IBM Tivoli Endpoint Manager for Security and Compliance  Security Configuration Management (SCM) The Security and Compliance team at IBM has updated the content within the DISA and USGCB Checklists for UNIX and Windows Operating Systems and has enhanced the SCM Reporting site.  DISA UNIX: Changelist: * GEN002640 - Add parameter so customers may specify the accounts that should be denied direct logon access capability (All OS's) * GEN001760 - Add parameter so that customers may specify the groups that are allowed to own global initialization... [More]

Tags:  bigfix

We've just pushed out Patch Release 1.3.2 for the Mobile Device Management Site. Fixed Issues: - Fixed proxy agent problem which prevented devices from responding to action reapply for very long periods of time (affects Apple iOS, Microsoft Exchange, and Lotus Traveler devices) - Fixed problem that prevented re-authentication of Apple iOS devices - Fixed issue where Android agent was using more battery than necessary when it couldn't resolve its GPS coordinates - Fixed intermittent issue where setting NitroDesk TouchDown policies would report... [More]

Content in the Patches for Windows (English) has been modified: Modified Fixlet Message: MS12-078: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution - Windows Server 2012 Gold (KB2753842) (x64) (V2.0)    (ID: 1207853) MS12-078: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution - Windows 8 Gold (KB2753842) (x64) (V2.0)    (ID: 1207849) MS12-078: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution - Windows 8 Gold (KB2753842) (V2.0)    (ID: 1207845)... [More]

Tags:  patch tuesday

 New IBM Education Assistant modules released for IBM Tivoli Provisioning Manager versions  7.1 &  7.2.1 v7.1 Patch management v7.2.1 Automation Package Developer Environment http://www.ibm.com/support/docview.wss?uid=swg21461337&lnk=uctug_tivoli_dw_2012-12-27_tivoli-iea

IBM Tivoli Endpoint Manager for Security and Compliance  Security Configuration Management (SCM) The Security and Compliance team at IBM has updated the 'SCM Reporting' site to the following wizards for Japanese: - Create Custom Checklist - Synchronize Custom Checks Affected Sites: SCM Reporting v. 46 Please contact IBM Tivoli Endpoint Manager Technical Support if you have any questions regarding this update. We hope you find this latest release of SCM content useful and effective.    Thank you! Shivani Sharma  Senior Engineer, BigFix   IBM... [More]

Tags:  bigfix

Content in the Patches for Windows (English) has been released: New Fixlet Messages: - 279422001 2794220: Vulnerability in Internet Explorer Could Allow Remote Code Execution - Enable MSHTML Shim Workaround - IE 6/7/8 - 279422003 2794220: Vulnerability in Internet Explorer Could Allow Remote Code Execution - Disable MSHTML Shim Workaround - IE 6/7/8 Reason for Update: - Microsoft has released Security Advisory 2794220. Actions to Take: - None Published site version: - Patches for Windows (English), version 1699 Additional links: - None... [More]

Tags:  security advisory

Content in the Patches for Windows (English) Fixlet Site has been released. New Fixlet Messages: Fixlet messages for Microsoft Security Bulletins:       MS13-001       MS13-002 *       MS13-003 *       MS13-004 *       MS13-005       MS13-006       MS13-007 * * The noted bulletins are not included in this publishing. Completion of the content is coming. Reason for Update: Microsoft has released 7 Security Bulletins for January 2013. Actions to Take: None Published site version: Patches for Windows (English), version 1701 Additional links:... [More]

Tags:  tuesday patch

Content in the Patches for Windows (English) Fixlet Site has been released. New Fixlet Messages: Fixlet messages for Microsoft Security Bulletins: MS13-001 ** MS13-002 MS13-003 * MS13-004 MS13-005 ** MS13-006 ** MS13-007 * The noted bulletins are not included in this publishing. Completion of the content is coming. ** The noted bulletins have been published in update 1. Reason for Update: Microsoft has released 7 Security Bulletins for January 2013. Actions to Take: None Published site version: Patches for Windows (English), version 1702... [More]

Tags:  tuesday patch bigfix

Content in the Patches for Windows (English) Fixlet Site has been released. New Fixlet Messages: Fixlet messages for Microsoft Security Bulletins: MS13-001 * MS13-002 * MS13-003 MS13-004 * MS13-005 * MS13-006 * MS13-007 * The noted bulletins have been published in update 1/2. Reason for Update: Microsoft has released 7 Security Bulletins for January 2013. Actions to Take: None Published site version: Patches for Windows (English), version 1703 Additional links: Microsoft Security Bulletin Summary:... [More]

We've just published an update for the Mobile Device Management site. This release was in response to a publicly disclosed Ruby on Rails framework critical security vulnerability, described here in the Ruby on Rails site:  http://weblog.rubyonrails.org/2013/1/8/Rails-3-2-11-3-1-10-3-0-19-and-2-3-15-have-been-released/ The iOS Management Extender, Trusted Service Provider (TSP) and Self-Service Portal (SSP) use the Ruby on Rails framework and are affected by this security vulnerability. All deployed management components should be updated. Fixed... [More]

Content in the Patches for Windows non-English Fixlet Sites has been released. Thanks!

Tags:  patch tuesday

Currently there is an active zero day Java exploit out in the wild: http://www.informationweek.com/security/attacks/java-under-attack-again-disable-now/240146082 http://www.zdnet.com/homeland-security-warns-to-disable-java-amid-zero-day-flaw-7000009713/ There's currently no known patch to the problem and the only mitigation is to disable or uninstall java on endpoints. We just wanted to point out that by default, BigFix users already have a good way of disabling Java for IE via taking advantage of the Windows Registry Wizard that comes with all... [More]

Tags:  java ie wizard zero registry day

Content in the Updates for Windows Applications Fixlet site has been modified. New/Updated Fixlet Messages: * Java Runtime Environment 7 update 11 Available (JRE 7 Installed) (ID: 7051095) * Java Runtime Environment 7 update 11 Available (JRE < 7 Installed) (ID: 7051097) * Java Runtime Environment 7 update 11 Available (x64) (JRE 7 Installed) (ID: 7056127) * Java Runtime Environment 7 update 11 Available (x64) (JRE < 7 Installed) (ID: 7056140) * Java Runtime Environment 7 update 11 (32-bit) Available (JRE 7 32-bit version Installed) (x64)... [More]

Tags:  java vulnerability jre zero-day

Content in the Patches for Windows (English) Fixlet Site has been released. New Fixlet Messages: Fixlet messages for Microsoft Security Bulletins:       MS13-008   MS13-008: Security Update for Internet Explorer - IE 6 - Windows XP SP3 (1300801) MS13-008: Security Update for Internet Explorer - IE 6 - Windows XP SP3 - CORRUPT PATCH (1300802) MS13-008: Security Update for Internet Explorer - IE 6 - Windows XP SP2 (x64) (1300803)  MS13-008: Security Update for Internet Explorer - IE 6 - Windows XP SP2 (x64) - CORRUPT PATCH (1300804)  MS13-008:... [More]

Tags:  enterprise tuesday patch security microsoft