Loading...

Knowledge Center


Compatibility issue with VSE 8.8 Patch 1 and XenDesktop 5.6
Technical Articles ID:   KB75201
Last Modified:  1/27/2015

Environment

McAfee VirusScan Enterprise 8.8 Patch 1, 8.7i Patch 5

Citrix XenDesktop 5.6

For VirusScan Enterprise supported environments, see KB51111.

Problem

A blue screen error can occur when VirusScan Enterprise (VSE) 8.8 Patch 1 or VSE 8.7i Patch 5 coexists with the latest release of XenDesktop 5.6 and you use the personal vDisk feature.

Example Stack Text output (no symbols):
00 a5206e24 892419af nt!KeBugCheckEx+0x1e
01 a5206e4c 892cc776 Ntfs!NtfsExceptionFilter+0xad
02 a5206e58 8923ce68 Ntfs!NtfsFsdDispatchSwitch+0x22d
03 a5206e6c 8924245a Ntfs!_EH4_CallFilterFunc+0x12
04 a5206e94 82e89622 Ntfs!_except_handler4+0x8e
05 a5206eb8 82e895f4 nt!ExecuteHandler2+0x26
06 a5206edc 82ebd388 nt!ExecuteHandler+0x24
07 a5206f70 82ec605c nt!RtlDispatchException+0xb6
08 a5207380 82e4fe76 nt!KiDispatchException+0x17c
09 a52073e8 82e4fe2a nt!CommonDispatchException+0x4a
0a a520746c 892bdd12 nt!Kei386EoiHelper+0x192
0b a52074e4 892cc6c4 Ntfs!NtfsCommonQueryInformation+0x56
0c a5207548 892cc7db Ntfs!NtfsFsdDispatchSwitch+0x17b
0d a520767c 82e485be Ntfs!NtfsFsdDispatchWait+0x1c
0e a5207694 92bd5365 nt!IofCallDriver+0x63
WARNING: Stack unwind information not available. Following frames may be wrong.
0f a52076c4 92bd5a8b mfeavfk+0x17365
10 a52078c4 890a903f mfeavfk+0x17a8b
11 a52079d0 890aec0a mfehidk+0x3003f
12 a52079f0 8909d8e9 mfehidk+0x35c0a
13 a5207a30 890adb4f mfehidk+0x248e9
14 a5207a7c 8908046b mfehidk+0x34b4f
15 a5207a9c 89080c0d mfehidk+0x746b
16 a5207bc0 890c6700 mfehidk+0x7c0d
17 a5207c28 8303e8c1 mfehidk+0x4d700
18 a5207cd0 830855c4 nt!IopXxxControlFile+0x2d0
19 a5207d04 82e4f28a nt!NtDeviceIoControlFile+0x2a
1a a5207d04 77747094 nt!KiFastCallEntry+0x12a
1b 00f4fac0 77745864 ntdll!KiFastSystemCallRet
1c 00f4fac4 759197b5 ntdll!NtDeviceIoControlFile+0xc
1d 00f4fb24 75cab96d KERNELBASE!DeviceIoControl+0xf6
1e 00f4fb50 002723c4 kernel32!DeviceIoControlImplementation+0x80
1f 00f4fb88 0027272a mfevtps+0x23c4
20 00f4fba8 764075a8 mfevtps+0x272a
21 00f4fbbc 75caed6c sechost!ScSvcctrlThreadA+0x21
22 00f4fbc8 7776377b kernel32!BaseThreadInitThunk+0xe
23 00f4fc08 7776374e ntdll!__RtlUserThreadStart+0x70
24 00f4fc20 00000000 ntdll!_RtlUserThreadStart+0x1b

Cause

In VSE 8.8 Patch 1 and 8.7i Patch 5 and later versions, Intel Security changed the VSE driver architecture to make use of the filter manager mini-filter driver model. This change exposed weaknesses in third-party driver code and in the McAfee code. The issue is triggered if you use the personal vDisk feature in XenDesktop.

Solution

This issue is resolved in VSE 8.8 Patch 2 release which is available from the McAfee Downloads site using a valid Grant Number.

Patches are cumulative, therefore Intel Security recommends that you install the latest one.

{VSE88PATCHES.EN_US}

{GENPA.EN_US}

Workaround

Intel Security advises against installing XenDesktop and VSE 8.8 Patch 1 / VSE 8.7i Patch 5 on the same computer if you use the personal vDisk feature.

If you experience the issue above and want to keep using both products:
  1. Remove the VirusScan Enterprise.
    1. Click Start, Run, type appwiz.cpl and press ENTER.
    2. Locate and right-click McAfee VirusScan Enterprise.
    3. Click Uninstall.
       
  2. Install one of the following:
    • VirusScan Enterprise 8.8 (unpatched)
    • VirusScan Enterprise 8.7i Patch 4
For instructions, see your product documentation.
{GENPDOC.EN_US}

Rate this document

Did this article resolve your issue?

Please provide any comments below

Beta Translate with

Select a desired language below to translate this page.

Glossary of Technical Terms


Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.