Vulnerability Manager has a new dashboard containing summary information about vulnerabilities, operating systems, and trend graph.
Vulnerability Manager allows scanning of Internet Protocol version 6 (IPv6) addresses.
Enter your IPv6 addresses as you would your IPv4 addresses. You can type in each address, type in an IP range, or you can import your addresses and ranges from a file.
Organization administrators can create, assign, remove, and delete a tag to an asset. This allows administrators to organize their assets with similar tags, simplifying the performance of some actions.
Create a vulnerability set to target which vulnerabilities to scan for and generate reports for.
The product also provides some predefined vulnerability sets based on popular compliance standards, like the latest Microsoft patches, CWE/SANS Top 25, and OWASP Top 10. These are known as McAfee Vulnerability Sets.
The product allows users to use SUDO instead of SU for running individual commands in privileged mode.
For general vulnerabilities and web FSL checks, the port number, service, and protocol are now included in the Vulnerability Details and Vulnerabilities by IP report sections.
The product supports Microsoft Windows Server 2003 for the scan controller and scan engine only, with some limitations.
Issues from previous releases of the software that are resolved in this release are listed below.
Installation fails when trying to install the McAfee Vulnerability Manager database on a system running .NET 4.0. (589403)
Resolution
Remove NET 4.0 before installing McAfee Vulnerability Manager. This is documented in the McAfee Vulnerability Manager Install Guide.
After an upgrade, verify that any custom port settings are properly configured. (566910, 556664)
Resolution
Custom port settings are maintained when upgrading McAfee Vulnerability Manager.
When installing the scan controller as the only component on a system, typing in a custom port number does not work and the default port is used. (558157)
Resolution
Custom ports work when installing the scan controller as the only component on a system.
When adding components, like a scan engine or scan controller, make sure the time on all systems are correct. If the time is not correct, SSL certificates might be out of synchronization and components might not connect properly. (580831)
Resolution
Product components connect even when the time is out of synchronization.
When removing Informational Crawl-Only vulnerabilities from an Informational Web Crawl scan configuration, the web application vulnerabilities are listed in different vulnerability categories. So deselecting the web application vulnerability in one category does not remove it from the scan configuration. To remove a web application vulnerability from a scan configuration you must deselect it from all categories before saving the scan configuration. (589747)
Resolution
Added this information to the product online help.
When creating a web application scan configuration, selecting a credential set and manually typing credentials might result in only some of the credential names appearing in the User Credentials Used section of the report. (589780)
Resolution
Now all credential names appear in the report.
When using form authentication in a web application scan, form authentication might be applied to any page with a form, not just the pages assigned in the scan configuration. (588696)
Resolution
Form authentication in a web application scan functions properly.
When running a scan with Perform SSH Key Collection enabled, the scan status is not properly updated. The scan status might remain at zero for the duration of the scan and then update to 100%. (586629)
Resolution
The scan status updates properly.
If the organization administrator tries to create a new scan by right-clicking in the Name/Description pane (right pane) of the Users/Groups page, an error message displays stating the user does not have sufficient access rights to create a scan. Create a new scan by right-clicking in the organization tree (left pane). (587306)
Resolution
New scans are created when right-clicking in the Name/Description pane (right pane) of the Users/Groups page.
If you receive a report generation fail message when creating a large report, the issue could be with the upload limit in IIS 7.5. By default, IIS 7.5 limits the upload to 30 MB. When installing McAfee Vulnerability Manager, this limit should be increased to 300 MB. In some installation scenarios, the larger upload limit is not set. If your reports are not appearing in the enterprise manager after the scan completes, you can either retrieve the compressed report files from the report server or you can manually increase the IIS 7.5 upload limit. (580626, 589314)
Resolution
The report properly appears in the enterprise manager.
When generating large reports with all report types selected (CSV, HTML, PDF, and XML), the reports might be too large to post to the enterprise manager. If your reports are not appearing in the enterprise manager after the scan completes, retrieve the compressed report files from the report server. (589314)
Resolution
The report properly appears in the enterprise manager.
