WelcomeEnterpriseSmall BusinessHome & Home OfficePartnersAbout Symantec
24 May 2007
Symantec Enterprise Security Manager™ 6.5.3 Race Condition (Mini Update) Fix

Overview
The March 2007 release of Symantec Enterprise Security Manager 6.5.3 is susceptible to a race condition that can cause the application to lock up, resulting in a denial-of-service.

The May 2007 release of ESM 6.5.3 is patched with the mini update and is not affected by the denial-of-service security vulnerability. Do not apply the mini update if you have upgraded to the May 2007 release of ESM 6.5.3.

Details
The Symantec ESM manager and agent will hang, with nearly 100% CPU usage, after some network scans have contacted one of the ESM network ports. ESM misinterprets this information and becomes non-responsive. This leads to a denial-of-service condition. A restart of the manager or agent is required to restore ESM to a functional state.

Symantec Response
Symantec has released downloadable automated and manual fixes for the Windows ESM manager and agents (see the list below). The fix and complete instructions to update the ESM agents and manually updating ESM managers can be downloaded here:

ESM 6.5.3 Mini Update Package

ESM 6.5.3 Mini Update Guide

Additionally, Symantec has updated both downloadable and physical media of ESM 6.5.3 with this fix. Any agents or managers deployed with 6.5.3 media downloaded or ordered after May 22, 2007 are not affected by this vulnerability, and do not require an update. Customers can utilize the updated 6.5.3 media to re-deploy their Windows agents and managers to fix this issue. Please contact Symantec Technical Support for more information.

To date, Symantec is not aware of any reported attempts to exploit this vulnerability.

Vulnerable Products
Only the Windows managers and agents are susceptible to this vulnerability. The following supported ESM agent and manager platform updates are available for immediate download (see above).

ESM agent platform ESM version
Windows XP Professional SP2 (x86)
Windows Server 2003 Standard Edition SP1 (x86, x64, ia64)
Windows Server 2003 Enterprise Edition SP1 (x86, x64, ia64)
Windows 2000 (Professional, Server, Advanced Server)
6.5.3 (2007/03/23)
English Version only

ESM manager platform ESM version
Windows 2000 Professional SP1+
Windows 2000 Server SP1+
Windows 2000 Advanced Server SP1+
Windows Server 2003
6.5.3 (2007/03/23)
English Version only


Last modified on: Thursday, 31-May-07 19:03:27