Patching and Scanning script available

From: Vijay Ramcharan (vramcharan_at_THEDEAL.COM)
Date: 10/20/03

  • Next message: Eddy - Security: "Issues with MS03-043" 
    Date:         Mon, 20 Oct 2003 10:35:53 -0400
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

    For those interested, I've written a patching/scanning script for
    WinNT/2000/XP which can be downloaded from the FTP site below in the
    'NetScripts\ScanPatchFix' directory.

    Please note: Any computer which gets a service pack update from the
    script WILL BE REBOOTED regardless if a user is logged in or not. Scan
    your computers first and then determine an update schedule or notify
    those users who will get a service pack update.

    Let me know if you have any questions/comments.

    Pluses:
    Automates scanning/patching
    Downloads and saves patches for future use so you don't have to download
    the same files over and over
    Supports patches found by MBSACLI
    Always uses latest available version of MSSECURE.XML from Microsoft
    Fairly extensive logging to Access database of all actions taken by the
    script
    Reports can be created in Access
    Can be scheduled to run at your convenience

    Minuses:
    No Office Patches
    If MSSECURE.XML does not contain a valid link to an "exe" patch then
    you'll have to manually download the patch and place it in the correct
    location. Not too many of these.
    Uninstalls of patches NOT supported, may be integrated into a later
    release if I get enough requests
    Scans/Patches computers one at a time (could be remedied as explained in
    the instructions)

    Download the script, ActiveX file/page download component, instructions,
    and related files via FTP from:
    66.192.203.23
    User: netscript
    Pass: n3ts
    Directory: Netscripts\ScanPatchFix
     
     
    Please read the ScanPatchFix README file before using the script.
    Be sure to test thoroughly BEFORE applying in a production network!!!
     
     
    Vijay Ramcharan, MCSE, CCNP/DP
    Network Manager, The Deal LLC
      

    ----
NTBugtraq subscribers save $103.00 off the TICSA exam by using promo
code "NT1003" when registering to take the TICSA exam at www.2test.com.
Prove to your employer and peers that you have the knowledge and
abilities to be an active stakeholder in today's enterprise security.
Become TICSA certified www.trusecure.com/ticsa.  Promotion expires
12/31/03 and cannot be used in combination with other offers.
----
  • Next message: Eddy - Security: "Issues with MS03-043"

    Relevant Pages

    • Re: Why not patch all windows and not just legal copies
      ... IMHO the best solution would be to remove the validation requirement from the genuine Microsoft site or put the genuine microsoft patches on a FTP somewhere under a CVS like system to verify that they have not been tampered with. ... Sophisticated hackers can easily shift like the HIV virus so we must reduce the attack surface and offer a very easy path for these thieves to patch their nasty computers. ... And, if you did that, and it forced everyone's computer to download the patches at the exact same time, the servers would crash. ...
      (microsoft.public.security)
    • Re: constant runtime errors-please help
      ... Common script errors messages can be eliminated by Clicking: ... click Internet Options. ... Two download versions are available for Windows Script 5.6. ... HiJackThis: - Free ...
      (microsoft.public.windows.inetexplorer.ie6.browser)
    • Re: Downloading Patches for 9.1
      ... I should add that you should use a local rsync mirror ... - This script keeps the entire patch list updated ... >> Is there somewhere I might download all the patches available for SuSe ...
      (alt.os.linux.suse)
    • Re: zone alarm pro 4 and windows update
      ... >patches is such a pain. ... >most computers would be patched. ... "Display the link to the Windows Update Catalog under See Also". ... you can download multiple updates via the ...
      (comp.security.firewalls)
    • Re: Idiot proof removal of junk?
      ... | I would like to send everyone a single script or small set of scripts ... | convince windows to boot into safe mode with command prompt. ... FireWall to allow it to download the needed AV vendor related files. ... This will bring up the initial menu of choices and should be executed in Normal Mode. ...
      (microsoft.public.windowsxp.help_and_support)