Last Updated: Feb 14, 2020, 7:05 AM CET
- New version of CertFix.exe - enhanced list of supported product versions (Feb 13, 2020, 1:57 AM CET)
- Download links for ESET Endpoint Antivirus/ ESET Endpoint Security 5.0.2272.7 (Feb 13, 2020, 1:57 AM CET)
- Antivirus and antispyware module update (version 1559.4 for v5) (Feb 13, 2020, 2:00 PM CET)
- How to download and use the fixing tool (Feb 13, 2020, 3:30 PM CET)
- New version of CertFix.exe - enhanced list of supported product versions (Feb 13, 2020, 8:30 PM CET)
- The fixing tool for v5 (Feb 13, 2020, 8:30 PM CET)
Alert Details
We would like to inform you that we have identified an issue in older versions of the product of our Windows business products, specifically:
ESET Endpoint Antivirus/ESET Endpoint Security 5
ESET Endpoint Antivirus/ESET Endpoint Security 6.5.2000+
ESET File Security for Windows 6.5.2000+
ESET Mail Security for Microsoft Exchange Server 6.5
⯈ ESET Security for Kerio 6.5
⯈ ESET Mail Security for Lotus Domino 6.5.14026
⯈ ESET Security for Sharepoint Server 6.5
⯈ ESET NOD32 Antivirus/ESET Smart Security 9
This issue DOES NOT affect the latest versions of our products including the latest ESET Endpoint Antivirus/ESET Endpoint Security – 6.6.2089 and 7.2 and ESET File Security for Windows 7.1.12018 and customers using the latest versions are not affected in any way. This issue relevant to the impacted versions listed and described above. Newest versions of our products are NOT affected.
ESET has identified that our kernel has a problem with verification of the timestamp of an already expired certificate (expired by 7th Feb 2020). This method fails and our modules in older, legacy versions, are declared as untrusted and therefore are not loaded. This mechanism ensures that no untrusted library is loaded.
As a result, the affected versions fail to load modules (Firewall, HIPS, Updated, Device Control, Web and Email protection) and are not functional, therefore the protection is not functional.
Symptoms
For versions older than 5.0.2271.x symptoms are:
- Failed loading of modules for v5 family
- GUI of the main window is in English and logo shows ESET Smart Security 5 instead of Endpoint Security
For versions 6.5.x symptoms are:
- Product reports "Anti-Phishing protection is non-functional"
- Product reports that it is not activated
- Product’s advanced settings have features missing
If they are managed by our ESET Remote Administrator or ESET Security Management Center, they will fall back to the respective parametric group and report an alert as not being activated and the antiphishing module as not functional.
Solution
Important!
If you are using affected versions and issue is not manifesting, do not restart the machine and perform upgrade immediately.
Frequently Asked Questions
Please read the following ESET Knowledgebase article:
Legacy products startup issue FAQ
The following solutions are available:
1. If you have not restarted your computer with ESET Endpoint product yet, make sure you have Update Module(version 1074.2 for v6.5) and Antivirus and antispyware module update (version 1559.4 for v5) listed in Installed components. This modules ensures protection and allows for subsequent upgrade to the latest versions, which is required step to fully mitigate the situation.
Then, upgrade to the latest version:
- Install ESET Endpoint Antivirus 5.0.2272.7 or ESET Endpoint Security 5.0.2272.7
- Install or upgrade ESET Endpoint Security or ESET Endpoint Antivirus on a client workstation (7.x)
- Install and activate ESET File Security for Microsoft Windows Server (7.x)
- Install ESET Mail Security for Microsoft Windows Exchange Server (7.x)
- Install ESET Mail Security for Lotus Domino 7.1
- Install and activate ESET Security for Microsoft SharePoint Server (7.x)
How to check the version of installed modules in ESET Endpoint Security
In the main program window, navigate to Help and support > About ESET Endpoint Security and click Installed components. If the version of the Update module is 1074.2 for v6.5 and the version of the Antivirus and antispyware module update is 1559.4 for v5, your ESET product has been successfully updated.
