WelcomeEnterpriseSmall BusinessHome & Home OfficePartnersAbout Symantec
22 November 2002
Symantec Enterprise Security Manager™ OS Patch Policy

The OS Patches (Patch) module checks for the presence of operating system patches that strengthen system security. Patch information is stored in Patch templates.

Symantec updates Patch templates with the Symantec ESM policy installer. This ensures that updated Patch templates are available for use by best practice policies, response policies, and default policies that are delivered with Security Update releases. Installing this update adds a new policy and updates the Symantec Patch templates on the Symantec ESM manager.

The OS Patch policy includes updated templates that detect new vendor-released patches dated on or before November 21, 2002. This policy will detect the recent Microsoft MDAC Buffer Overflow Vulnerability. Please refer to this link below for additional information regarding this vulnerability.


This policy is designed for Symantec ESM agents running SU12 (and later) versions of the OS Patch module. Upgrade to at least SU12 before installing this policy.

ESM 5.5 users: Use the link below or use LiveUpdate to automatically install this policy.

ESM 5.1 users: Use the link below to download this policy. Execute the downloaded exe to install the policy on your ESM manager.

Download OS Patch Policy: BestPractice_OS_Patch_Updates_20021122.exe Obsoleted

Last modified on: Tuesday, 18-Mar-03 12:21:08