Any reference to Community Connect� 3 in this document apply equally to RM Smart-Tools 3.

Microsoft� has released significant Security Updates for Windows�. HFXCC3271 contains these updates in a format easily applied to Community Connect 3 networks.
Note: We recommend that you apply this Security Update without delay.
Before installing any Software Update, please refer to TEC90813 and DWN59018 in the Other Useful Articles section below. These articles detail RM's recommendations regarding Software Update installation and support.

At the time of writing this article there were no known issues related to HFXCC3271.

• HFXCC3271 should be installed on Community Connect 3 networks with Service Release 5 (SR5) or above.
• This Security Update should be installed on to all Community Connect 3 servers.

Note: All servers and workstations will need to be restarted in order to install this Security Update completely. You should therefore plan to install the Security Update out-of-hours to minimise disruption to your network.

HFXCC3271 contains the following Microsoft Security Updates:

1. MS11-018 - Cumulative Security Update for Internet Explorer (2497640)
2. MS11-019 - Vulnerabilities in SMB Client Could Allow Remote Code Execution (2511455)
3. MS11-020 - Vulnerability in SMB Server Could Allow Remote Code Execution (2508429)
4. MS11-021 - Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2489279)
5. MS11-022 - Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (2489283)
6. MS11-023 - Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2489293)
7. MS11-024 - Vulnerability in Windows Fax Cover Page Editor Could Allow Remote Code Execution (2527308)
8. MS11-026 - Vulnerability in MHTML Could Allow Information Disclosure (2503658)
9. MS11-027 - Cumulative Security Update of ActiveX Kill Bits (2508272)
10. MS11-028 - Vulnerability in .NET Framework Could Allow Remote Code Execution (2484015)
11. MS11-029 - Vulnerability in GDI+ Could Allow Remote Code Execution (2489979)
12. MS11-030 - Vulnerability in DNS Resolution Could Allow Remote Code Execution (2509553)
13. MS11-031 - Vulnerability in JScript and VBScript Scripting Engines Could Allow Remote Code Execution (2514666)
14. MS11-032 - Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remote Code Execution (2507618)
15. MS11-033 - Vulnerability in WordPad Text Converters Could Allow Remote Code Execution (2485663)
16. MS11-034 - Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2506223)

More information on the issues resolved by these updates is available from the Microsoft website: http://www.microsoft.com/.

Notes:

• HFXCC3271 may not contain all the Security Updates released by Microsoft in February 2011. Please read the More Information section below for further details.
• The updates provided in HFXCC3271 supersede previously released Microsoft Security Updates; as such, the following Community Connect 3 workstation packages will be removed from networks (if present) during this Security Update's installation: 
  • XP SP3 IE6 Security Update 2482017
  • XP SP3 IE7 Security Update 2482017
  • XP SP3 IE8 Security Update 2482017
  • XP SP2 and SP3 Security Update KB980232
  • XP SP3 Security Update KB982214
  • XP SP2 and SP3 Security Update KB980195
  • XP SP2 and SP3 .NET2.0SP2 Security Update KB974378
  • XP SP3 .NET 2.0SP2 3.5SP1 Security update KB983583
  • XP SP2 and SP3 Security Update KB957488
  • Windows XP SP2 Security Update KB945553
  • Windows XP SP2 and SP3 Security Update KB951748
  • Windows XP SP2 and SP3 Security Update KB956803
  • XP SP2 and SP3 Jscript5.7 Security Update KB971961
  • XP SP2 and SP3 Jscript5.8 Security Update KB971961
  • XP SP2 VBS 5.6 Security Update KB981169
  • XP SP3 Security Update 2485376
  • XP SP3 Security Update KB2259922
  • XP SP3 Security Update 2479628
  • MS Excel 2002 SP3 Security Update KB2293211
  • MS Excel 2003 Security Update KB2293211
  • MS Excel 2007 Security Update KB2293211
  • MS Excel Viewer Security Update KB2293211
  • MS Office System 2007 Security Update KB2293211
  • Office 2007 CP Security Update KB967340
  • MS PowerPoint 2003 Security Update 2293386
  • MS PowerPoint 2002 Security Update 2293386
  • MS PPT Viewer 2007 Security Update 2293386
  • PowerPoint 2007 Security Update KB983235
  • MS Office 2003 Security Update 2423930
  • MS Office XP Security Update 2423930
  • MS Office 2007 System Security Update 2423930

If you are running a Community Connect 3 network, you should apply this Security Update without delay.

HFXCC3271 should be applied to all Community Connect 3 servers including all domain controllers and all Member Servers (such as DAMMS and MIS servers, or servers running Microsoft Exchange. It does not need to be applied to Community Connect 3 workstations directly, but all servers and workstations will need to be restarted for the Microsoft Security Updates to be applied fully.

