Professional Documents
Culture Documents
ENDPOINT
SECURITY BY
BITDEFENDER
Release Notes
ENTERPRISE
Legal Notice
All rights reserved. No part of this book may be reproduced or transmitted in any form or by any means, electronic
or mechanical, including photocopying, recording, or by any information storage and retrieval system, without written
permission from an authorized representative of Bitdefender. The inclusion of brief quotations in reviews may be
possible only with the mention of the quoted source. The content can not be modified in any way.
Warning and Disclaimer. This product and its documentation are protected by copyright. The information in this
document is provided on an as is basis, without warranty. Although every precaution has been taken in the
preparation of this document, the authors will not have any liability to any person or entity with respect to any loss
or damage caused or alleged to be caused directly or indirectly by the information contained in this work.
This book contains links to third-party Websites that are not under the control of Bitdefender, therefore Bitdefender
is not responsible for the content of any linked site. If you access a third-party website listed in this document, you
will do so at your own risk. Bitdefender provides these links only as a convenience, and the inclusion of the link does
not imply that Bitdefender endorses or accepts any responsibility for the content of the third-party site.
Trademarks. Trademark names may appear in this book. All registered and unregistered trademarks in this document
are the sole property of their respective owners, and are respectfully acknowledged.
ENTERPRISE
89504E470D0A1A0A0000000D494844520000002000000020010300000049
B4E8B7000000017352474200AECE1CE900000006504C5445FFFFFF000000
55C2D37E0000009A4944415408D76370FB7BCF85E1BDE2321706DE847DDF
185A5B5858189454BBAA18EAFFEFBFCF90FFF7DF3F0630F8CCA42DC9A0C0
14A7CC30E58C763FC3751EAFC50C0C4E40C5F5F54075E5E7ECE743D4ED0A
4ECC62B831977D06C365F5E3090C13AE262932743330CE60F80F52575DBF
FC3644DDEB695EDB19AC4D2EB533342D5BB198C1E5E9AA030C960C01EC40
75FFFF31FC2FFFF51DAC0C00A09339A3914312FC0000000049454E44AE42
60827A3431793A70666765303133406F316771337333617133652E70307A
ENTERPRISE
Table of Contents
1. Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1
2. Version History . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2
2.1. Version 5.3.16.593
2.2. Version 5.3.16.589
2.3. Version 5.3.15.541
2.4. Version 5.3.15.540
2.5. Version 5.3.15.539
2.6. Version 5.3.14.537
2.7. Version 5.3.13.494
2.8. Version 5.3.13.493
2.9. Version 5.3.13.492
2.10. Version 5.3.12.471
2.11. Version 5.3.12.470
2.12. Version 5.3.11.462
2.13. Version 5.3.10.451
2.14. Version 5.3.9.448
2.15. Version 5.3.8.408
2.16. Version 5.3.7.391
2.17. Version 5.3.6.387
2.18. Version 5.3.5.382
2.19. Version 5.3.4.377
2.20. Version 5.3.2.343
2.21. Version 5.3.1.335
2.22. Version 5.1.11.286
2.23. Version 5.1.10.286
2.24. Version 5.1.9.281
2.25. Version 5.1.8.268
2.26. Version 5.1.4.223
................................................................ 2
................................................................ 2
................................................................ 4
................................................................ 4
................................................................ 4
................................................................ 4
................................................................ 7
................................................................ 7
................................................................ 7
............................................................... 8
............................................................... 8
............................................................... 8
............................................................... 9
................................................................ 9
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
3. Known Issues . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
iv
ENTERPRISE
1. Overview
Bitdefender Security for Endpoints protects unobtrusively any number of computers by
using number-one-ranked antimalware technology combined with firewall, intrusion detection,
web access control and filtering, sensitive data protection and application control. Security
for Endpoints offers protection for computers and laptops running on Windows and Mac
OS X operating systems and Windows servers. Employee productivity is ensured with low
resource consumption, optimized system scanning and automated security that requires
no end-user interaction.
