Support for the following Microsoft security updates have been released by GFI for GFI LANguard.

These updates will be automatically downloaded and added to your security vulnerability scanning database on your next restart of GFI LANguard.

New Security Updates Supported: MS10-017 - Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150) MS10-016 - Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (975561)

More Information: MS10-017

Severity Rating: Important

Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150)

Support for the following Microsoft security updates have been released by GFI for GFI LANguard.

These updates will be automatically downloaded and added to your security vulnerability scanning database on your next restart of GFI LANguard.

New Security Updates Supported: MS10-015 - Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (977165) MS10-014 - Vulnerability in Kerberos Could Allow Denial of Service (977290) MS10-013 - Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (977935) MS10-012 - Vulnerabilities in SMB Server Could Allow Remote Code Execution (971468) MS10-011 - Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (978037

The following procedure explains how to deploy Microsoft Office 2007 using GFI LANguard application management features. This procedure can be divided in the following sections: Run the Microsoft Office 2007 installation locally and record the required settings Create a batch script to be used by GFI LANguard to deploy Microsoft Office 2007 Run the deployment using GFI LANguard Run the Microsoft Office 2007 installation locally and record the required settings This procedure will explain how to record the settings chosen during the installation into the admin file Open command prompt Browse to the directory containing the Microsoft Office 2007 setup files Run the following command:

'setup.exe /admin'

Configure all the options as applicable for your installation When all settings are

The following articles document the recommended settings for GFI LANguard in different environments: Recommended settings for best performance in GFI LANguard Recommendations for performing scans over a slow network connection Recommendations for scanning large networks with GFI LANguard

Before deploying GFI LANguard, it is recommended to read the following articles: Can GFI LANguard be installed on a Windows XP with Service Pack 2 computer? Can I have multiple installations logging to the same SQL database? Can I install a virus scanner, or make use of backup software on the same machine that is running GFI LANguard? How can I perform a silent installation of GFI LANguard 9? I would like to configure the GFI LANguard required settings for the Microsft Windows Server 2003 SP1 firewall via GPO. How is this done?

Issue Encountered: When scanning a range of computers on the network, GFI LANguard does not perform a scan on all the computers specified in the network range. Some computers are missing from the scan results. Resolution: Offline Computers By default, GFI LANguard will ignore all machines on a network which do not respond to several ICMP and/or NetBios requests. This can either mean that the machine is switched off at the time of scanning or that the machine itself or the environment (i.e. network firewall) prevents the requests from being answered correctly. Perform each of the following recommendations which address this issue: Make sure all computers which you wish to scan are powered on at the time the scan is performed Ensure that the appropriate scanner options in the scanning profile's network discovery properties are enabled. This can be perf

The exact space required to save each scan result can vary depending on the scan profile used and various other factors such as the size of your network being scanned. According to our tests the database growth is approximatly 0.4 MB per computer should a full scan be performed. Therefore if a full scan of 100 computers was to be performed three times, the total size of the scans on the database would be approximatly of 120 MB. 0.4 (Size consumed per each computer) X 100 (Number of computers in the scan) X 3 (Number of times the scan was performed) = 120 MB

GFI LANguard is able to use the repository of a WSUS server in the network. To configure this, perform the following procedure: Open the GFI LANguard configuration Click on the 'Configuration' tab Expand the 'Microsoft Updates' node Right click on the 'Patch Auto-Download node' and select 'Edit patch auto-download options...' Select the 'Patch Repository' tab and enable 'Use files downloaded by WSUS when available' Specify the path of the WSUS content folder.

Note: The path of the WSUS repository can be either a local folder or a UNC path. Example: Server01WsusContent When this feature is enabled, one should keep in mind that GFI LANguard will use the WSUS server as an additional repository for updates. Should the required update be found in the WSUS repository and not in the GFI LAN