Welcome to the BigFix Blog, where you can read the perspectives from network and service assurance experts. This Blog provides insights into the endpoint management solution, as well as technical details about specific IBM products.
Microsoft has made an announcement that there will be an out-of-band security bulletin for September 2012. This out-of-band security bulletin addresses a security vulnerability in Internet Explorer, most likely for the following security advisory: http://technet.microsoft.com/en-us/security/advisory/2757760 It is scheduled to be released on Friday, September 21st. We will provide Fixlets for this security bulletin once it is released. For more information about this security bulletin, see Microsoft's notification:... [More]
Content in the Patches for Windows non-English Fixlet Sites has been released. New Fixlet Messages: MS12-072: Vulnerabilities in Windows Shell Could Allow Remote Code Execution - Windows 8 Gold (ID: 1207223) MS12-072: Vulnerabilities in Windows Shell Could Allow Remote Code Execution - Windows 8 Gold (x64) (ID: 1207225) MS12-072: Vulnerabilities in Windows Shell Could Allow Remote Code Execution - Windows Server 2012 Gold (x64) (ID: 1207227) MS12-074: Vulnerabilities in .NET Framework Could Allow Remote Code Execution - .NET Framework... [More]
Just wanted to let you guys know that our Patch Tuesday kernel fixlets for December 2011 are live. They hit the world roughly 15 minutes ago or so. They are going to be in Enterprise Security version 1549. For now, we have content for: MS11-087 MS11-090 MS11-092 MS11-093 MS11-095 MS11-097 MS11-098 MS11-099 The rest of the bulletin content should be coming out a little later. Happy patching.
SCM Content has been updated for the DISA UNIX Checklists! * Only the Linux OS's are affected by this update -- here are the new versions of the checklists: Self-Parameterizing Checklists: DISA STIG Checklist for AIX 5.1 ---------- now site version 6 DISA STIG Checklist for AIX 5.2 ---------- now site version 5 DISA STIG Checklist for AIX 5.3 ---------- now site version 5 DISA STIG Checklist for AIX 6.1 ---------- now site version 5 DISA STIG Checklist for HPUX 11.00 --- now site version 5 DISA STIG Checklist for HPUX... [More]
We are looking to retire the following legacy sites in March 2012: Patches for RedHat Enterprise Linux Patches for RedHat Enterprise Linux (Outdated RPMs) Before anyone starts to panic, keep in mind that we replaced these sites with the Patches for RHEL 3|4|5 sites in 2009. The Patches for RHEL sites were developed to make our patch content easier to deploy by supporting RPM dependency resolution. By retiring the legacy Red Hat sites, we will be able to clear up confusion around the two different sets of content, reduce the maintenance... [More]
Content in the Patching Support Site has been released. IBM is pleased to announce the release of new content for the Patching Support site. The Patching Support site now includes new dashboards, wizards, and tasks and analyses. Highlights include: New Dashboards / Wizards / Tasks / Analyses Messages: * Dashboard: Microsoft Office Overview Patches for Windows Overview * Wizard: Microsoft Office Source Configuration Wizard Microsoft Rollback Task Wizard * Tasks & Analyses: Microsoft Office Configuration Information (ID: 451) Office XP... [More]
This should be a great year for endpoint management at Pulse. I have been working on the sessions for Pulse and we have an abundance of customers led sessions this year. In the Best Practices and Case Studies in Endpoint Management track, which is part of the larger Mobile track, customers will describe how they are using endpoint managment. The focus this year is on delivering more technical content. There is also a new Endpoint Management User Group meeting on Sunday. Read all about it in my Pulse Blog . Hope to see you there. ... [More]
Have you ever tried to make a large withdrawal from an ATM only to be declined? It’s probably because there are automatic safeguards in place for large withdrawals to prevent misuse and financial damage—in case a merchant makes an error charging you more than they are required to; or if your card and access details were compromised and fell into the wrong hands. You’ll likely have to get approval from the bank manager in person in order to make a large withdrawal. This allows the bank to verify that only authorized individuals... [More]
Please note that the RPM Patching Dashboard (as well as other content) has moved to the Patching Support site from the Linux RPM Patching site. Action Required: Subscribe to the Patching Support site in the console to ensure you have continued access to this dashboard. *************ANNOUNCEMENT************** From: Announcements for BES Administrators < firstname.lastname@example.org > To: email@example.com , Date: 01/24/2013 02:46 PM Subject: [BESAdmin-Announcements] Content Modification in Linux... [More]
As part of our ongoing efforts to reduce the size of our Fixlets, we are publishing a new version of the OS Deployment Fixlet today. There is no change to function, but this new version will require less disk space. The new version number is 11.
There is currently a 0 day advisory from Microsoft in which Microsoft has not provided a downloadable patch for yet. However they, have provided a workaround to disable the vulnerability. Important Note: The workaround is a registry setting will disable remote VPN access on an endpoint which is using NDProxy to authenticate. So if the IEM agent on the endpoint requires a VPN connection to reach its parent relay or server, applying the workaround would make the agent not reachable to its parent relay or server. We have published... [More]
Content in the Patches for Windows (English) Fixlet Site has been released. New Fixlet Messages: Fixlet messages for Microsoft Security Bulletins: MS13-021 * MS13-022 MS13-023 MS13-024 MS13-025 MS13-027 * * This is publication 2 of 2. The noted bulletins are have been published in the first publishing. Fully Superseded Fixlet Messages: MS13-009: Cumulative Security Update for Internet Explorer - IE 6 - Windows XP SP3 (Superseded) (ID: 1300901) MS13-009: Cumulative Security Update for Internet Explorer - IE 6... [More]
Do not register iOS7 devices into IEM for Mobile Devices until ALL iOS extenders in your environment have been upgraded to version 9.0.40039, which was released on September 3rd, in site version 73. Any iOS 7 device that connects to an iOS Management Extender earlier than version 9.0.40039 will cause a larger than normal load on that management extender, resulting in severe performance degradation. Please upgrade your iOS Management Extenders using Fixlet id 94, "Upgrade Management Extender for Enrollment and Apple iOS... [More]
Content in the Patches for Windows (English) has been modified: Modified Fixlet Message: MS12-078: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution - Windows Server 2012 Gold (KB2753842) (x64) (V2.0) (ID: 1207853) MS12-078: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution - Windows 8 Gold (KB2753842) (x64) (V2.0) (ID: 1207849) MS12-078: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution - Windows 8 Gold (KB2753842) (V2.0) (ID: 1207845)... [More]