Note: HFXCC3271 should not be directly applied to RM Client Connect Terminal Servers. For information on how to apply the server updates to these servers see the 'Installing on Terminal Servers' section below.

Important: All your Community Connect 3 servers will need to be restarted in order to install this Security Update completely. You should therefore plan to install the Security Update out-of-hours to minimise disruption to your network.

1. Click the HFXCC3271.exe file link below to download the Security Update.
2. Choose to Save the file, browse to the temporary location you wish to save it to (for example D:\temp) and click Save.
3. When it has downloaded, follow the installation instructions below to install the Security Update.

Important: During the installation of HFXCC3271, the Station Manager HealthCheck and the allocation of new Microsoft Security Update packages must be done manually. Please ensure that you fully complete all steps in the installation instructions. If you previously started to install the Security Update but cancelled the operation, follow the installation instructions in the 'Installing after cancelling a previous install' section below.

1. Download HFXCC3271.exe.
2. Log on to your first Community Connect 3 domain controller as a system administrator and copy the Security Update to a temporary location (for example D:\temp).
3. Run the Security Update by double-clicking the self-extracting executable file (HFXCC3271.exe). The Security Update will extract files automatically and run the RM Installation Assistant to begin the installation.
4. When prompted, click Continue.
5. The installation will proceed automatically. When prompted that the RM Installation Assistant has finished, click Finish.
6. Repeat steps 2-5 at all your other Community Connect 3 domain controllers.
7. Repeat steps 2-5 at any Member Servers (e.g. DAMMS or MIS servers) on the network.

   Note: After installation at a server, the server will need to be rebooted for the Microsoft Security Updates to be applied fully. It is recommended that you ensure each domain controller has rebooted successfully before applying the Software Update to the next server.

8. When all Community Connect 3 domain controllers have had HFXCC3271 applied, log on to the first Community Connect 3 domain controller server in each site as the system administrator. Run Microsoft Windows Explorer and browse to D:\RMNetwork\RMManage\Station Manager. Double-click on the file Healthcheck.exe, and select OK to start the health check and OK again, when it has completed.
9. HFXCC3271 provides new workstation packages but does not automatically allocate them. You should allocate these new packages to all your workstations at your earliest convenience.

Note: If you choose to allocate the packages at a later time, you must still complete all of steps 1 to 8 above now, including running the Station Manager HealthCheck.

The new Security Packages are listed as available packages as follows in the RM Management Console (RMMC):

System Packages:

• Vista Security Updates - April 2011
• Vista SP1 .NET 4.0 Security Update 2484015
• Vista SP2 .NET 4.0 Security Update 2484015
• XP SP3 .Net 2.0 SP2 Security Update KB2446704
• XP SP3 .Net 3.5 SP1 Security Update KB2446704
• XP SP3 .Net 4.0 Security Update KB2446708
• XP SP3 IE6 Security Update 2497640
• XP SP3 IE7 Security Update 2497640
• XP SP3 IE8 Security Update 2497640
• XP SP3 Security Update 2485663
• XP SP3 Security Update 2489979
• XP SP3 Security Update 2503658
• XP SP3 Security Update 2506223
• XP SP3 Security Update 2507618
• XP SP3 Security Update 2508272
• XP SP3 Security Update 2508429
• XP SP3 Security Update 2509553
• XP SP3 Security Update 2511455
• XP SP3 Security Update KB2491683
• XP SP3 Security Update KB2506212
• XP SP3 Security Update KB2510531
• XP SP3 Security Update KB2510581

Applications:

• MS Excel 2002 SP3 Security Update 2489279
• MS Excel 2003 SP3 Security Update 2489279
• MS Excel 2010 32-Bit Security Update 2489279
• MS Office 2003 SP3 Security Update 2489293
• MS Office 2007 SP2 Security Update 2489293
• MS Office 2007 System Security Update 2489279
• MS Office 2007 System Security Update 2489283
• MS Office Excel 2007 Security Update 2489279
• MS Office Excel Viewer Security Update 2489279
• MS Office PowerPoint Viewer 2007 Update 2489283
• MS Office PPT Viewer 2010 32-Bit Update 2489283
• MS Office XP SP3 Security Update 2489293
• MS PowerPoint 2002 SP3 Security Update 2489283
• MS PowerPoint 2003 SP3 Security Update 2489283
• MS PowerPoint 2007 SP2 Security Update 2489283
• MS PowerPoint 2010 32-Bit Security Update 2489283

Note: If you do not see the above packages in the RM Management Console, please run an Update Package List. To do this, please refer to TEC731836 in the Other Useful Articles section below.

Once you have allocated the packages to workstations, restart the workstations at your convenience for the updates to be installed.