Security for Endpoints is intended for workstations, laptops and servers running on Microsoft
Windows. To protect your physical computers with Security for Endpoints, you must install
Endpoint Security (the client software) on each of them. Endpoint Security manages
protection on the local computer. It also communicates with Control Center to receive the
administrator's commands and to send the results of its actions.
This document describes all Endpoint Security updates since version 5.1.4.223. You can
easily find the new features each version brings and the issues it has resolved. Under the
"Known Issues" section you can inspect the list of reported yet unresolved issues. This list
is updated periodically and we kindly reccommend you consult it before submitting any
issues to our Support Team.
Overview
ENTERPRISE
2. Version History
2.1. Version 5.3.16.593
Resolved Issues
Fixed an issue where the Active Virus Control module was introducing a reboot loop on
x64 desktop computers with special hardware configuration.
Comodo Antivirus
Comodo Firewall
Version History
ENTERPRISE
FortiClient*
G DATA ANTIVIRUS
Norton Security
Resolved Issues
In some situations, on-demand tasks started to run outside the current policy schedule.
This issue is now fixed.
Content Control was unable to block access to specific websites if accessed from Google.
This issue is now fixed.
Fixed an issue where the AVC module was triggering a Java applet crash.
In some situations, virtual machines from VMware Workstation and Oracle VirtualBox
were prevented from starting. This issue is now fixed.
In some corner cases, the deployment failed. The issue is now fixed.
For the French product version, when AVC blocked an item, the file path was not
displayed. This issue is now fixed.
Fixed some untranslated texts for the localized versions.
Version History
ENTERPRISE
Control Center is now notified when a system requires reboot after a security software
uninstallation task.
Added several Endpoint Security optimizations for the following Microsoft applications:
Version History
ENTERPRISE
Version History
ENTERPRISE
Resolved Issues
Quarantined files detected on network shares had incorrect links in the Quarantine
window; therefore the files could not be restored to the original location. This issue is
now fixed.
When multiple update locations were defined and a checking error occurred for one of
these locations, this location was still taken into account while downloading the updates.
This issue is now fixed.
In some situations, Endpoint Security was updating from upgrade.bitdefender.com even
if the specified update server was a local relay. This issue is now fixed.
Scheduled reboots after a product update were malfunctioning. This issue is now fixed.
Fixed a vulnerability of the update service.
In certain situations, while Endpoint Security did not communicate with Control Center,
a system performance slowdown occurred. This issue is now fixed.
In certain situations, protected systems installed with Cisco VPN Client were not detected
in Control Center, while the OS detection is performed by scanning the MAC address
and these systems' MAC addresses were changed by the VPN Client.
Removing F-Secure 10.x and 11.x was not always successful. This issue is now fixed.
Fixed an issue with the Endpoint Security installation crashing on any supported 64-bit
system, while the Microsoft Visual C++ 2010 Redistributable for 64 bits was previously
installed in the system with wrong msvcr100.dll or msvcp100.dll files.
The BitDefender Personal CA.Net-Defender certificate was not correctly installed
for Firefox browser on Windows 8 systems. This issue is now fixed.
Certain HTTPS web addresses were blocked by Endpoint Security, even after adding
exceptions for these links in the policy. This issue is now fixed.
Exclusions defined using the %appdata% variable were not properly applied. This issue
is now fixed.
Infected files found with QScan SDK were not checked against On-Demand exclusions.
This issue is now fixed.
Finished policy tasks were reported as pending in Control Center. This issue is now fixed.
In certain situations, while the firewall module was enabled in Endpoint Security, the user
login to the domain account was very slow. This issue is now fixed.
The 7-day notification was displayed although the last on-demand scan was run within
less than a week. This issue is now fixed.
Java was crashing while Active Virus Control was enabled in Endpoint Security installed
on 32-bit operating systems. This issue is now fixed.
Version History
ENTERPRISE
Resolved Issues
In a network with multiple DNS servers, when the first DNS server from the list was not
resolving the addresses, the update failed with error code 1022. This issue is now fixed.
When removing a rule from the Data Protection policy, a second try was needed for the
setting to apply on the endpoint. This issue is now fixed.