2. If you have restarted your computer with ESET Endpoint product v6.5, use the fixing tool and upgrade to the latest version if possible.
How to download and use the fixing tool for v6.5
Download CertFix.exe. If you are unable to download an executable file with your browser, download CertFix.rar. The fixing tool can be run or downloaded to the machine and
automatically executed from CMD.exe with the following script (the log will be created):
powershell -command "& {(New-Object System.Net.WebClient).DownloadFile('http://help.eset.com/eset_tools/CertFix.exe', '%temp%\CertFix.exe');(Start-process '%temp%\CertFix.exe' -NoNewWindow)}" > C:\CertFix.log
or if managed remotely, as client task in ESMC → Operating system → Run command.
3. If you have restarted your computer with ESET Endpoint product 5.x, use the fixing tool. If you have successfully applied the fix tool, ESET Endpoint Antivirus/ESET Endpoint Security 5.0.2272.7 (5.0.2271.3 for JPN) is installed on your computer and it is fully functional. Next step is to upgrade from 5.0.2272.7 to the latest version ESET Endpoint Antivirus 7.2.2055.0 / ESET Endpoint Security 7.2.2055.0 or also available on the ESMC repository, if possible.
How to download the fixing tool for v5
Choose the language and the version of the fixing tool below:
English:
4. If you have ESET Endpoint product 6.5.x running on Windows XP, use the fixing tool for v6.5. Upgrade to ESET Endpoint Antivirus/ESET Endpoint Security 6.5.2132.5 that is compatible with Windows XP.
How to download and use the fixing tool for v6.5
Download CertFix.exe. If you are unable to download an executable file with your browser, download CertFix.rar. The fixing tool can be run or downloaded to the machine and automatically executed from CMD.exe with the following script (the log will be created):
powershell -command "& {(New-Object System.Net.WebClient).DownloadFile('http://help.eset.com/eset_tools/CertFix.exe', '%temp%\CertFix.exe');(Start-process '%temp%\CertFix.exe' -NoNewWindow)}" > C:\CertFix.log
or if managed remotely, as client task in ESMC → Operating system → Run command.
NOTE:
Windows PowerShell comes installed by default in every Windows, starting with Windows 7 SP1 and Windows Server 2008 R2 SP1.
Important!
We recommend upgrading ESET Endpoint Antivirus/ESET Endpoint Security 5 by uninstalling version 5 and installing the latest version ESET Endpoint Antivirus/ESET Endpoint Security 7.2. If you want to run version 5 anyway, we recommend upgrading to version 5.0.2272.7 which is not affected.
Click the appropriate link for your system in the table below to download the ESET Endpoint Security or ESET Endpoint Antivirus installer file.
Which version (32-bit or 64-bit) of ESET endpoint products should I download?
Your license information (ESET-issued username and password) is required for authentication.
How do I receive a Username, Password, and License Key for my ESET business product?
| ESET Endpoint Security 5.0.2272.7 | 64-bit | 32-bit |
|---|---|---|
| EES installer | Download ESET Endpoint Security | Download ESET Endpoint Security |
| ESET Endpoint Antivirus 5.0.2272.7 | 64-bit | 32-bit |
|---|---|---|
| EEA installer | Download ESET Endpoint Antivirus | Download ESET Endpoint Antivirus |
We strongly suggest upgrading ESET Endpoint Antivirus/ESET Endpoint Security 6.5 to the latest version of ESET Endpoint Antivirus/ESET Endpoint Security 7.2.
We recommend upgrading Server products version 6.5 to the following versions:
ESET File Security for Windows 7.1ESET Mail Security for Microsoft Exchange Server 7.1
ESET Mail Security for IBM Domino 7.1
ESET Security for Sharepoint Server 7.1
For ESET Security for Kerio 6.5, we are working on it and we will get it fixed as soon as possible.
If you are having any concerns or questions – or are unable to upgrade to the latest versions - do not hesita
Join ESET at Facebook