Get a detailed overview of security
[Free Webinar] Learn the gray areas of privacy compliance from the viral Monopoly Man
Hi All, The term “privacy” is amorphous and rather subjective. It's even vague in a corporate environment. IT teams are often expected to single-handedly help companies comply with in-house privacy policies and government regulations, as many teams operating outside of IT generally consider privacy to be a technology issue. Several recent regulations across the globe, including the General Data Protection Regulation (GDPR), mandate companies to handle the privacy of consumers securely; if they don't,
[Free Webinar] Learn the gray areas of privacy compliance from the viral Monopoly Man
Hi All, The term “privacy” is amorphous and rather subjective. It's even vague in a corporate environment. IT teams are often expected to single-handedly help companies comply with in-house privacy policies and government regulations, as many teams operating outside of IT generally consider privacy to be a technology issue. Several recent regulations across the globe, including the General Data Protection Regulation (GDPR), mandate companies to handle the privacy of consumers securely; if they don't,
[Tips & Tricks] Encrypt documents generated from ServiceDesk Plus
Hello folks, Sensitive information, which can include documents, data or email messages, really has a life all its own. Especially when it comes to business. When information is first created and stored, typically on a local drive, network drive, external drive, cloud or repository, it has the potential to be openly accessible to unwanted persons. When information is sent to and shared with others, such as through email, there is a potential for hackers with bad intent to intercept it. And when
Just in: ManageEngine secures a position in 2019 Gartner Magic Quadrant for Application Performance Monitoring!
It's time to rejoice! ManageEngine has been recognized in the Gartner 2019 Magic Quadrant for Application Performance Monitoring for the seventh year! Gartner defines Application Performance Montioring as one or more software components that facilitate application monitoring to meet three main functional dimensions: (1) Digital experience monitoring (DEM) (2) Application discovery, tracing and diagnostics (ADTD) (3) Artificial intelligence for IT operations (AIOps) for applications.
Ready to try EventLog Analyzer's cool new features?
Our development team has been busy and the result of that is a bunch of new features. Read on to know what they are. Two-factor authentication: EventLog Analyzer's login security has been bolstered with two-factor authentication. Choose email verification, SMS verification, Duo Security, RSA SecurID, or Google Authenticator as the second authentication method. Linux file integrity monitoring: Monitor entire directory structures or just a single file or folder in Linux devices for events, such as
Critical updates released for Mozilla Thunderbird, iCloud, and iTunes
Apple and Mozilla have released critical updates in their products — iCloud 7.11.0.19, iTunes 12.9.4.102 and Thunderbird 60.6.1 respectively. Vulnerability Manager Plus now supports patching for these updates. Below are the CVE IDs of the vulnerabilities that are addressed in the latest update for each application. Application: iCloud (7.11.0.19) CVE IDs addressed: CVE-2019-8542,CVE-2019-6232,CVE-2019-8506,CVE-2019-8535,CVE-2019-6201,CVE-2019-8518,CVE-2019-8523,CVE-2019-8524,CVE-2019-8558,CVE-2019-8559,CVE-2019-8563,CVE-2019-8515,CVE-2019-8536,CVE-2019-8544,CVE-2019-7285,CVE-2019-8556,CVE-2019-8503,CVE-2019-7292,CVE-2019-8551,CVE-2019-6236.
Critical updates released for Mozilla Thunderbird, iCloud, and iTunes
Apple and Mozilla have released critical updates in their products — iCloud (7.11.0.19), iTunes (12.9.4.102) and Thunderbird (60.6.1) respectively. Patch Manager Plus now supports the patching of these updates. Below are the possible exploits for each application if they're left unpatched. Application: iCloud (7.11.0.19) Possible Exploit if left unpatched: Elevation of Privilege, Remote Code Execution Application: iTunes (12.9.4.102) Possible Exploit if left unpatched: Elevation of Privilege,
Critical updates released for Mozilla Thunderbird, iCloud, and iTunes
Apple and Mozilla have released critical updates in their products — iCloud (7.11.0.19), iTunes (12.9.4.102) and Thunderbird (60.6.1) respectively. Desktop Central now supports the patching of these updates. Below are the possible exploits for each application if they're left unpatched. Application: iCloud (7.11.0.19) Possible Exploit if left unpatched: Elevation of Privilege, Remote Code Execution Application: iTunes (12.9.4.102) Possible Exploit if left unpatched: Elevation of Privilege,
[ME User Conference, Dallas] Accelerate your journey to compliance with our privileged identity management suite
Hi All, Join us in Dallas for 3 days of invaluable training, and fun networking: ManageEngine User Conference 2019 is here! We'd love to see you in Dallas for the ManageEngine User Conference and Training on the 24th - 25th of April. It's going to be three action-packed days designed to help you get more out of your ManageEngine experience - with dedicated sessions for Password Manager Pro. Click here to check out all the details. What's in it for you: Talk to our experts in 1:1
Critical security updates released for Firefox 66.0.1
Mozilla has released updates to address two critical vulnerabilities in Firefox 66.0.1 and Firefox 66.6.1 ESR (Extended Support Release). These vulnerabilities, that are addressed in CVE-2019-9810 and CVE-2019-9813, come as fixes for incorrect handling of files in IonMonkey (Mozilla's JIT compiler for SpiderMonkey). Vulnerability Manager Plus now supports these critical Mozilla updates. To patch your Mozilla Firefox with these latest critical updates, look for Patch IDs 309305,309306,309307 and 309309.
