Date: 2017-03-21

OS: Windows

Etrack Incidents: 3914132

Errors/Problems Fixed:

3914132 - (JIRA ID: DI-3845) CVE-2017-5638 vulnerability for Data Insight 5.1
 
Applies to: Data Insight Management Server node and Portal node.

Install/Uninstall Instructions:

Apply this hotfix to Data Insight Management Server node and Portal node only.

This hotfix can be applied to Data Insight version 5.1.2 only.

FILE AFFECTED BY THIS PATCH:

Windows:
INSTALL_ROOT\tomcat\webapps\symhelp\*
INSTALL_ROOT\portal_tomcat\webapps\symhelp\*

By default, value of INSTALL_ROOT on Windows is "C:\Program Files\DataInsight".

Steps:

Log into Data Insight Management Server node or Portal node and perform the following steps:
	
	1. Stop Data Insight services:
    	From the command prompt, issue the following command:
		
        net stop DataInsightWatchdog
        net stop DataInsightWeb
		net stop DataInsightComm
        net stop DataInsightConfig
	
	2.  Unzip the patch files to a temporary folder. In this folder, locate the
	"patches" folder. This folder contains all files for help application.
	
	Example: If you unzip hotfix to C:\temp, it will create the following folder
	under C:\temp:
	C:\TEMP\
	+---README
	+---patches
		+---symhelp

	4.  Copy the patch files to the install directory.
	For example, if you are patching Management server installed at 
	"C:\Program Files\DataInsight", copy "symhelp" folder under 
	"C:\temp\patches" to "C:\Program Files\DataInsight\tomcat\webapps" and 
	"C:\Program Files\DataInsight\portal_tomcat\webapps\"
	replacing the original files with those from the patch.
	
	5. Start Data Insight services:
	From the command prompt, issue the following command:
	
        net start DataInsightConfig
        net start DataInsightComm
		net start DataInsightWeb
        net start DataInsightWatchdog
	
Additional Notes:
1. Apply this hotfix to Data Insight 5.1.2 only.