1. Browse to D:\RMNetwork\RMManage\RM Hotfixes\HFXCC3271_extracted and double-click the file RM Installation Assistant.exe.

   Note: If this folder or its contents do not exist, re-run the HFXCC3271.exe file downloaded from the RM Support website as in step 1 of the installation instructions section above.

2. Follow the procedures from step 4 in the installation instructions section above.

Note: If you have a Terminal Server on your network, please follow the instructions below:

1. Install the RM Security Updates on to your Community Connect 3 domain controllers as described above.
2. Log on to the Terminal Server and browse to the following folder on one of your domain controllers: \\<DC_Server_Name>\RMManage\RM Hotfixes\HFXCC3271_extracted\Utilities\Server Updates\v1.85.0.0\
3. Double-click the Server_Updates.vbs file to install the Microsoft Security Updates.

Note: The Server_Updates.vbs script will run silently on a Terminal Server, however you can check for completion using the following process:

1. Log on to the Terminal Server as Systemadmin.
2. From the Start menu, select Run, type eventvwr and then press Enter.
3. From the right-hand pane, double-click the System event log.
4. In the list of events you should see a number of events with the Source 'NTServicePack' and event ID 4377 which will correspond with the date and time the ServerUpdates.vbs was run. (The number of entries will vary with each update as only updates relevant to the Terminal Server and any other updates relevant to applications installed on these servers, will be installed).

The components of HFXCC3271 will be included in a future Community Connect 3 Service Release or Microsoft Service Pack validated by RM.

The Security Update can be installed on to networks running Community Connect 3 with Service Release 5 or above.

HFXCC3271 is not included in Service Release 5 or 6. It will need to be re-applied if originally installed before Service Release 6 is installed.

Note: The application Software Updates will need to be re-applied if the related Microsoft application is installed or re-installed after the Software Updates were applied.

See the Description section for a full list. HFXCC3271 contains new relevant workstation and server Microsoft Security Updates. 

Please find below details of the software pre-requisites:

• Vista Security Updates - April 2011 (System requirements: Windows Vista/Vista SP1/Vista SP2)
• Vista SP1 .NET 4.0 Security Update 2484015 (System requirements: Windows Vista/Vista SP1/.Net Framework 4.0)
• Vista SP2 .NET 4.0 Security Update 2484015 (System requirements: Windows Vista/Vista SP2/.Net Framework 4.0)
• XP SP3 .Net 2.0 SP2 Security Update KB2446704 (System requirements: Windows XP SP3/.Net Framework 2.0 SP2)
• XP SP3 .Net 3.5 SP1 Security Update KB2446704 (System requirements: Windows XP SP3/.Net Framework 3.5 SP1)
• XP SP3 .Net 4.0 Security Update KB2446708 (System requirements: Windows XP SP3/.Net Framework 4.0)
• XP SP3 IE6 Security Update 2497640 (System requirements: IE6 on Windows XP SP3)  
• XP SP3 IE7 Security Update 2497640 (System requirements: IE7 on Windows XP SP3)
• XP SP3 IE8 Security Update 2497640 (System requirements: IE8 on Windows XP SP3) 
• XP SP3 Security Update 2485663 (System requirements: Windows XP SP3)
• XP SP3 Security Update 2489979 (System requirements: Windows XP SP3)
• XP SP3 Security Update 2503658 (System requirements: Windows XP SP3)
• XP SP3 Security Update 2506223 (System requirements: Windows XP SP3)
• XP SP3 Security Update 2507618 (System requirements: Windows XP SP3)
• XP SP3 Security Update 2508272 (System requirements: Windows XP SP3)
• XP SP3 Security Update 2508429 (System requirements: Windows XP SP3)
• XP SP3 Security Update 2508429 (System requirements: Windows XP SP3)
• XP SP3 Security Update 2509553 (System requirements: Windows XP SP3)
• XP SP3 Security Update 2511455 (System requirements: Windows XP SP3)
• XP SP3 Security Update KB2491683 (System requirements: Windows XP SP3)
• XP SP3 Security Update KB2506212 (System requirements: Windows XP SP3)
• XP SP3 Security Update KB2510531 (System requirements: Windows XP SP3)
• XP SP3 Security Update KB2510581 (System requirements: Windows XP SP3)
• MS Excel 2002 SP3 Security Update 2489279 (System requirements: Windows 2000;Windows NT;Windows Server 2003;Windows XP, MS Excel 2002 SP3)
• MS Excel 2003 SP3 Security Update 2489279 (System requirements: Windows 2000;Windows NT;Windows Server 2003;Windows XP, MS Excel 2003 SP3)
• MS Excel 2010 32-Bit Security Update 2489279 (System requirements: Windows 2000;Windows NT;Windows Server 2003;Windows XP, MS Excel 2010 32-Bit)
• MS Office 2003 SP3 Security Update 2489293 (System requirements: Windows 2000;Windows Server 2003;Windows Vista;Windows XP, MS Office 2003 SP3)
• MS Office 2007 SP2 Security Update 2489293 (System requirements: Windows 2000;Windows Server 2003;Windows Vista;Windows XP, MS Office 2007 SP2)
• MS Office 2007 System Security Update 2489293 (System requirements: Windows 7;Windows Server 2003;Windows Vista;Windows XP, MS Office 2007 System, File Format Converter)
• MS Office 2007 System Security Update 2489279 (System requirements: Windows 7;Windows Server 2003;Windows Vista;Windows XP, MS Office 2007 System, File Format Converter)
• MS Office Excel 2007 Security Update 2489279 (System requirements: Windows 7;Windows Server 2003;Windows Vista;Windows XP, MS Office Excel 2007)
• MS Office Excel Viewer Security Update 2489279 (System requirements: Windows 7;Windows Server 2003;Windows Vista;Windows XP, MS Office Excel Viewer)
• MS Office PowerPoint Viewer 2007 Update 2489283 (System requirements: Windows 7;Windows Server 2003;Windows Vista;Windows XP, MS Office PowerPoint Viewer 2007)
• MS Office PPT Viewer 2010 32-Bit Update 2489283 (System requirements: Windows 7;Windows Server 2003;Windows Vista;Windows XP, MS Office PowerPoint Viewer 2010 32-Bit)
• MS Office XP SP3 Security Update 2489283 (System requirements: Windows 7;Windows Server 2003;Windows Vista;Windows XP, MS Office XP SP3)
• MS PowerPoint 2002 SP3 Security Update 2489283 (System requirements: Windows 7;Windows Server 2003;Windows Vista;Windows XP, MS PowerPoint 2002 SP3)
• MS PowerPoint 2003 SP3 Security Update 2489283 (System requirements: Windows 7;Windows Server 2003;Windows Vista;Windows XP, MS PowerPoint 2003 SP3)
• MS PowerPoint 2007 SP2 Security Update 2489283 (System requirements: Windows 7;Windows Server 2003;Windows Vista;Windows XP, MS PowerPoint 2007 SP2)
• MS PowerPoint 2010 32-Bit Security Update 2489283 (System requirements: Windows 7;Windows Server 2003;Windows Vista;Windows XP, MS PowerPoint 2010 32-Bit )

