Unauthenticated remote code execution vulnerability fixed
Hello Everyone, The fix for Remote Code Execution vulnerability in Patch Manager Plus has been released in the build 100426 This hotfix is available at https://www.manageengine.com/patch-management/service-packs.html For more information, please visit here In case of queries or technical assistance contact support. Regards, Team ManageEngine
Critical PPP Daemon vulnerability opens up Linux systems to RCE attacks
Hello guys, The US-CERT has issued an advisory warning users of the new remote code execution (RCE) vulnerability CVE-2020-8597, affecting the PPPD (Point-to-Point Protocol Daemon) installed in almost all flavors of Linux based systems. Other than Linux systems, this vulnerability also affects few other networking applications and devices such as Cisco CallManager, TP-Link products, Synology, and OpenWRT Embedded OS. The vulnerability The vulnerability CVE-2020-8597 exists due to an error in
ManageEngine launches Application Control Plus
We are thrilled to announce that we have introduced a brand-new application control and privilege management solution - Application Control Plus With Application Control Plus you can leverage the combined benefits of Least Privilege and Zero Trust principles to thwart application-related threats Features and Benefits Instant discovery of all running applications Trust-centric approach to application whitelisting Malware prevention by executable level blacklisting Varied flexibility modes to
Google Chrome critical updates
Hello folks, On February 24, Google released a new stable channel update 80.0.3987.122, for Windows, Mac, and Linux. This was done to address several vulnerabilities in Google chrome. There were 3 security updates released out of which CVE-2020-6418 is rumored to be exploited in the wild. Google further affirms this saying that they were aware this exploit existed in the wild and could have been exploited as a zero-day. List of the security updates released: CVE-2020-6407: Out of bounds memory
Problematic updates found in February Patch Tuesday release
Hello everyone, Three standalone security updates released as part of the February Patch Tuesday cycle were found to be problematic. Known issues in KB4524244: The security update KB4524244 released for all versions of Windows 10 addresses an issue in which a third-party Unified Extensible Firmware Interface (UEFI) boot manager might expose UEFI-enabled computers to a security vulnerability. Microsoft has confirmed at least two known issues in the KB4524244: Using the “Reset this PC” feature,
Firefox 73 released with fixes for high-severity security vulnerabilities
Hello everyone, Mozilla has released Firefox 73 to the stable desktop channel for Windows, macOS, and Linux operating systems with several new features and security fixes for some high-severity vulnerabilities. What's new in Firefox 73? Following are the new features included in the latest release of Mozilla Firefox. Global default zoom setting High contrast theme improvements Improved audio quality New DoH provider - Next DNS and more Security vulnerabilities fixed Here's the list
Patch Tuesday Updates for February 2020
Hello everyone! Given below all the updates released for this month's Patch Tuesday. New Security Bulletins : 2020-02 Servicing Stack Update for Windows 10 Version 1903 and Windows Server, version 1903 (KB4538674) 2020-02 Servicing Stack Update for Windows 10 Version 1909 and Windows Server, version 1909 (KB4538674) 2020-02 Servicing Stack Update for Windows 7 and Windows Server 2008 R2 (KB4537829) (ESU) 2020-02 Servicing Stack Update for Windows Server 2008 (KB4537830) (ESU) 2020-02 Cumulative Update
Patch Tuesday Forecast for February 2020!
