Is there a search/listing somewhere of which patches have been replaced by newer ones? I've sometimes seen it mentioned in an article that a particular patch replaces an older one, but that seems to be the exception rather than the rule.
I know WSUS will show this, but I'm looking for a way when WSUS isn't available. As an example, I get an email from security saying the IDS detected something funny and to check system for KB 935966. ( http://www.microsoft.com/technet/security/bulletin/ms07-029.mspx). I check system, which doesn't have this installed, run Windows Update and it doesn't show it as required. After verifying DNS is running, I figure there's a newer patch somewhere. In this case, I looked at the version number of dns.exe, punch that into google and get http://support.microsoft.com/kb/951748. This one replaces 941644, which says it replaces 917953. I understand there are different vulnerabilites involved, but they're still changing the underlying files. In this case I knew dns was being patched, but some updates install many files. Thanks, Jeff ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