Vista Security Updates - April 2011 package includes:

• IE8-Windows6.0-KB2497640-x86.msu (System requirements: Windows Vista SP1/Vista SP2, Internet Explorer 8)
• IE8-Windows6.0-KB2510531-x86.msu (System requirements: Windows Vista SP1/Vista SP2, Internet Explorer 8)
• Windows6.0-KB2497640-x86.msu (System requirements: Windows Vista SP1/Vista SP2, Internet Explorer 7)
• Windows6.0-KB2412687-x86.msu (System requirements: Windows Vista SP1/Vista SP2)
• Windows6.0-KB2449741-x86.msu (System requirements: Windows Vista SP1/Vista SP2/.Net Framework 3.5 SP1)
• Windows6.0-KB2449742-x86.msu (System requirements: Windows Vista SP1/Vista SP2/.Net Framework 3.5 SP1)
• Windows6.0-KB2491683-x86.msu (System requirements: Windows Vista SP1/Vista SP2)
• Windows6.0-KB2503658-x86.msu (System requirements: Windows Vista SP1/Vista SP2)
• Windows6.0-KB2506212-x86.msu (System requirements: Windows Vista SP1/Vista SP2)
• Windows6.0-KB2506223-x86.msu (System requirements: Windows Vista SP1/Vista SP2)
• Windows6.0-KB2507618-x86.msu (System requirements: Windows Vista SP1/Vista SP2)
• Windows6.0-KB2508272-x86.msu (System requirements: Windows Vista SP1/Vista SP2)
• Windows6.0-KB2508429-x86.msu (System requirements: Windows Vista SP1/Vista SP2)
• Windows6.0-KB2509553-x86.msu (System requirements: Windows Vista SP1/Vista SP2)
• Windows6.0-KB2510581-x86.msu (System requirements: Windows Vista SP1/Vista SP2)
• Windows6.0-KB2511455-x86.msu (System requirements: Windows Vista SP1/Vista SP2)

Note: To uninstall an update (MSU) installed by Windows Vista Security Update (MSI):

1. From the Start menu, choose Control Panel and then click Security.
2. Under Windows Update, click 'View installed updates' and select from the list of updates.

More information on April 2011 Microsoft Security Updates could be found from the following Microsoft Security Bulletin: http://www.microsoft.com/technet/security/bulletin/ms11-apr.mspx