Tomalak Posted March 22, 2006 Posted March 22, 2006 Hi,just wanted to inform you about a fine small utility I discovered that might be a good GUI alternative to hfnetchk:http://www.elcomsoft.com/psa.htmlIts output is not as concise as the .txt file output of hfnetchk (PSA allows exporting its results to a HTML file), but it offers IMHO a really nice overview.Have fun with it!
murvun Posted March 22, 2006 Posted March 22, 2006 (edited) I'm using windows 2000 sp4 german edition.While windows update is completely happy (testet 10 seconds ago) PSA FE (date:14.3.2006) tells me 7 Bulletins not installed:MS02-064 (KB327522) - default permissions allows trojan horseMS04-016 (KB839643) - DirectPlay allows DoSMS04-028 (KB833987) - JPEG (GDI+) allows code executionMS05-009 (KB885492 and 887472) - PNG leads to Buffer OverrunMS05-044 (KB905495) - FTP allows local transferMS05-050 (KB904706) - DirectShow allows remote code executionMSXML 3.0SP7 should be installed instead of SP5someone with same experiences? something I must do?thanx Edited March 22, 2006 by murvun
tommyp Posted March 22, 2006 Posted March 22, 2006 (edited) What do the results of the microsoft baseline analyzer say? Edited March 22, 2006 by tommyp
murvun Posted March 24, 2006 Posted March 24, 2006 Microsoft Baseline Security Analyzer:Windows safety updates: no missing update
Tomalak Posted March 24, 2006 Author Posted March 24, 2006 Microsoft Baseline Security Analyzer:Windows safety updates: no missing update That's strange, PSA works perfectly for me (Win XP SP2 though, not Win 2000). Does the tool really say "missing" or just "note"? I've some of those as well, the helpfile tells about the status "note":This is a special status. It means that PSA was not able to determine whether the patch is installed or not. This is not due to PSA error, but because the mssecure.xml file contains no information about affected files and/or registry keys for this bulletin.So you may indeed have all patches installed and there is no discrepancy between WU/MU, MBSA and PSA.
murvun Posted March 25, 2006 Posted March 25, 2006 Tomalak: You are right: they are only signed as a note - I did not read, what 'note' was meaned... so they are installed, but mssecure.xml contains no information, how to detect them...All: have a nice weekend. /me is in Cyrodiil.
murvun Posted April 13, 2006 Posted April 13, 2006 (edited) just to pull this thread on top:Proactive Security Auditor FE (Freeware Edition) is a free, small, fast and easy to use program to assist system administrators and ordinary users to keep their computers secure by identifying what security updates are installed on local and remote machines, and allowing to download and install missing patches from Microsoft web site.the great +++ against Windows Update and MS Baseline security Analyzer is: you don't need the service "SERVER" running! even the command line mbsacli.exe needs "SERVER" runningjust my 2 cents. Edited April 13, 2006 by murvun
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now