In some situations, the deployment through an Endpoint Security Relay failed downloading
the installation packages. This issue is now fixed.
In some situations, after an update, the scheduled reboot was not triggered at the correct
hour. This issue is now fixed.
The Content Control module was unable to block specific embedded videos in webpages.
This issue is now fixed.
Version History
ENTERPRISE
Browser Search Advisor was not functioning with Bing search engines. This issue is now
fixed.
Resolved a corner case scenario when the target file inside a previously excluded folder
was scanned after the folder exclusion was replaced with the file exclusion.
A driver incompatibility caused Endpoint Security and StorageCraft backup software to
malfunction if they were both installed on the same computer. This issue is now fixed.
When the system reboot had not been performed after a previously Endpoint Security
instance removal, the deployment failed with incorrect error message. This issue is now
fixed.
Fixed the firewall description in the Endpoint Security GUI.
Note
This update does not require a reboot.
Version History
ENTERPRISE
The file, folder and process exclusions were not applying while the user was logged off.
This issue is now fixed.
In some situations, the Windows machines created with the Sysprep tool were unable
to properly load the antimalware module. For details about how to fix this issue, refer to
this KB article.
Fixed several user interface localization issues.
Note
No issues occurs with IP address configuration of the update server.
*Uninstallation works only when Endpoint Security is manually installed and does not
work when deployed from the management console.
Version History
ENTERPRISE
Resolved Issues
When multiple update locations were defined and one contained older files than those
currently installed, product downgrade was possible. This issue is now fixed, only updating
to higher versions being allowed.
When present, the Firewall module caused slow login to Active Directory computers.
This issue is now fixed.
In some situations, the engines failed to load, making the On-access Scanning module
impossible to load. This issue is now fixed.
In certain situations, Endpoint Security Relay update server was downloading new
signatures without cleaning the old ones, increasing the amount of used disk space. This
issue is now fixed.
In certain situations, Endpoint Security appeared in the About window as never updated.
This issue is now fixed.
In rare situations, due to process race condition, some instances of the scheduled
on-demand scan tasks did not run. This issue is now fixed.
Downloading PDF files with Internet Explorer 8 was impossible when Content Control
was present. This issue is now fixed.
In a network environment using OpenDNS, Endpoint Security was sending malformed
requests to the OpenDNS server during the updating process, resulting in a wrong
response and update failure. This issue is now fixed.
Creating a Machine Catalog with MCS in XenDesktop 7.5 failed if Endpoint Security was
installed. The issue is now fixed.
Endpoint Security could not communicate with Control Center when the client was
connected to the Internet through PPPoE or VPN. This issue is now fixed.
In some situations, Windows Action Center reported that Endpoint Security was not
installed. This issue is now fixed.
When the On-access Scanning module was set to Permissive and was scanning only
applications extensions, an infected file could be executed. The issue is now fixed.
Sometimes, the Web Category filter did not apply after multiple refresh of the webpage.
The issue is now fixed.
The default rule for printing in another network was not working in all situations. The
issue is now fixed.
Version History
10
ENTERPRISE
*Uninstallation works only when Endpoint Security is manually installed and not when
deployed from the management console.
Resolved Issues
When uninstalling an endpoint, the entry was not removed from the management console.
This issue is now fixed.
Copyright information was updated.
Fixed some instabilities of the communication component that was functioning improperly
in some certain scenarios.
Fixed the abnormal situation when our Photon technology was activated only after the
first update. The feature is functioning now from the moment the endpoint is installed.
Version History
11
ENTERPRISE
Note
For the two products to work together on the same system, it is required that Bitdefender
Security for Exchange to be installed first.
Version History
12
ENTERPRISE
Resolved Issues
Fixed some crashes and instabilities of the product.
Fixed the abnormality in which copy files to quarantine was done even for the delete
action.
After running the Modify Installer task, the target clients appeared expired. This issue
is now fixed.
Fixed the performance impact experienced on slow computers during Endpoint Security
updates.
Machines with Endpoint Security Relay role experienced a performance slowdown during
updates. This issue was fixed by optimizing the update mirroring process on clients with
Endpoint Security Relay role.