Hi everyone! There are some major updates from Microsoft coming our way this Patch Tuesday. As per usual, OS and office updates are scheduled but in addition, there's going to be special attention given to SharePoint, Exchange and SQL components as well. With Valentine's day nearly underway, tune in to ManageEngine's FREE Patch Tuesday webinar this February 13th to get the scoop on which patches are the perfect match for your endpoints! Register now! Cheers from ManageEngine
Update now to Chrome 80 to quash an array of security issues
Hello folks, Google Chrome has rolled out Chrome 80 (Chrome 80.0.3987.87) to the Stable channel for the Windows, macOS, Linux, Chrome OS, iOS, and Android platforms. This update resolves a bunch of security issues and also contains bug fixes, and new features. What's new? Included in this update are new features such as a new secure-by-default cookie classification system, auto-upgraded mixed content, text URL fragments, SVG favicons, and more. Here's a list of CVEs resolved in this update: CVE-2019-18197
Win10 1909 via Enablement Package
Hi, Microsoft's way of upgrading from Win10 1903 to 1909 is via an enablement package KB4517245 which toggles on features already installed in the October cumulative update - see https://support.microsoft.com/en-gb/help/4517245/feature-update-via-windows-10-version-1909-enablement-package However I don't see KB4517245 in PMP. PMP's method of updating seems to require a 1909 ISO and be a full blown heavyweight re-imaging of the OS. I'd prefer to use the enablement package option as it should be quicker,
Windows all set to initiate automatic upgrade to the latest 1909 feature pack
Hi everyone, The support for Windows 10 Home, Pro, Pro Education, and Pro for Workstations editions on 1809 ends May 12, 2020. Microsoft pushes computers running on the October 2018 update, version 1809, to update to the November 2019 update, version 1909 automatically. The process that will initiate this automatic update will be rolled out real soon, says Microsoft. In case of such automatic updates in a diverse network environment, there are high chances of incompatibilities. If you are using
Internet Explorer zero-day vulnerability actively under-attack
Microsoft, on Friday, has published a security advisory detailing a zero-day vulnerability in Internet Explorer that's actively under attack. This vulnerability (CVE-2020-0674) is a scripting engine flaw which when exploited can lead to arbitrary code execution in the context of the current user. The flaw can be mitigated by restricting access to the JavaScript component JScript.dll, and there is no patch available so far. This forum thread will be updated with the patch information as soon as it's
Patch Tuesday January 2020 updates
Hello everyone, The first Patch Tuesday updates for the year 2020 are here, Let's take a quick look at the updates released New Security Bulletins : 2020-01 Cumulative Security Update for Internet Explorer 9 for Windows Server 2008 (KB4534251) 2020-01 Cumulative Security Update for Internet Explorer 10 for Windows Server 2012 (KB4534251) 2020-01 Cumulative Security Update for Internet Explorer 11 for Windows 7 and Windows Server 2008 R2 (KB4534251) 2020-01 Cumulative Security Update for Internet
Gear up for Windows 7 end of life
Hello everyone, As most of you are already aware, Microsoft is pulling the plug on Windows 7 on January 14, 2020. This means that the Patch Tuesday of this month is the last time that free security updates will be released for Windows 7. After this Patch Tuesday, the Windows 7 machines running in your environment will not receive any security updates or tech support. The lack of security updates can put your Windows 7 machines at severe risk. Considering its been over a year since Microsoft announced
Patch Tuesday Forecast for January 2020!
Hi everyone! Insider information regarding an essential security release by Microsoft has elevated the anticipation for this month's Patch Tuesday to an all time high. Rumors have surfaced that updates to address a significant vulnerability will be released this January 14th 2020, that applies to ALL Windows versions and will address a potentially dire flaw present in key cryptographic elements. Allegedly, fixes have been discreetly dispatched to only military and other key enterprises till
Actively Exploited Zero-day Vulnerability in Mozilla Firefox
A Remote Code Execution vulnerability CVE-2019-17026 in Mozilla Firefox and Firefox ESR is being actively exploited in the wild. This vulnerability was categorized as a type confusion, which is potentially a critical error that could impact data processing. A remote attacker can create a specially crafted webpage, trick the victim into visiting it, trigger a type confusion error and execute arbitrary code on the target system. Mozilla's security advisory reads, “Incorrect alias information
Planned maintenance of our US Data center on Dec 19th & 21st
Dear Customers, We have planned a network infrastructure upgrade on our primary Data center in the USA on Dec 19, 2019 from 6:30 PM to 10:00 PM PST and Dec 21st, 2019 from 6:30 PM to 10:00 PM PST. During this upgrade, we will be switching Patch Manager Plus, Mobile Device Manager Plus, and Remote Access Plus from the endpoint management suite to our secondary Data Center to ensure that our services continue functioning. We do not expect any disturbances to the services during this period, but should
Patch Tuesday - December 2019 updates
Hey guys, Here is a quick run-down on all the updates released this Patch Tuesday New Security Bulletins : 2019-12 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB4530719) 2019-12 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4530692) 2019-12 Security Only Quality Update for Windows Server 2012 (KB4530698) 2019-12 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4530730) 2019-12 Cumulative Update for Windows 10 and
Patch Tuesday December 2019 - Forecast
Hey guys, The last Patch Tuesday of this year is almost here, let's take a quick look at what to expect in December 2019 - Patch Tuesday We can expect the usual monthly rollups and security - only patches from Microsoft. This will ideally include patches for the various operating systems, along with updates for Office, SharePoint server, Internet explorer and .NET There are possibilities for updates from Apple as well in the form of updates for MacOS, iTunes and iCloud for Windows. Google has also
Timing of deployment?
with the refresh rate at 90 minutes, some servers do not begin their deployments until well after the deployment window starts. Does anyone have any ideas on how to get the endpoints to start their deployments as close to the beginning of the deployment window as possible, other than scheduling reboots of the end points which forces them to check in?
