Showing results for 
Search instead for 
Did you mean: 

ZoneDirector Upgrade Process - regarding Security Bulletin ID-20191224

Esteemed Contributor II

Ruckus Networks' dedicated security information team respond asap to reported possible
vulnerabilities.  We post details for each, on our Support portal Security Bulletins page, and
identify if any Ruckus products are affected or not.

In late December, the most recent bulletin "ZoneDirector and Unleashed Unauthenticated
Remote Code Execution and Other Vulnerabilities" was posted, with affected versions and
secure patch update images that we recommend customers upgrade to. The table with ZD
versions and update image versions are in the pgp-signed text and .pdf bulletin versions.

We are giving free 7-day support entitlement to everyone with a ZoneDirector (no previous 
support required). 

Please plan a change management period to implement an update soon.

The following are best practice procedure for ZoneDirector backup / upgrades, which can
be found in KBA-10079 (after next update period, 6pm PST).

Step 1:  Determine your ZD serial number and current firmware version.


   In ZD 9.13 and earlier, go to the ZD WebUI Dashboard tab, info is displayed.


   In ZD 10.x and later, ZD version is found on Dashboard tab, and Serial Number

   is found under System-> System Info. 


   Write down your ZD serial number for reference.


Step 2: See Security Bulletin table to determine the right secure patched version

for your ZD model(s).

Image_ images_messages_5f91c3fb135b77e2479080ec_4e89e4df167b1c2f41b322da9ad66435_8742h4bqjy_inline-9ada18c8-7838-40c9-83a9-f1449e799298-424470585.jpg1579212011

   Retrieve a copy of the firmware from the ZoneDirector product page on Support portal. Save the firmware to your PC.


Step 3:  Backup your ZoneDirector; Save backup file with version digits in filename.


   From ZD WebUI, go to Administer -> Backup, click the button to save ZD backup file.

   Save the .bak file to your PC.  Edit the filename to include the version you are running

   before upgrading, ie mbZD_db_9. is from


Step4:  Retrieve temporary entitlement file.


   Go to

   Enter your ZD serial number, and click Submit button.

   Save the .spt file to your PC.


Step 5:  Install temporary entitlement file.


   In ZD 9.13 and earlier, go to Administer ->Support and under Support services,

   click Browse, and point to the .spt file on your PC.


   In ZD 10.x and later, from Administer ->Support, click on Update Services by File,

   click Browse, and point to the the .spt file on your PC.


   When installed, the ZD will display a notice that Entitlement expires in seven (7) days.


Step 6: Install secure patch ZD firmware upgrade.


   Go to Administer -> Upgrade, under Software Upgrade, browse to the secure patch

   ZD firmware you saved earlier.  When the file is fully loaded, Browse will be replaced

   by Upgrade.  Click Upgrade to complete the process.


   Note: You will be prompted to save a backup before continuing, but you already have

   so you can click Cancel, and continue when you see this notice.


   The ZoneDirector will reboot after upgrade, and WebUI page should refresh to Login.

[ I run a continuous ping to my ZD IP when its rebooting.  If not taken back to login after 2 minutes

of pings responding, click the ZD IP address you see on the reboot screen.  It should go to Login. ]

   Familiarize yourself with any new look/feel changes in ZD WebUI after upgrade.


Contributor II
Why Recommended Firmware: still shows ZD1100 in Security Bulletin 20191224?

I see .84 in both the text and .pdf copies.  Should be for your ZD1100.