Note
A Potentially Unwanted Application (PUA) is a program that may be unwanted on the
PC and sometimes comes bundled with freeware software. Such programs can be
installed without the user's consent (also called adware) or will be included by default
in the express installation kit (ad-supported). Potential effects of these programs include
the display of pop-ups, installing unwanted toolbars in the default browser or running
several processes in the background and slowing down the PC performance.
Version History
13
ENTERPRISE
A new feature has been implemented to prevent data loss in case of false positives by
saving copies of files into quarantine before they are disinfected. Copy files to quarantine
before applying the disinfect action option is available in Antimalware > Quarantine
section of the policy settings from Control Center. This action applies to all kind of scans:
on access, on demand and contextual scans.
Resolved Issues
Endpoint Security deployment failed on target computers with DHCP provided IP
addresses (the hostnames were not resolved). This issue is now fixed.
All on-demand scans appeared in Endpoint Security as custom scans. This issue is now
fixed.
Wrong (negative or very large) number of detected issues displayed in certain situations
after performing on demand scan. This issue is now fixed.
The quick scan automatically performed when installing Endpoint Security did not take
into account the proxy settings. This issue is now fixed.
Web control issues were not taken into account in the Status page > Content Control
section. This issue is now fixed.
In very rare occasions, after multiple refresh, webpages were blocked by Content Control
modules. This issue is now fixed.
In certain situations, the traffic light toolbar appeared in webpages even when the scanning
was disabled. This issue is now fixed.
In some occasions, the antimalware, firewall or content control status available in Endpoint
Security was not updated immediately in the GravityZone console. The issue is now
fixed.
Solved some compatibility issues between Endpoint Security and DD Interceptor that
generated a crash in Endpoint Security.
Version History
14
ENTERPRISE
Resolved Issues
Solved some blue screen crashes by providing a new on access file driver.
A new rootkit driver implemented with this version solves some failed uninstall issues.
Version History
15
ENTERPRISE
Resolved Issues
Fixed a major boot slowdown on Lenovo based Windows XP systems.
Scheduled tasks sent from Control Center were not running on the target computer's
time. This issue is now fixed.
Fixed an issue with the Endpoint Security not being able to update to the latest version.
Fixed several crashes occurred for different modules of Endpoint Security.
In certain situations, the Content Control modules did not work correctly after a system
reboot. This issue is now fixed.
Device scan notifications were not translated for localized versions of Endpoint Security.
This issue is now fixed.
In certain situations, all computer policies were reset after a system restart. This issue
is now fixed.
After modifying existing data protection exclusions, these did not apply anymore. This
issue is now fixed.
In certain situations, the Postpone reboot task did not work and the systems were
eventually rebooted. This issue is now fixed.
Device Scan did not stop after trying to remove / eject storage devices. This issue is now
fixed.
After uninstalling the Firewall module, the Windows Firewall was not turned on. This issue
is now fixed.
Resolved Issues
On demand scheduled scan tasks did not run on local computer time. This issue is now
fixed.
Fixed an issue with scheduled scan tasks not working properly when the scan time
exceeded the scheduled interval.
In certain situations, Endpoint Security detected the temporary restored files and sent
them back to Quarantine. This issue is now fixed.
Version History
16
ENTERPRISE
Product exclusions did not apply after Endpoint Security has lost connection with Control
Center. This issue is now fixed.
Version History
17
ENTERPRISE
3. Known Issues
On Windows machines with Endpoint Security installed, System Restore does not
complete successfully. To create a valid restore point, you have to first uninstall Endpoint
Security.
Antimalware exclusions for extensions defined with a dot (for example: .exe) in Security
for Endpoints policies are not taken into account.
Uninstallation of an Endpoint Security Relay causes all Endpoint Security clients installed
through it to lose connection with Control Center.
After changing an Endpoint to an Endpoint Security Relay using the Modify Installer
task, it will not be able to download the installation packages from the update server.
After uninstalling a client connected to an Endpoint Security Relay with label, the endpoint
label is also removed.
Known Issues
18