How to configure automated scan-only job
This article says that patch scan occurs immediately following an update to the patch database. We use a manual process for updating the Patch Manager Plus Server's security database. I'd like to have an automated method for scanning systems apart from the update from the Patch Repository. The APD processes require that at least one patch is selected. I don't want to install patches, I just want an automated process that scans the designated systems to determine their patch level. Is a scan-only
Windows Server 2016 patching.
Folks - in our patching process, we approve the patches 30 days after they have been deployed to the test groups. Since the Windows 2016 patches get superseded every month, our Windows 2016 production servers are never getting patched, because the superseded updates are automatically disabled and cannot be used in the APD tasks. Does anyone have any work-arounds for this, other than getting those 2016 servers patched before the updates become superseded, which would require us to change our process
Roadmap for supporting CentOS 8 and RHEL 8
Hello, May I know if there's any roadmap for supporting patch management on CentOS 8 and RHEL 8? Regards, Ryan
Cyborg Ransomware reported!!
Hello All, A quick heads-up on the spreading cyborg ransomware phishing e-mails. It is not new that intruders make use of trending events to manipulate Internet users into cyber-attacks. Now that Windows has rolled-out its Vanadium 1909 feature pack update, what could be more trending in the cyber-space? So yes, Phishing e-mails are out seeking for victims. The e-mails come with subject lines like "Install Latest Microsoft Windows Update now!" or "Critical Microsoft Windows Update!". Just in
Linux with different group
Dear All: I am new for PMP and I have doubt does there are any mechanisms for grouping Linux into different groups? Thanks in advance...
Patch manager plus - Free cloud version
Hi, I am trying to add more computers, i am able to install the agent, but the computer never shows in "waiting for approval". When i troubleshoot with the "Agent troubleshooting Tool" i get 1 error message and 1 warning message. The error message says that the notification server is unreachable. I am not able to telnet the server via port 8027 from any of my other computers that are already being managed by Patch Manager Plus. I am able to telnet the server on port 443. The warning message is related
Rollout of Windows 10 1909 Feature updates - The Vanadium!
Hello All, A Quick heads-up, Microsoft has released its Windows 10 1909 feature updates for users. Below you can find few highlights of this feature update. Most of the new features are focused on increasing general performance and efficient battery usage. An improved security when using Internet Explorer and Microsoft Edge. Voice-activated digital assistants can be accessed by users from Windows 10 lock screen. Go ahead, and update this feature pack by applying the below Patch IDs in Patch
Patch Tuesday November 2019 Updates
Hi there, This Patch Tuesday brings the following fixes and updates New Security Bulletins : 2019-11 Security Monthly Quality Rollup for Windows Server 2008 (KB4525234) 2019-11 Security Monthly Quality Rollup for Windows 7 and Windows Server 2008 R2 (KB4525235) 2019-11 Security Monthly Quality Rollup for Windows Server 2012 (KB4525246) 2019-11 Security Monthly Quality Rollup for Windows 8.1 and Windows Server 2012 R2 (KB4525243) 2019-11 Cumulative Security Update for Internet Explorer 9 for Windows
Automatic Agent Version Updates - Patch Manager
Hi Guys , Has anybody automated agent updates on the Desktops and Servers whenever a new version is available from Manage Engine Patch Manager Plus ?
Applicable patches for CentOS did not include some important updates
Hi all, I am now evaluating Patch Manager Plus for applying patches to CentOS and Ubuntu. I noticed that the recent sudo related patches for CentOS (i.e. CESA-2019:3197) were shown at the 'Latest patches' page. However, they are not shown at the 'Applicable patches' and all my CentOS machines did not get the patches. However, when I use 'yum update' inside those machines, the 'sudo' entry did show up Furthermore, I have tried to use the 'Manual deployment' to install those patches to CentOS.
Auto Approve Clients from Patch Manager
Hi team , Is there a way to Automatically approve the devices on the the Patch manager for Desktops and Laptops .
