The OS Patches (Patch) module checks for the presence of operating system and application patches that strengthen system security. Patch information is stored in Patch templates.
Symantec updates Patch templates with the Symantec ESM policy installer. This ensures that updated Patch templates for supported operating systems and applications are available for policies that are delivered with Security Update releases. Installing this update adds or updates the OS Patches policy and associated template files on the Symantec ESM manager.
The policy includes updates the OS Patches (Patch) module templates that detect new vendor-released patches dated on or before January 14, 2004 for Windows XP Professional, Windows 2000 Server, Windows 2000 Professional, Windows NT 4 Server, Windows NT 4 Workstation, HP-UX, AIX, Solaris, and Red Hat Linux. The following applications are also supported: Microsoft Internet Explorer (IE), Internet Information Services Web server (IIS), SQL Server, Microsoft Exchange Server, Microsoft Outlook, and Microsoft Outlook Express.
This policy is designed for Symantec ESM agents running SU16 (and later) versions of the OS Patch module. Upgrade to the latest SU before installing this policy.
This release also adds detection for the following critical vulnerabilities disclosed by Microsoft, January 13, 2004.
MS04-001, Microsoft ISA Server 2000 H.323 Filter Remote Buffer Overflow Vulnerability
MS04-002, Microsoft Exchange Server 2003 Outlook Web Access Random Mailbox Access Vulnerability
MS04-003, Microsoft MDAC Function Broadcast Response Buffer Overrun Vulnerability
ESM 5.5 & 6.0 users: Use the link below or use LiveUpdate to automatically install this policy.
Download OS Patch Policy: BestPractice_OS_Patch_Updates_20040114.exe Obsoleted
Last modified on: Wednesday, 28-Jan-04 20:21:25