VirusScan Enterprise イベントが SQL 2019 互換性レベル (150) で解析されない
Last Modified: 2023-05-12 12:42:02 Etc/GMT
Disclaimer
Affected Products
Languages:
This article is available in the following languages:
了解不断适应的 XDR 生态系统如何为您的企业赋能。
Trellix 首席执行官 Bryan Palma 解释称,现在亟需能够不断学习的安全防护。
下载 Magic Quadrant 报告,该报告根据执行能力和愿景完成情况,对 19 家供应商进行了评估。
Gartner 报告称,“XDR 是一种新兴技术,可以提供增强的威胁防护、检测和响应。”
企业在 2022 年应警惕哪些网络安全威胁?
网络安全行业绝不是一潭死水,而是危机不断,现在便是接受这一全新安全防护理念,将其转化为自身优势,为企业赋能的最佳时机。
网络安全领域备受信赖的两大领导者携手打造弹性化的数字世界。
Trellix 首席执行官 Bryan Palma 解释称,现在亟需能够不断学习的安全防护。
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
VirusScan Enterprise イベントが SQL 2019 互換性レベル (150) で解析されない
Technical Articles ID:
KB92701
Last Modified: 2023-05-12 12:42:02 Etc/GMT Environment
ePO Orchestrator (ePO) 5.10.x VirusScan Enterprise (VSE) 8.8.x Microsoft SQL Server 2019 (RTM) - 15.0.2000.5 (X64) Problem
互換性レベルが 150 に設定されている場合、VSE イベントは SQL Server 2019 で解析されません。 システムは、 X #05988 EPODAL ePOData_Connection.cpp(590): ssl Authenticate mode is 1 E #05988 VseBll DAL->ExecQuery failed. hr=80004005 E #05988 EVNTPRSR source\server.cpp(1064): COM Error 0x80004005, source=(null), desc=(null), msg=Unspecified error E #05988 EVNTPRSR source\server.cpp(1128): Failed to process file C:\PROGRA~2\McAfee\EPOLIC~1\DB\Events\61fe5a53-eee4-443f-957a-7c69e0b1ccb9-mc_20200413035946291795200000E98.txml, XML file error count 1 SQL Server のログ フォルダー (デフォルト: spid70 Dump request is dismissed (stack signature 0x00000000215601CF). Server Error: 17310, Severity: 20, State: 1. Server A user request from the session with SPID 70 generated a fatal exception. SQL Server is terminating this session. Contact Product Support Services with the dump produced in the log directory. spid70 CImageHelper::Init () Version-specific dbghelp.dll is not used spid70 ***Stack Dump being sent to C:\Program Files\Microsoft SQL Server\MSSQL15.SQLEXPRESS\MSSQL\LOG\SQLDump0019.txt spid70 SqlDumpExceptionHandler: Process 70 generated fatal exception c0000005 EXCEPTION_ACCESS_VIOLATION. SQL Server is terminating this process. spid70 * ******************************************************************************* spid70 * spid70 * BEGIN STACK DUMP: spid70 * 04/13/20 04:53:55 spid 70 spid70 * spid70 * spid70 * Exception Address = 00007FF907AA1205 Module(sqllang+0000000000221205) spid70 * Exception Code = c0000005 EXCEPTION_ACCESS_VIOLATION spid70 * Access Violation occurred reading address 0000000000000028 spid70 * Input Buffer 510 bytes - spid70 * Exec VSE_InsertVirusDetectionEvent @AgentGUID='5774a602-7d22- spid70 * 11ea-3510-005056aca64b',@UserName=N'CDA\cdaauto',@MachineName=N'771W10RS spid70 * 4X6401',@OSName=N'Windows 8 Workstation',@IPAddress=N'10.26.97.153',@Tim spid70 * eZoneBias=420,@ProductFamily=N'TVD',@ProductName=N'VirusScan Enterprise' spid70 * ,@ProductVersion=N'8.8',@ScannerType=N'OAS',@TaskName=N'OAS',@EngineVers spid70 * ion=N'6010.8670',@DATVersion=N'9589.0000',@LocalTime={ts '2020-04-13 03: spid70 * 59:46'},@UTCTime={ts '2020-04-13 10:59:46'},@lEventID=1278,@Severity=3,@ spid70 * FileName=N'C:\Users\cdaauto\Desktop\sahas.com',@VirusName=N'Installation spid70 * Check',@lVirusType=6,@szVirusType=N'test',@SensitivityLevel=N'_',@Sourc spid70 * e=N'C:\Windows\System32\notepad.exe',@MD5=N'0d69e58385c4e47aa0ab6bd4983a spid70 * 7f89' **************************************** * * BEGIN STACK DUMP: * 04/13/20 03:03:38 spid 70 * * * Exception Address = 00007FF907AA1205 Module(sqllang+0000000000221205) * Exception Code = c0000005 EXCEPTION_ACCESS_VIOLATION * Access Violation occurred reading address 0000000000000028 * Input Buffer 510 bytes - * Exec VSE_InsertVirusDetectionEvent @AgentGUID='5774a602-7d22- * 11ea-3510-005056aca64b',@UserName=N'CDA\cdaauto',@MachineName=N'771W10RS * 4X6401',@OSName=N'Windows 8 Workstation',@IPAddress=N'10.26.97.153',@Tim * eZoneBias=420,@ProductFamily=N'TVD',@ProductName=N'VirusScan Enterprise' * ,@ProductVersion=N'8.8',@ScannerType=N'OAS',@TaskName=N'OAS',@EngineVers * ion=N'6010.8670',@DATVersion=N'9589.0000',@LocalTime={ts '2020-04-13 03: * 03:18'},@UTCTime={ts '2020-04-13 10:03:18'},@lEventID=1278,@Severity=3,@ * FileName=N'C:\Users\cdaauto\Desktop\rgc.com',@VirusName=N'Installation C * heck',@lVirusType=6,@szVirusType=N'test',@SensitivityLevel=N'_',@Source= * N'C:\Windows\System32\notepad.exe',@MD5=N'0d69e58385c4e47aa0ab6bd4983a7f * 89' * Cause
この問題は、SQL Server 2019 ベース バージョンにあります。バイナリ連結で内部関数を実行すると失敗します。
Solution
この問題は、SQL Server 2019 Cumulative Update 6 (CU6) 以降で解決されています。
Workaround
SQL 互換性レベルを
DisclaimerThe content of this article originated in English. If there are differences between the English content and its translation, the English content is always the most accurate. Some of this content has been provided using Machine Translation translated by Microsoft.
Affected ProductsLanguages:This article is available in the following languages: |
|