Critical security updates released for Firefox 66.0.1
Mozilla has released updates to address two critical vulnerabilities in Firefox 66.0.1 and Firefox 66.6.1 ESR (Extended Support Release). These vulnerabilities, that are addressed in CVE-2019-9810 and CVE-2019-9813, come as fixes for incorrect handling of files in IonMonkey (Mozilla's JIT compiler for SpiderMonkey). Patch Manager Plus now supports these critical Mozilla updates. To patch your Mozilla Firefox with these latest critical updates, look for Patch IDs 309305,309306,309307 and 309309.
Critical security updates released for Firefox 66.0.1
Mozilla has released updates to address two critical vulnerabilities in Firefox 66.0.1 and Firefox 66.6.1 ESR (Extended Support Release). These vulnerabilities, that are addressed in CVE-2019-9810 and CVE-2019-9813, come as fixes for incorrect handling of files in IonMonkey (Mozilla's JIT compiler for SpiderMonkey). Desktop Central now supports these critical Mozilla updates. To patch your Mozilla Firefox with these latest critical updates, look for Patch IDs 309305,309306,309307 and 309309.
[Tips & Tricks] High time to snub manual translations
Hello folks, Multi-language support in an application is always a boon. Especially when it is used by users across the globe that speak different languages. Imagine how frustrating it is when you receive an email or anything for that matter and find out that you can’t read it. Being unable to use an application because of a language barrier is just as frustrating. Depending on the nature of your business, having software that functions in multiple languages is a key component to your success. Considering
Next Release : User Delegation
Dear Users, We are preparing for the next release on User Delegation and below are details : User Delegation Configure backup users to handle requests and approvals of users during their planned leave. Using this feature, you can reassign service and incident requests and configure backup approvers for service, incident, and change requests and purchase orders. Under Setup >> Automation >> Delegation, enable the feature and configure the global settings. Users who mark leave after you enable the
Google Chrome releases stable version 73.0.3683.86
Google Chrome has updated the stable channel to 73.0.3683.86. This version comes with a bevy of features like the built-in dark mode, tab grouping, media key support etc. along with several bug fixes. Patch Manager Plus now supports Google Chrome's latest version 73.0.3683.86 for Windows and Mac. If you're looking to update your Chrome to get your hands on the newest features, just look for Bulletin ID - TU-017 and Patch ID - 309264 (32-bit) and 309265 (64-bit) in Patch Manager Plus.
Google Chrome releases stable version 73.0.3683.86
Google Chrome has updated the stable channel to 73.0.3683.86. This version comes with a bevy of features like the built-in dark mode, tab grouping, media key support etc. along with several bug fixes. Desktop Central now supports Google Chrome's latest version 73.0.3683.86 for Windows and Mac. If you're looking to update your Chrome to get your hands on the newest features, just look for Bulletin ID - TU-017 and Patch ID - 309264 (32-bit) and 309265 (64-bit) in Desktop Central.
Microsoft announces End of support for Windows 7
With the saying 'Áll things must come to an end', Microsoft announces that it will not be supporting Windows 7 from Jan 14, 2020. Windows 7 is the second most popular Windows OS next to Windows 10 with over 34 percent market share of all devices worldwide. So, If you're running on Windows 7 currently, we highly recommend you to upgrade to Windows 10 at the earliest to continue receiving updates from Microsoft. To upgrade your endpoints in your enterprise to Windows 10 using Desktop Central, follow
DC Free Training
Desktop Central training is spread across 5 weeks with each week focusing on a specific module. At the end of this training series, you will be conversant will all the features, the best practices in using the product and the tips & tricks for effective desktop management. Here is the schedule of the training: We conduct training in 2 different time zones. 6:30 AM GMT & 11:30 AM EST Week 1: Automating Patch Management - Apr 3, Week 2: Software Deployment - Apr 10, Week 3: Asset Management - Apr
ServiceDesk Plus MSP - version 9.4 - Build - 9416 Released
Dear User(s) We released ServiceDesk Plus MSP - version 9.4 - Build - 9416. Please refer the Migration path table available here and upgrade to our latest build 9416. Behavior changes Update : Bulk association of sites in request will work only under the following cases: If the requester of a ticket is an actual end user (not technician), then the new site will be associated if that site belongs to the requester’s account. If the requester of a ticket is a technician, then the new site will be associated
Next Page