WelcomeEnterpriseSmall BusinessHome & Home OfficePartnersAbout Symantec
13 October 2005
Symantec Enterprise Security Manager™ OS Patches (Patch) module


The OS Patches (Patch) module checks for the presence of operating system and application patches that strengthen system security. Patch information is stored in Patch templates.

Symantec updates Patch templates with the Symantec ESM policy installer. This ensures that updated Patch templates for supported operating systems and applications are available for policies that are delivered with Security Update releases. Installing this update adds or updates the OS Patches policy and associated template files on the Symantec ESM manager.

This rapid response patch update for Symantec Enterprise Security Manager reports operating system and application patches for both Windows and UNIX operating systems. There are a total of 286 new patch signatures and 43 updated patch signatures in 17 templates:

  • patch.pai (IBM AIX - 2 new)
  • patch.ph1 (HP-UX 10.20-11.11 - 8 new, 14 updated)
  • patch.ph2 (HP-UX 11.23 - 1 new, 6 updated)
  • patch.plx (RedHat Linux - 112 new, 19 updated)
  • patch.ps6 (Solaris 2.6+ - 15 new, 4 updated)
  • patch.psl (SUSE Linux - 61 new)
  • patch.pw5 (Windows 2000 Professional - 10 new)
  • patch.ps5 (Windows 2000 Server - 10 new)
  • patch.pwx (Windows XP Professional - 25 new)
  • patch.p6s (Windows Server 2003 - 13 new)
  • patch.p3i (Windows Server 2003 for Itanium - 12 new)
  • exchg2k.ps5 (Exchange on Windows 2000 Server - 1 new)
  • ie.pw5 (Internet Explorer on Windows 2000 Professional - 4 new)
  • ie.ps5 (Internet Explorer on Windows 2000 Server - 4 new)
  • ie.pwx (Internet Explorer on Windows XP Professional - 2 new)
  • ie.p6s (Internet Explorer on Windows 2003 Server - 4 new)
  • ie.p3i (Internet Explorer on Windows 2003 Server for Itanium- 2 new)
This rapid response policy includes updates to the OS Patches (Patch) module templates that detect new vendor-released patches dated on or before October 13, 2005:
  • Windows Server 2003 64-bit Edition
  • Windows Server 2003
  • Windows XP Professional
  • Windows 2000 Server
  • Windows 2000 Professional
  • Windows NT 4 Server
  • Windows NT 4 Workstation
  • HP-UX
  • AIX
  • Solaris
  • Red Hat Linux
  • Red Hat Enterprise Linux
  • SUSE Linux Standard Server 8
  • SUSE Linux Enterprise Server 8 and 9
  • SUSE Linux Enterprise Server 9 for Itanium Processor Family
The following applications are also supported:
  • Microsoft Internet Explorer (IE)
  • Internet Information Services Web server (IIS)
  • Microsoft SQL Server
  • Microsoft Exchange Server
  • Microsoft Outlook
  • Microsoft Outlook Express
  • Microsoft Visual Studio
This update also includes rapid response support for the detection of vulnerabilities that were disclosed by Microsoft on October 11, 2005.

MS05-044     Vulnerability in the Windows FTP Client Could Allow File Transfer Location and Tampering (905495)
MS05-045     Vulnerability in Network Connection Manager Could Allow Denial of Service (905414)
MS05-046     Vulnerability in the Client Services for Netware Could Allow Remote Code Execution (899589)
MS05-047     Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749)
MS05-048     Vulnerability in the Microsoft Collaboration Objects Could Allow Remote Code Execution (907245)
MS05-049     Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725)
MS05-050     Vulnerability in DirectShow Could Allow Remote Code Execution (904706)
MS05-051     Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400)
MS05-052     Cumulative Security Update for Internet Explorer (896688)

This policy is designed for Symantec ESM agents running SU 20 (and later) versions of the Patch module.

ESM 6.0, 6.1.1, and 6.5 users: To automatically install, use the link below or use LiveUpdate.

Download OS Patch Policy BestPractice_OS_Patch_Updates_20051013.exe Obsoleted

Note: For more information regarding this update, download the OS Patch Policy Release Notes.

Initial Post on: Thursday, 13-Oct-05 21:50:00
Last modified on: Tuesday, 25-Oct-05 14:30:32