McAfee Agent 4.6 Patch 1 available

Hi guys,

McAfee Agent 4.6 Patch 1 Windows and Extension  are now available from the McAfee ServicePortal ( and McAfee Downloads site (

You can only download these files with an authorized and valid McAfee Grant number.




McAfee VSE 8.8 Patch1

Hi guys,

Patch 1 for VirusScan Enterprise 8.8 is now available from the locations below:

Patch 1 is considered a Mandatory release. For information on ratings, see KnowledgeBase article KB51560:

Customers with McAfee Application Control or Solidcore version 5.1.2 should be aware of the issue and resolution described in KnowledgeBase article KB73274:


McAfee VSE-Storage 1.0.x RPC Timeout and 0x14 Errors

Hi guys,

Just got word from McAfee about the following:

“NetApp ONTAP 7.3.6 and 8.0.2 introduced an option to handle idle RPC sessions and in particular idle RPC sessions by file ID. Generally, this new strategy behaves when a particular FID associated with an RPC connection does not have any activity for more than 20 minutes (by default), Data ONTAP disconnects the connection, considering it idle. This change was added to address a memory leak that was experienced by applications that were opening (many) RPC connections and never closing them out. This lack of closing out of connections creates the NetApp memory leak.

Because McAfee VSES uses the same infrastructure for keep-alive probes the disconnect/idle setting may cause performance issues when reading/writing large files to the filer(s).

If you are experiencing VSE for Storage RPC Timeout disconnects with filers running 7.3.6 or 8.0.2 then current workaround steps are:

  1. Modify the following filer option cifs.rpcfd_timeout to a value of 0.
    To change the value run the following: options cifs.rpcfd_timeout 0 [ENTER].
  2. Confirm the option took by typing: options cifs.rpcfd_timeout [ENTER].
    The value returned for the option should be 0.
  3. Do one of the following to ensure the malfunctioning AV servers disconnect and reconnect:
    • Cycle the McAfee AV services on the server itself
    • Disable / Re-enable AV on the filer.

Monitor for the behavior to re-appear.
McAfee also recommends installing the latest hotfixes:

  • VSE for Storage 1.0.0 Patch 1 plus HF539302 and HF685485
  • VSE for Storage 1.0.2 plus HF672928 and HF692368

To access the above VSE for Storage hotfixes, contact McAfee Customer Support.

If you encounter VSE for Storage RPC Timeout disconnects with filers running 7.3.6 or 8.0.2, see “ONTAP RPC connections” when querying NetApp Knowledge Base Database or when opening a case with NetApp.”


ePO Hotfix to Remediate Apache HTTP Server

Hello friends,

On August 20, 2011, the Apache Software Foundation released a vulnerability announcement (CVE-2011-3192) concerning a flaw in the way the Apache HTTP Server handles Range HTTP headers that could result in a Denial of Service (DoS) attack.
Because McAfee ePolicy Orchestrator versions 4.0, 4.5, and 4.6.x make use of the Apache HTTP Server software, McAfee has developed Hotfix 701318 to remediate this issue for ePO 4.5 and 4.6.x.

IMPORTANT: ePO 4.0 reached End of Life (EOL) on September 30, 2011. Users with ePO 4.0 must upgrade to a current supported version of ePO to apply the hotfix.
To access the Hotfix, log into the ServicePortal at:, click Download Software Updates under Self Service and locate the entry: EPolicy Orchestrator EPOHF701318.

For more information on this issue, see KB73310

Update McAfee Endpoint Encryption for PC

McAfee hasreleased version 5.2.11 for Endpoint Encryption for PC. It is a maintenance release and is now available from the McAfee Downloads site.

For additional information, see the Release Notes documents below:

  • Endpoint Encryption Manager – PD23460
  • Endpoint Encryption for PC – PD23457
  • McAfee ePolicy Ochestrator 4.5 Patch5 released

    Hi guys,

    McAfee has released patch #5 of ePolicy Orchestrator version 4.5.

    McAfee ePolicy Orchestrator 4.5 Patch 5 is now available for download on the McAfee Download site.

    Further more McAfee Network DLP 9.0 patch 4 (9.0.4) is now available for download on the McAfee Download site

    This is it for now.


    McAfee updates

    Hi guys,

    Here are a few updates about McAfee products:

    Memory leak in MFEVTPS.EXE
    Recent Microsoft security updates for Windows XP SP3 introduce a memory leak for the VirusScan Enterprise process MFEVTPS.EXE. The leak is actually from a Windows binary, Crypt32.dll, that MFEVTPS.EXE utilizes. A fix for this issue is available from Microsoft.

    For more information, see KB73018: Continue reading “McAfee updates”

    McAfee Endpoint Encryption for Files & Folders

    Hi Guys,

    McAfee has released the 4th version of it’s Endpoint Encryption for Files and Folders.

    Endpoint Encryption for Files and Folders (EEFF) 4.0 is now available for download via the McAfee download site at

    EEFF 4.0 includes the following new features:

    • Full integration with McAfee ePO (v4.5 Patch 4 or higher)
    • Authentication based on Windows logon for key and policy retrieval
    • User Personal Keys – each user can have an individual user key created centrally in ePO for usage as file encryption key or USB device recovery key for EERM
    • Support for Windows 7 64 bit

    For additional details, see the Release Notes in KnowledgeBase article PD23264:



    McAfee updates

    Hi guys,

    Here’s an update from McAfee.

    FAQ article for VirusScan Enterprise 8.8
    If you use or plan to upgrade to VirusScan Enterprise 8.8, McAfee recommends that you review the Frequently Asked Questions in KnowledgeBase article KB71642:

    This content of this article is based on questions received directly from McAfee customers via our Technical Support agents and posts in the McAfee Community (

     Additional documents:

    McAfee ePO MER tool v2.5 release

    Hi Guys,

    McAfee released today version 2.5 of it’s ePO-MER tool. More information about the download and documentation can be found here.

    To download ePO-MER packages, go to the WebMER site at:
    A Walkthrough Guide is available from the KnowledgeBase. See PD22739 (, or via the WebMER site.
    Release notes are available from the KnowledgeBase, See PD22740 (