McAfee VIRUSSCAN ENTERPRISE 8.7I PATCH 4 - RELEASE NOTES Release Note page 5

properties.
16. Issue: A CE bugcheck (blue screen) could occur when the On-Access Scanner service was stopped on a system that was still
handling I/O requests. (Reference: 554604)
Resolution: The system core drivers now properly sequence the events during the unload operation to prevent this issue.
17. Issue: Password for the console user interface was not preserved with a Patch update. (Reference: 557805)
Resolution: The MSP Installer now properly flags the registry keys to preserve the user interface password value.
18. Issue: The Access Protection rule 'Prevent Windows Process spoofing' was incorrectly including directory locations not valid for
the operating system. (Reference: 558361)
Resolution: The VSCAN.BOF file was updated to correctly map directory locations to excluded processes.
19. Issue: The On-Access Scanner exclusion list was adding an additional backslash when entering excluded items to the list.
(Reference: 562246)
Resolution: A user interface for Extensions and Exclusions Filter Library configuration (ftcfg.dll) logic has been added to
determine whether the string variable is a drive letter or folder.
20. Issue: The Access Protection and Buffer Overflow Protection rules contained errors, causing the installation of other McAfee
Products that contained newer shared components would fail to install. (Reference: 565254)
Resolution: The VSCAN.BOF file no longer causes the Access Protection rule "Prevent modification of McAfee files and settings"
to be triggered during installation of McAfee products.
21. Issue: The ePolicy Orchestrator Low-Risk and High-Risk Policy exclusion page required an extended amount of time to render
when many exclusions were listed. (Reference: 567297)
Resolution: The Low-Risk and High-Risk Policy page now renders properly and in a timely manner.
22. Issue: On low resource systems, VirusScan Enterprise 8.7i encountered a timeout when registering with the Windows Action
Center and failed to report its status in time. This caused the Windows Action Center to show AntiVirus Software as disabled.
(Reference: 567396)
Resolution: VirusScan Task Manager has been corrected to allow enough time to register with the Windows Action Center before
reporting its first status, and resends the status if needed.
23. Issue: The driver was recording and accumulating data about unimportant file activity, and it did not promptly discard that data.
(Reference: 568654)
Resolution: The driver was revised to immediately discard data about unimportant file activity.
24. Issue: On newer versions of Windows that have the notification options for system tray icons, the VirusScan tray icon did not
properly save the current state set by the user.(Reference: 569156)
Resolution: Some obsolete code was removed from the VirusScan tray icon that was preventing the save of the state in newer
platforms.
25. Issue: After installing McAfee HF539488 and opening multiple instances of Microsoft Outlook, some users experienced an error
message: "Email scan protection is disabled. Restart Outlook and McAfee engine service". (Reference: 576912)
Resolution: Multiple instances of Microsoft Outlook no longer triggers this error message.
26. Issue: If an I/O Request was received for a file system for which the VPB reported a size of 0, the driver attempted to access
the VPB even if the pointer to it was NULL, resulting in a STOP 1E. (Reference: 577676)
Resolution: The driver was revised to unconditionally verify every pointer to be non-NULL, regardless of the specified size of
the VPB.
27. Issue: Due to changes made in the "time to hibernate" is managed on a system with Microsoft Windows 7, scan threads were
not given enough time to finish. On resume, those scan threads already reached their timeout value, which caused McShield to
respond with a crash. (Reference: 578500)
Resolution: The On-Access Scanner service now responds to power management features by resetting the timeout value so that
the scan thread can finish as normal.
28. Issue: Due to changes in the time to hibernate a system in Microsoft Windows 7, a timing issue occured where the request to
pause the McShield service was not completed until after the resume. This caused the On-Access Scanner service to pause
coming out of hibernate. (Reference: 578500)
Resolution: The On-Access Scanner service now no longer attempts to pause as part of the power management features.
29. Issue: If a custom Access Protection rule specified restrictions against a specific process, the driver might block network access
to other processes. (Reference: 579228)
Resolution: The driver was updated to enforce rule restrictions only against the specific processes named in the rule.
30. Issue: MSI 4.5 prevents modifying VirusScan Enterprise 8.7i Patch 3 via Add/Remove Programs. The feature state for the
product was set to "disabled" even though the component files were installed. (Reference: 582208)
Resolution: A new function runs prior to applying the Patch 4 that checks the state of the features and repairs the states as
needed.
Note: The repair function creates a registry value in HKLM\Software\McAfee\DesktopProtection called PatchRepair_582208 = 1.
The Patch 4 installer does not complete its installation if this registry value is not present.
31. Issue: A timing issue could occur where VirusScan Task Manager interferes with the virus definition files (DAT) copy process
during an update. This leads to the DAT being locked, preventing the update from completing successfully. (Reference: 610714)
Resolution: The VirusScan Task Manager will now defer actions related to DATS while the DAT update process is occurring.