Tackling Third-Party Patches



Similar documents
The Importance of Patching Non-Microsoft Applications

Practical Patch Compliance

Study Shows Businesses Experience Significant Operational and Business Benefits from VMware vrealize Operations

Patch Management Solutions Test

A Best Practice Approach to Third Party Patching

Upgrading Horizon Workspace

Closing the Vulnerability Gap of Third- Party Patching

Implementing Cloud Solutions Within Your Existing IT Environment. White paper

Complete Patch Management

VMware vcenter Support Assistant 5.1.1

Vulnerability Scanning and Patch Management

vrealize Hyperic Supported Configurations and System Requirements

What s New in VMware vcenter 5.0

What s New in VMware vsphere 5.1 VMware vcenter Server

AlwaysOn Desktop Implementation with Pivot3 HOW-TO GUIDE

CA Client Automation: Patch Manager - Supported Patches

vcloud Automation Center Support Matrix vcloud Automation Center 5.1

Configuring Single Sign-on from the VMware Identity Manager Service to Dropbox

Achieving Control: The Four Critical Success Factors of Change Management. Technology Concepts & Business Considerations

Helping Customers Move Workloads into the Cloud. A Guide for Providers of vcloud Powered Services

Patch management: Fixing vulnerabilities before they are exploited

Stop the Finger-Pointing: Managing Tier 1 Applications with VMware vcenter Operations Management Suite

vcloud Automation Center Support Matrix vcloud Automation Center 5.2

VMware vcenter Configuration Manager and VMware vcenter Application Discovery Manager Integration Guide

WHY PATCH MANAGEMENT MATTERS

Introduction to VMware vsphere Data Protection TECHNICAL WHITE PAPER

WHITE PAPER. IT in the Cloud: Using VMware vcloud for Reliable, Flexible, Shared IT Resources

VMware Virtualization and Cloud Management Solutions. A Modern Approach to IT Management

Top 10 Reasons to Virtualize VMware Zimbra Collaboration Server with VMware vsphere. white PAPER

Optimizing Virtualization Management with Automated Application Discovery

Professional Services for Cloud Management Solutions

VMware vcloud Service Definition for a Private Cloud

A Guide to Disaster Recovery in the Cloud. Simple, Affordable Protection for Your Applications and Data

VMware Cloud Operations Management Technology Consulting Services

Virtualization Essentials

VMware Business Continuity and Disaster Recovery Technology Consulting Services

ThinPrint GPO Configuration for Location-Based Printing

Mobile Secure Desktop Maximum Scalability, Security and Availability for View with F5 Networks HOW-TO GUIDE

Configuring Single Sign-on from the VMware Identity Manager Service to Amazon Web Services

Configuring Single Sign-on from the VMware Identity Manager Service to WebEx

VMware Cloud Automation Design and Deploy IaaS Service

What s New in VMware vsphere Flash Read Cache TECHNICAL MARKETING DOCUMENTATION

VMware vcenter Configuration Manager SQL Migration Helper Tool User's Guide vcenter Configuration Manager 5.6

Kronos. Kronos Incorporated. VMware in the Datacenter: Enhancing Performance of Large-scale Databases and Mission-critical Applications

Why Choose VMware vsphere for Desktop Virtualization? WHITE PAPER

VMware vcloud Air. Enterprise IT Hybrid Data Center TECHNICAL MARKETING DOCUMENTATION

End Your Data Center Logging Chaos with VMware vcenter Log Insight

What s New in VMware Data Recovery 2.0 TECHNICAL MARKETING DOCUMENTATION

Configuring Single Sign-on from the VMware Identity Manager Service to AirWatch Applications

vrealize Air Compliance OVA Installation and Deployment Guide

VMware Horizon Mobile Secure Workplace User Installed Applications Support with Liquidware Labs HOW-TO GUIDE

Reconfiguration of VMware vcenter Update Manager

VMware Hybrid Cloud. Accelerate Your Time to Value

VMware vsphere Data Protection 6.0

Professional Services for a Software-Defined Data Center

VMware vsphere Data Protection

Introduction to VMware EVO: RAIL. White Paper

Configuring Single Sign-on from the VMware Identity Manager Service to ServiceNow

VMware vsphere Data Protection 5.8 TECHNICAL OVERVIEW REVISED AUGUST 2014

Server and Storage Sizing Guide for Windows 7 TECHNICAL NOTES

VMware Server Consolidation and Management Technology Consulting Services

VMware vcloud Air Security TECHNICAL WHITE PAPER

Symantec and VMware: Virtualizing Business Critical Applications with Confidence WHITE PAPER

Understanding Oracle Certification, Support and Licensing for VMware Environments

Now I get the same great benefits of virtualization for my storage. Virtual SAN is as budget-friendly as it is simple.