MacOS Catalina supported on Patch Manager Plus Cloud
Hi there, We are delighted to announce that Patch Manager Plus cloud now supports the latest MacOS, Catalina. You can avail all of our patch management features to manage and secure your endpoints running on MacOS Catalina. Feel free to e-mail our support team at patchmanagerplus-support@manageengine.com, incase of any queries. Cheers, ManageEngine Team
Free support for Windows 7 Extended Security Updates
Hello everyone, Microsoft has announced the end of life for Windows 7 and Windows Server 2008/2008 R2. This means that you will no longer get bug fixes, security updates, or new functionalities for this version of the OS. We would suggest you to migrate to the latest version of Windows 10 as soon as possible to avoid potential cyber attacks. Incase you are unable to migrate on time or reluctant to upgrade, you can purchase and avail the Extended Security Updates (ESUs) that Microsoft offers for
Patch now! 2 new use-after-free zero day vulnerabilities in Chrome.
Google Chrome decided to spook its users this Halloween by issuing an update that fixes 2 new use-after-free vulnerabilities "CVE-2019-13720" and "CVE-2019-13721", of which CVE-2019-13720 is already exploited in the wild. Use-after-free flaw, which in the least could result in a crash or could be leveraged by an attacker to run arbitrary codes or even enable remote code execution. CVE-2019-13720 - affects the Chrome's audio component. CVE-2019-13721- affects the PDFium library. Google also announced,
Console showing machine as "Healthy" when it needs significant Windows updates
Just evaluating Patch Manager Plus in a lab enviroment to see if it fits our business needs for a cloud based solution. I have a couple of standalone machines with the agent installed for remote office and its a clean install of Win 10 Enterprise 1809 that I know needs loads of Windows OS patches. I disabled Windows update in the local group policy because I know within minutes of an internet connection Windows update will start downloading quality updates, which is exactly what we dont want and
Is KB4503548 (.NET 4.8 for Windows 7 x64) supported? -- I can't find it
-- Is KB4503548 a supported patch? My Windows 7 workstations have this as an available important update shown in Windows Update tool in Control Panel but Patch Manager Plus is not listing it as an update for these computers I even did a search for it in "Supported Patches" but it doesn't show up when I enter the KB number in "patch description" box. Also do you have a resource available to search Microsoft's KB ID's to get Patch ID or Bulletin ID? Thanks, Ben
"Aw, Snap!" messages in the latest Chrome M78 update
Hello All! The latest Google Chrome M78 update faces a high number of "Aw, Snap!" crashes. This is found to be a result of incompatible older versions of Symantec Endpoint Protection running on the computers in your network. Resolution: Update your Symantec Endpoint Protection to version 14.2 or above. Disable the RendererCodeIntegrityEnabled policy. Listed below are few other applications that might be causing the crash, contact the application vendor for a fix. 1. PC Matic 2. Print Audit 3. Palo
On cloud nine as Patch Manager Plus cloud goes Mac friendly
Hello folks, We are extremely thrilled to announce that Patch Manager Plus Cloud now supports the patching of Mac machines as well. All versions of MacOS right from version 10.6 (Snow leopard) to version 10.14 (Mojave) is supported. Further you get to enjoy all the patch management features, listed below, on your Mac machines now: Automated patch deployment Third party application patching for over 300+ applications Flexible deployment policies Testing and approving patches Declining patches Detailed
Adobe releases out-of-band security updates in its products
Adobe is considered one of the widely used third-party applications in the market with over 15 million active subscriptions. As announced earlier, Adobe has released out-of-band security updates today to patch a total of 82 security vulnerabilities across products listed below. Adobe Acrobat and Reader Adobe Experience Manager Adobe Experience Manager Forms Adobe Download Manager Of these 82 vulnerabilities, 45 are rated critical and if exploited, attackers can execute arbitrary code in the context
Zero-day vulnerability in Apple iTunes and iCloud for Windows patched
Hi guys, A zero-day vulnerability in iTunes and iCloud for Windows, which has been exploited in Ransomware attacks has been patched in Patch Tuesday October 2019 updates. The vulnerability exists in the Bonjour installer that gets installed in Windows machines along with the iTunes and iCloud for Windows app. This vulnerability in Bonjour installer is an 'unquoted service path' vulnerability, and can be exploited by planting a malicious executable file to the parent path. Further this exploit's
Next Page