The workgroup administrator cannot see web application configurations in use from a configuration created by the organization administrator. When an organization administrator creates a web application configuration and makes it available to workgroup administrators, the assets or scan configurations associated with this web application configuration are not visible to the workgroup administrators. Only the organization administrator can view which assets and scan configurations are associated with the web application configuration, since multiple workgroups could be using it, and that information should not be accessible to other workgroups. (589931)
Resolution
Workgroup administrators can see the web application configurations in use from a configuration created by the organization administrator.
Trying to remove an asset from a group using the Remove from Group feature might not work. If the Remove from Group feature does not work, then move the asset to the root organization. (590250)
Resolution
The Remove from Group feature now functions properly.
When trying to create a group with an existing name, the new group is not created and no message displays that the name is already in use. (580879)
Resolution
An error message displays that the group name is already in use.
The scan controller is a new component for McAfee Vulnerability Manager 7.0. If you are upgrading and a Scan Engine cannot communicate with any Scan Controller warning message appears in the configuration manager, you must manually assign a scan controller to the scan engine. (589928)
Resolution
Scan engines are assigned to a scan controller during an upgrade.
When the global administrator assigns a scan engine to an organization, the scan engine also appears in the workgroups. The organization administrators must make sure the scan engine is properly assigned within their organization. (587688)
Resolution
Added this information to the product online help.
When email notifications are enabled for the organization administrator, the scan started email notification might not display the IP range. (589932)
Resolution
The scan started email notification displays the IP range.
The McAfee documentation is designed to provide you with the information you need during each phase of product implementation, from evaluating a new product to maintaining existing ones. Depending on the product, additional documents might be available. After a product is released additional information regarding the product is entered into the online Knowledgebase available on McAfee ServicePortal.
|
Use this task to go to the release notes and other product documentation for McAfee enterprise products.
Copyright © 2012 McAfee, Inc. Do not copy without permission.
McAfee, the McAfee logo, McAfee Active Protection, McAfee AppPrism, McAfee Artemis, McAfee CleanBoot, McAfee DeepSAFE, ePolicy Orchestrator, McAfee ePO, McAfee EMM, McAfee Enterprise Mobility Management, Foundscore, Foundstone, McAfee NetPrism, McAfee Policy Enforcer, Policy Lab, McAfee QuickClean, Safe Eyes, McAfee SECURE, SecureOS, McAfee Shredder, SiteAdvisor, SmartFilter, McAfee Stinger, McAfee Total Protection, TrustedSource, VirusScan, WaveSecure, WormTraq are trademarks or registered trademarks of McAfee, Inc. or its subsidiaries in the United States and other countries. Other names and brands may be claimed as the property of others.
NOTICE TO ALL USERS: CAREFULLY READ THE APPROPRIATE LEGAL AGREEMENT CORRESPONDING TO THE LICENSE YOU PURCHASED, WHICH SETS FORTH THE GENERAL TERMS AND CONDITIONS FOR THE USE OF THE LICENSED SOFTWARE. IF YOU DO NOT KNOW WHICH TYPE OF LICENSE YOU HAVE ACQUIRED, PLEASE CONSULT THE SALES AND OTHER RELATED LICENSE GRANT OR PURCHASE ORDER DOCUMENTS THAT ACCOMPANY YOUR SOFTWARE PACKAGING OR THAT YOU HAVE RECEIVED SEPARATELY AS PART OF THE PURCHASE (AS A BOOKLET, A FILE ON THE PRODUCT CD, OR A FILE AVAILABLE ON THE WEBSITE FROM WHICH YOU DOWNLOADED THE SOFTWARE PACKAGE). IF YOU DO NOT AGREE TO ALL OF THE TERMS SET FORTH IN THE AGREEMENT, DO NOT INSTALL THE SOFTWARE. IF APPLICABLE, YOU MAY RETURN THE PRODUCT TO MCAFEE OR THE PLACE OF PURCHASE FOR A FULL REFUND.