IBM Rational AppScan: Application security and risk management

eguide: Designing a Continuous Response Architecture Executive s Guide to Windows Server 2003 End of Life

VMware AlwaysOn Point of Care Desktop. with Indigo Identityware software for Fast Access & Strong Authentication with Roaming Desktops

Releasing High Quality Applications More Quickly with vrealize Code Stream

Resolving the Top Three Patch Management Challenges

How To Manage A Network Security Risk

The Benefits of Virtualization for Small and Medium Businesses. VMware SMB Survey Results

Fast and Effective Migration from Novell to Windows Active Directory with VMware Mirage WHITE PAPER

Virtualizing Business-Critical Applications with Confidence

VMware vcloud Networking and Security Overview

Shavlik Patch for Microsoft System Center

Adobe Deploys Hadoop as a Service on VMware vsphere

How to Create an Enterprise Content Management Solution Based on Alfresco in a vcloud Environment. A VMware Cloud Evaluation Reference Document

Why should I care about PDF application security?

Getting the Most Out of VMware Mirage with Hitachi Unified Storage and Hitachi NAS Platform WHITE PAPER

IT Quick Reference Guides Using the Application Catalog and Software Center

How to Create a Flexible CRM Solution Based on SugarCRM in a vcloud Environment. A VMware Cloud Evaluation Reference Document

Transcription:

Tackling Third-Party Patches VMware vcenter Protect Update Catalog Delivers an Efficient, Effective Way to Extend an Organization s SCCM Infrastructure Technical WHITE PAPER

Companies around the world rely on the Microsoft System Center Configuration Manager (SCCM) for patch management. However, in today s environment, that simply is not enough to bolster network security. Microsoft applications are not the only ones at risk. Third-party applications such as those from Adobe, Apple and Google are the cause of most current vulnerabilities. As a result, organizations are forced to dedicate additional resources to ensure comprehensive coverage. Organizations hire additional employees just to manage thirdparty patches. This isn t always the best use of time or budget, particularly when there are automated solutions that integrate with SCCM. VMware vcenter Protect Update Catalog makes the process less time consuming and is more effective in protecting network security. Third-Party Threats There is a common misconception that Microsoft applications are more vulnerable to attacks than other applications. Recent research disproves that theory. Threats are equally if not more prevalent through non-microsoft applications. According to reports from the National Vulnerability Database, 9 of the top 10 threats in 2010 were not Microsoft applications, but applications from companies such as Apple, Adobe and Google. Apple Safari had the highest number of vulnerabilities, followed by Mozilla Firefox and Google Chrome. (See Table 1.) Number of Vulnerabilities by Severity Application Total High Medium Low Score Apple Safari 81 2 71 8 413 Mozilla Firefox 44 3 30 11 236 Google Chrome 61 1 30 30 205 Microsoft Internet Explorer 34 1 30 3 178 Adobe Flash Player 34 0 34 0 170 Adobe Reader 34 0 34 0 170 Java Runtime Environment 28 5 5 18 168 Adobe Acrobat 32 0 32 0 160 Adobe AIR 28 0 28 0 140 Mozilla SeaMonkey 26 1 20 5 130 TECHNICAL WHITE PAPER / 2

