New MSSecure.XML Version 2005.04.12.0 Now Available

From: Doug Neal [MSFT] (dugn_at_online.microsoft.com)
Date: 04/12/05 

Date: Tue, 12 Apr 2005 11:28:38 -0700

MSSECURE.XML Data Version 2005.04.12.0 (for use by MBSA 1.2 and SMS SUS
Feature Pack) was last modified today, April 12, 2005, and is now available
for all supported languages (English, French, German and Japanese). Today's
release contains 8 new bulletins, 7 of which are fully supported by MBSA.

This release fully supports the following new bulletins:

1) MS05-016 (MSHTA) - Supersedence: this patch replaces all instances of
MS05-008
2) MS05-017 (MSMQ) - Only applicable to Windows 2000 SP3/SP4 and Windows XP
SP1 (not WinXP SP2 or W2003)
3) MS05-018 (Kernel) - Supersedence: W2K instance replaces MS05-002. WinXP
SP1 instance changes previous supersedence of MS03-013 -> MS04-044 to
MS03-013 -> MS05-018 instead. WinXP SP1 MS05-002 patch is also replaced by
this patch. Windows Server 2003 instance replaces MS04-032
4) MS05-019 (TCP/IP)

5) MS05-020 (IE Cumulative Patch) - Supersedence: this patch replaces all
instances of MS05-014
6) MS05-021 (Exchange) - Supersedence: The Exchange 2000 instance replaces
MS04-035.
7) MS05-022 (MSN Messenger) - Not supported by MBSA, but supported by EST
(see below). Supersedence: this patch replaces the MSN Messenger instance
of MS05-009.
8) MS05-023 (Word) - Supported for local scans only when using MBSA. Full
support in SMS

There are a number of technical issues with today's release that may be
valuable to enterprise administrators:

MS05-016 (MSHTA/Shell) and MS05-020 (IE) share SHLWAPI.DLL: The IE and
Windows 2000 instance of the MSHTA patch share the file SHLWAPI.DLL. If one
of these two patches is uninstalled, the other patch sharing SHLWAPI.DLL
will be listed as missing since a shared dependant file has been removed.
This is expected behavior. The solution is to reapply either patch to
restore all needed files.

MS04-020 'greater than' warning fixed: For W2K users with Services for UNIX
installed, PSXSS.EXE incorrectly reported a 'greater than expected' warning
due to PSXSS.EXE version 8.0.1969.2. This has been fixed.

Content Management Server SPs now reporting: Localized Content Management
Server installations were not being checked for the latest service pack.
This affected only DEU, FRN, and JPN installations of CMS 2001 and did not
affect patch detection (there are currently no security bulletins for CMS
2001). This has been fixed.

Windows Server 2003 Small Business Server Detection: Some Windows Server
patches may not have been correctly detected using previous versions of the
MSSECURE file. This has been fixed.

----------------------------

What is the Enterprise Update Scanning Tool (EST)?
As part of an ongoing commitment to provide detection tools for complex
updates for bulletin-class issues that are not supported by MBSA, a
stand-alone tool may be provided for certain bulletins. Microsoft will
evaluate the detection and deployment complexity of each bulletin, and
provide detection support based on the specifics of each release. When a
detection tool is created for a specific bulletin, customers will be able to
script running the tool from a command line interface, and process the
results using an XML output file. Detailed documentation will be provided
with the tool to ensure customers can leverage it quickly. See the
following link for details
http://support.microsoft.com/default.aspx?id=894193

Additional detection for the 1 bulletin (MSN Messenger) not supported by
MBSA can be obtained by downloading the April edition of the Enterprise Scan
Tool (EST) located at the link above. 

-- 
Doug Neal [MSFT]
dugn@online.microsoft.com
This posting is provided "AS IS" with no warranties, and confers no rights.
If newsgroup discussion with experts and MVPs is unable to solve a problem
to your satisfaction, feel free to contact PSS for support on the Microsoft 
Baseline
Security Analyzer (MBSA). Information is available at the following link:
http://support.microsoft.com/default.aspx
This e-mail address does not receive e-mail, but is used for newsgroup
postings only.

Relevant Pages

  • Re: New MSSecure.XML Version 2005.07.12.0 Now Available
    ... >>> release contains 3 new bulletins, all 3 of which are fully supported by ... >>> scans only when using MBSA. ... >>> As part of an ongoing commitment to provide detection tools for complex ... >>> provide detection support based on the specifics of each release. ...
    (microsoft.public.security)
  • Re: New MSSecure.XML Version 2005.04.12.0 Now Available
    ... Today's release contains 8 new bulletins, ... Windows Server 2003 instance replaces MS04-032 ... > affect patch detection (there are currently no security bulletins for CMS ... > provide detection support based on the specifics of each release. ...
    (microsoft.public.security)
  • Re: New MSSecure.XML Version 2005.10.11.0 Now Available
    ... feel free to contact PSS for support on the Microsoft ... Security Analyzer (MBSA). ... >> regarding MBSA 2.0 patch detection for this month's release should by ... This bulletin replaces all previous versions of MS05-039. ...
    (microsoft.public.security)
  • New MSSecure.XML Version 2005.08.09.0 Now Available
    ... MBSA 2.0 detection is based strictly on Microsoft Update, ... release contains 6 new bulletins and 2 re-releases. ... If newsgroup discussion with experts and MVPs is unable to solve a problem to your satisfaction, feel free to contact PSS for support on the Microsoft ...
    (microsoft.public.security)
  • New MSSecure.XML Version 2005.06.14.0 Now Available
    ... 7 of which are fully supported by MBSA. ... There are also 3 re-releases for previously released bulletins listed below: ... As part of an ongoing commitment to provide detection tools for complex ... feel free to contact PSS for support on the Microsoft ...
    (microsoft.public.security)