McAfee VIRUSSCAN ENTERPRISE 8.7I PATCH 4 - RELEASE NOTES Release Note page 8

source of failure.
13. Issue: Silent installations might fail on hard drives that are designated as dynamic. The on-access scanner service fails to start,
and the installation rolls back. (Reference: 443669)
Resolution: The Patch 1 Repost and later installation packages now install to a dynamic disk, silently.
Patch 1 resolved issues:
1. Issue: An unauthenticated remote denial-of-service attack was discovered. (Reference: 470184)
Resolution: The product no longer allows the denial-of-service attack.
2. Issue: Under certain conditions, the Lotus Notes scanner of VirusScan Enterprise can mistakenly deny access to the Lotus Notes
internal processes, if a note was being accessed more than once. (Reference: 438541)
Resolution: The Lotus Notes scanner has been adjusted to better handle re-entrance scanning of the same note.
3. Issue: Silent installs may fail on hard drives that are designated as dynamic. The on-access scanner service fails to start, and
the installation will roll back. (Reference: 443669)
Resolution: The patch 1 and later install packages will now install to a dynamic disk, silently.
4. Issue: Sporadic crashes were seen on multi-processor systems, with the Lotus Notes scanner file ncdaemon.exe, during startup
and general use of Lotus Notes. (Reference: 442337)
Resolution: The Lotus Notes scanner has been corrected to prevent a race condition where different scanner threads were
starting and stopping out of sequence.
5. Issue: A 8E bugcheck (blue screen) sometimes occurred when VirusScan Enterprise 8.7i was installed along with Checkpoint
VPN-1 SecureClient. (Reference: 438771)
Resolution: The link driver was updated to avoid probing kernel memory unnecessarily.
NOTE: For this fix to prevent the above issue, the files need to be placed on the system during the installation of VirusScan
Enterprise, before the services start. The repost of VirusScan Enterprise 8.7i with Patch 1 will be needed to see the resolution.
6. Issue: A flaw in the caching algorithm sometimes caused files in removable media to not be scanned. (Reference: 443104)
Resolution: The Anti-Virus Filter driver was updated to clear the cache of removable media upon attaching to the system.
7. Issue: The on-access scanner contained a flaw in the scan on close logic. This could cause a file to be queued up for scanning a
second time. (Reference: 434475)
Resolution: The Anti-Virus Filter driver no longer queues these unnecessary scan requests.
8. Issue: During an upgrade from a customized VirusScan Enterprise 8.5i to VirusScan Enterprise 8.7i, An issue sometimes
occurred where the configuration tool did not properly backup and restore the registry information. The installation was left in a
state where some of the product information still showed as the older version. (Reference: 443019)
Resolution: The McAfee Installation Designer configuration applicator has been changed to be more comprehensive in backing
up and in version checking during the upgrade, in order to prevent failures by other McAfee product installations that require
version 8.7i.
NOTE: For this fix to prevent the above issue, the files need to be placed on the system during the installation of VirusScan
Enterprise, before the services start. The repost of VirusScan Enterprise 8.7i with Patch 1 will be needed to see the resolution.
9. Issue: On Microsoft Windows Vista SP1 or 2008 server, sharing violations could occur when working with remote files while
network drive scanning was enabled. This resulted in being denied access to files, or being unable to modify or save a file.
(Reference: 447282)
Resolution: The Anti-Virus Filter driver has been updated to better handle potential sharing violations that could occur and avoid
conflicts.
10. Issue: Prolonged use of the VirusScan Console was causing delays in loading subsequent loading of the Console window.
(Reference: 456831)
Resolution: The VirusScan Console plug-in was corrected to properly clean up the .tmp files it creates at load time.
11. Issue: Access Protection rules were being triggered during creation of a VirusScan customized installation package via McAfee
Installation Designer. This could lead to a crash of the McAfee Installation Designer tool. (Reference: 435728)
Resolution: The VirusScan Email Scan library appropriately handles the new Sensitivity level setting when it is displayed in the
McAfee Installation Designer window.
12. Issue: Certain detections with multiple infections or clean actions were logging the action two times. One entry was made during
the middle of the process, and the other during the final resolution. (Reference: 404787)
Resolution: The Common Shell scanner has been updated to report only the final resolution of the detection.
13. Issue: A 8E bugcheck (blue screen) might occur during the "Memory for Rootkits" portion of an on-demand scan. (Reference:
445490)
Resolution: The code analysis driver now uses a more robust method of querying the system for driver object data.
14. Issue: Access Protection block rules that were created for USB devices sometimes did not handle removing and reinserting the
device multiple times. (Reference: 457415)
Resolution: The Access Protection, Anti-Virus Filter, and Link drivers have been updated to better handle reinserting the device.
15. Issue: The on-access scanner was not properly utilizing the Scan files opened for Backup option. (Reference: 457416)