|
All, While doing Nessus scans you possibly have seen that after several updates using MS Windows Updates service some hosts still show up sets of vulnerabilities. We used Altiris patch management/assessment SW to check where it happened. We found that file(s) in the update set failed to update and have old version while others were updated and have correct version. Following, some later updates failed to install either. Investigating recently a few cases of "dirty" computers having multiple vulnerabilities, I found in several Nessus scans that there is a "genetic" sequence of in each (I used DB report showing the most vulnerable in a scan): MS04-007 (KB828028, Nessus plugin 12052) -> ->MS04-011 (KB835732, Nessus plugin 12205) -> ->MS05-018 (890859, Nessus plugin 18022 ) It is likely to be a birth defect in KB828028, which affected the chain. I fixed the problem by completely uninstalling ALL patches/fixes, and installing back using Windows Update. In this case Update works.
Mikhail Utin AIS Security [EMAIL PROTECTED] 401-832-6584
|
_______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