Number of Vulnerabilities by Severity Microsoft Office 22 0 22 0 110 Mozilla Thunderbird 18 1 14 3 98 Adobe Shockwave Player 18 0 18 9 90 Oracle Database Server 9 30 0 0 81 Microsoft Visio 3 3 0 0 75 Source: National Vulnerability Database Table 1. Top Threats of 2010 Vulnerabilities in these applications continue to threaten network security. Qualys, which publishes its Top 10 Vulnerabilities list each month, included four non-microsoft applications in its August 2011 Top 10 list. In addition, a recent SANS report entitled Top Cyber Security Risks noted, During the last few years, the number of vulnerabilities being discovered in applications is far greater than the number of vulnerabilities discovered in operating systems. On average, major organizations take at least twice as long to patch client-side vulnerabilities as they take to patch operating system vulnerabilities. Consider the case of a large Fortune 200 company that was plagued with an attack through a third-party application. Because the company was doing all third-party patching manually on more than 7,000 machines it took about six days to ensure that the vulnerability was fixed across the entire organization. After this experience, the company sought an automated process that would allow it to be proactive rather than reactive to potential third-party security threats. To ensure that all network devices are appropriately patched in a timely manner and that compliance guidelines are met, organizations must find a way to expand their patching of third-party applications. This is no easy feat, considering that many companies today are faced with tighter budgets and the IT staff is being required to do more with less. Achieving effective third-party patching is not necessarily impossible given these challenges. Solutions such as vcenter Protect Update Catalog enable organizations to enhance security by simply and cost-effectively extending the existing SCCM infrastructure to manage third-party patching. What Is vcenter Protect Update Catalog? vcenter Protect Update Catalog, designed for both upper mid-market and enterprise needs, facilitates central deployment of non-microsoft, third-party software patches and updates in a Microsoft Windows environment. With a simple VMware data service to the Microsoft SCCM and System Center Updates Publisher (SCUP) software, vcenter Protect Update Catalog extends Microsoft patch and update management features to hundreds of non-microsoft applications. Globally, companies of all sizes distribute software and deploy updates for the latest Microsoft operating systems and applications with SCCM. vcenter Protect Update Catalog leverages Microsoft SCCM patch and update management features to hundreds of other mission-critical applications, including Adobe Reader, Mozilla Firefox, Java applications and legacy Microsoft applications that Microsoft no longer supports. TECHNICAL WHITE PAPER / 3

Maximize Your Investment in SCCM vcenter Protect Update Catalog extends SCCM beyond Microsoft products using a single workflow. There is no application to install or agent to deploy. Instead, use a single SCCM workflow for deploying updates to Microsoft operating systems, Microsoft applications and non-microsoft applications. Reduce Patching Workload Without vcenter Protect Update Catalog, SCUP requires system administrators to spend hours researching and packaging updates. vcenter Protect Update Catalog provides a catalog with up-to-date information from multiple vendors in a single file that is tested, packaged and ready for deployment. Just select the products to update and let SCCM do the rest according to established policies. Get Single-Source Updates with Total Coverage Rather than IT professionals spending hours pushing patches for each publisher, application and version, vcenter Protect Update Catalog handle them all. Get coverage for many third-party applications and Microsoft legacy applications. vcenter Protect Update Catalog Delivers Business Benefits Though some IT professionals may argue that it s just as cost-effective to have one or two employees dedicated to managing third-party patching, there are distinct benefits to an automated solution like vcenter Protect Update Catalog: Expertise Keeping up with the patches needed for all the products and their versions in use by an organization can be a daunting task, especially for system administrators who may not have the time or background to research all the latest threats and decide which patches are important to their networks. Because the VMware team focuses only on researching the latest patches, it offers a high level of expertise that is almost impossible to match with internal resources. Total coverage vcenter Protect Update Catalog extends beyond current Microsoft products to patch thirdparty applications, including the most frequently attacked, including Adobe, Apple, Mozilla, Google and other applications. Time savings Because VMware s experts do the research and package the patches, system administrators can focus on their core responsibilities and be more proactive in their approach to network security. Additionally, by implementing a wide range of patches for Microsoft and non-microsoft applications, IT is less likely to spend significant time reacting if vulnerabilities are exploited and damage has been done. Ease of use vcenter Protect Update Catalog is packaged in an efficient way that makes it easy to deploy and use, without a need to maintain agents on all devices. Maximized ROI in SCCM The SCCM infrastructure is used to deploy updates automatically for Microsoft and non-microsoft applications, all at the same time, with little time investment from a system administrator. TECHNICAL WHITE PAPER / 4

VMware, Inc. 3401 Hillview Avenue Palo Alto CA 94304 USA Tel 877-486-9273 Fax 650-427-5001 www.vmware.com Copyright 2011 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware is a registered trademark or trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies. Item No: VMW-TECH-WP-TACKLING-THIRD-PARTY-PATCHES-USLET-101

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information