Baseline Security Analyzer driving me insane.
From: drew (aweaver@ee.net)
Date: 03/19/03
- Next message: Mike: "Re: Prevent users from installing software"
- Previous message: Ray: "Password for Window 2000 will not work after a Microsoft update"
- Next in thread: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: Baseline Security Analyzer driving me insane."
- Reply: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: Baseline Security Analyzer driving me insane."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "drew" <aweaver@ee.net> Date: Tue, 18 Mar 2003 19:55:23 -0500
Hi there. I have been running the baseline security analyzer on my servers,
and I see the same 8 or 9 patches every time that I didnt install,
supposedly, but they are installed and i have installed them about 10 times
now..
here is what its listing:
Windows Security UpdatesSecurity updates that are out of date are marked
with a yellow X
Score Security Update Description Reason
MS02-055 Unchecked Buffer in Windows Help Facility Could Enable
Code Execution (Q323255) File C:\WINNT\system32\hhctrl.ocx has a file
version [5.2.3735.1] that is greater than what is expected [5.2.3669.0].
MS02-070 Flaw in SMB Signing Could Enable Group Policy to be
Modified (329170) File C:\WINNT\system32\sp3res.dll has a file version
[5.0.2195.6157] that is greater than what is expected [5.0.2195.6100].
MS03-004 Cumulative Patch for Internet Explorer (810847) File
C:\WINNT\system32\urlmon.dll has a file version [6.0.2800.1167] that is
greater than what is expected [6.0.2800.1154].
Security updates that the tool cannot confirm as installed on the
scanned computer are marked with a blue asterisk
Score Security Update Description Reason
MS01-022 WebDAV Service Provider Can Allow Scripts to Levy
Requests as User Please refer to Q306460 for a detailed explanation.
MS02-008 XMLHTTP Control Can Allow Access to Local Files Please
refer to Q306460 for a detailed explanation.
MS02-053 Buffer Overrun in SmartHTML Interpreter Could Allow Code
Execution (Q324096) Please refer to Q306460 for a detailed explanation.
MS02-064 Windows 2000 Default Permissions Could Allow Trojan
Horse Program (Q327522) Please refer to Q306460 for a detailed explanation.
MS02-065 Buffer Overrun in Microsoft Data Access Components Could
Lead to Code Execution (Q329414) Please refer to Q306460 for a detailed
explanation.
I *have* installed these patches, i swear, but it every time i run the
check it does it again.
Please explain, advise??
-Drew
begin 666 x_gold.gif
M1TE&.#EA& `8`,3_`/___\:UI<:ME,:MA+V<8\Z<0IQK`+6,(;6$"+6,&,ZM
M0N?&,>>]&.>]$/_>,?_6&.?6:^?64O_O6O_W<___A ```,# P ``````````
M`````````````````````````"'Y! $``!8`+ `````8`!@```6SH"6.9&F>
M:*JNJ5 41!H4!A&405) 1VP&!D0#X1L)#A3*I(<S,!Y00S,YF22*P">4:!H@
MJQ)NU@%M2$^#`EAR-2P<9,89E5XC"G"'G.65^"5Y>RP67@N @#2#(D 1?G!<
M@XQ_@ X*13(&$1-^"X9P,"I $& +!DYP#Y8HHF 14@.G6Y>+!A!4KB.P#&0/
HD$9(2;@D`DY0# =3%(E=Q08%)@0'TBFP" <")P$W*@/8BM_@)R$`.P``
`
end
begin 666 astrx.gif
M1TE&.#EA& `8`,3_`/___P"4]UJM[W.U[SFE_P!KUC&$WEJ,W@!"O3E:SI2<
MO82,O6-KM1 AK3E"K:6EO7M[M0```,# P ``````````````````````````
M`````````````````````````"'Y! $``!(`+ `````8`!@```7*H"2.9&F>
M:)HNS/*0"L,HJK0X1\*,BF,4#5J*<1@,$A"1+Q H)%,0B%$05" "A !"B'HX
MI@G'DNFH22 )@8 09@:"9DGC0" 8#,S"#A63,<1U;F\.?C,C$#@'!W<&=5EY
M!9$%" Y"7U-K@8)-39$(3S@#:HZ;G)*33S<)JZL(CWD(L;(.+R(/"[@W!8*[
M"#,*"BXI#6Z1G65F#+MD#I*?-0K$3)_-D@TURF[7#PW.3RC96D(,")[?)]&3
2R!)>L;30424/45QQ]O<I(0`[
`
end
- Next message: Mike: "Re: Prevent users from installing software"
- Previous message: Ray: "Password for Window 2000 will not work after a Microsoft update"
- Next in thread: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: Baseline Security Analyzer driving me insane."
- Reply: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: Baseline Security Analyzer driving me insane."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
