MBSA showing security issue despite update (MS11-025)

Similar Messages

• WSUS not Synchronizing MS11-025

  A vulnerability scan revealed that several Windows 7 machines on my network needed security update MS11-025 (Visual C++ Redistributable). In my case we are:
  1. WSUS is setup to synchronize Windows updates
  2. None of these machines are running Visual Studio (ie only the VC++ redistributable is installed)
  3. WSUS does not show any patches for the security update MS11-025 unless the Visual Studio 2008 is synchronized.
  http://social.technet.microsoft.com/Forums/en-US/a1086629-e9c4-4d1d-92b8-e4a236b0c0b8/bulletin-ms11025-updates-2538243-2538242-not-listed-in-wsus?forum=winserverwsus
      Unfortunately even if Visual Studio 2008 is selected for synchronization the MS11-025 security update that WSUS imports not the one applicable to a Windows 7 only install of Visual C++.
  Why is this happening? What is the solution and if an update does not appear in WSUS after synchronization is it possible to manually import it and select applicable machines for install?

  but the VC++ redistributable can exist without Visual Studio.
  Yes, it can; which has absolutely nothing to do with how you get the udpate package(s) synchronized into your WSUS Server.
  Your list of patches specifically states that the redist is found in Visual Studio.
  No. What it says is that you must have the appropriate Visual Studio PRODUCT CATEGORY selected for synchronization in order to get those updates.
  I had a server 2008 R2 OS that needed the update according to Nessus and I manually confirmed that Nessus was correct. This is the patch/update
  http://www.microsoft.com/en-us/download/details.aspx?id=26368. It is meant for the standalone VC++ redistributable without an installation of Visual Studio.
  Great! In order to get the Microsoft Visual C++ 2008 Service Pack 1 Security Update,
  you must be synchronizing the Visual Studio product category that provides that security update. That product category (as noted above, in both your original post, as well as my reply) is
  Visual Studio 2008.
  This update does not synchronize in WSUS. I had to apply it manually. In fact I believe this update is not detected by the Windows Update agent because I had to apply it manually to machines that were updating directly from Mircrosoft.
  The WUAgent can only "detect" updates that have been synchronized to the WSUS Server. If you have not synchronized the update, the WUAgent can't tell you squat about the need, or lack thereof, for that update (until you go to Microsoft Update) -- at which point
  the WUAgent now has access to ALL product categories and ALL update classifications and what you've synced (or not) to the WSUS server is totally irrelevant.
  Without Nessus I would not have known that this component was out of date.
  This is a great testimony to why an independent security vulnerability scanner should always be used:
  Because you cannot possibly know about missing updates if the updates aren't on the WSUS server in the first place.
  Lawrence Garvin, M.S., MCSA, MCITP:EA, MCDBA
  SolarWinds Head Geek
  Microsoft MVP - Software Packaging, Deployment & Servicing (2005-2014)
  My MVP Profile: http://mvp.microsoft.com/en-us/mvp/Lawrence%20R%20Garvin-32101
  http://www.solarwinds.com/gotmicrosoft
  The views expressed on this post are mine and do not necessarily reflect the views of SolarWinds.

• I updated some security issues and suddenlly my gmail does not open. it shows 75% of the procees and does not go on

  I updated automatically some security issues in my computer (I don't remember which) and now my gmail will start opening until it reaches 75% and it will not go on opening.
  I can open it Internet explorer but not in Mozila fireworks

  Clear the cache and the cookies from sites that cause problems.
  "Clear the Cache":
  *Tools > Options > Advanced > Network > Cached Web Content: "Clear Now"
  "Remove Cookies" from sites causing problems:
  *Tools > Options > Privacy > Cookies: "Show Cookies"
  Start Firefox in <u>[[Safe Mode|Safe Mode]]</u> to check if one of the extensions or if hardware acceleration is causing the problem (switch to the DEFAULT theme: Firefox/Tools > Add-ons > Appearance/Themes).
  *Don't make any changes on the Safe mode start window.
  *https://support.mozilla.org/kb/Safe+Mode
  *https://support.mozilla.org/kb/Troubleshooting+extensions+and+themes

• HT4623 Do I need to update my iphone4 because of the security issue that has been published lately?

  Do I need to update my iphone4 because of the security issue that has been published lately?

  Your profile shows you have a 4S with 7.0.6. That is the most current update. Do you also have a 4 that you haven't updated? If so, you should update it too.

• It shows 'idm cc has diabled due to security issues" what can i to do enable

  idm add-on is disabled due to security issues how i ennable

  same issue with me every time while i update to firefox's latest version i even i update to IDM's latest version still is shows the same what to do ??
  [http://golalaa.com GoLaLaa]

• HT5642 I need to update iOS 6.1.3 on my iPad2 to 6.1.6, due to security issue. Why is no update available? I do NOT want to install iOS 7, due to memory limitations.

  I need to update iOS 6.1.3 on my iPad2 to 6.1.6, due to security issue. Why is no update available? I do NOT want to install iOS 7, due to memory limitations.

  Any upgrade will be to the most recent, compatible version, in this case 7.0.6.

• HT1338 There is a lot of talk about the Java security issues and the ability to download a patch fix, do i need to do this or will software update pick this up for me?

  There is a lot of talk about the Java security issues and the ability to download an apple patch fix, do i need to do this or will software update pick this up for me?

  Thanks for that, how do I establish if I have Java installed as on Safari preferences it indicates the following
  Web content - Enable Java
                      - Enable JavaScript

• Security issue in DNS ! Update bind.

  Apparently there is a massive security issue in DNS protocol : http://securosis.com/2008/07/08/dan-kam … -released/
  or http://www.kb.cert.org/vuls/id/800113
  I am surprised I haven't seen any post on the forum about it. For now a solution could be to update bind to 9.5.0-P1 (I don't know if the one in testing is this particular one, there is no "P1").
  Every DNS server has to be upgraded since the issue is in the protocol, not in the code !

  A lot of systems got updated yesterday/today. I just checked a Windows Server 2003 x64 RC2 at work; yesterday it was vulnerable, but today it's reported safe after the recent security updates (this site offers some kind of check: http://www.doxpara.com/)
  I believe all the "big" ones in Linux did release an update yesterday, so there's probably plentiful of patches around... which is beyond the limits of my brain cells at the moment.

• HT5919 My company will not allow us to download iOS 7 due to software / security issues on our end. The problem is I need to download numbers but it says I need iOS 7. Is there any way to get an earlier update that's doesn't require ios7?

  My company will not allow us to download iOS 7 due to software / security issues on our end. The problem is I need to download numbers but it says I need iOS 7. Is there any way to get an earlier update of numbers that's doesn't require ios7?

  Thank you so much! It's updating now. I'm hoping that once the update is finished that it will sync like normal as well. Of course I'm still a bit confused/concerned about how it refused to update on it's own, but for now that's not a problem. Hopefully from now on there won't be any more problems.

• Will there be a update for the iPad 1 that will take care security issues like 7.0.6 did for newer iPads

  Can someone answer my question?

  The iPad 1 is not afected by the security issue. Hence no update is necessarry.  The code that was at the root of the problem was not added to safari until iOS 6. It is not present in iOS 5 which is as high as an original iPad can go.

• I get a notice that says a security and stability update is recommended for Fire Fox 3.6.15. When I click to update a bar appears showing attempt to contact but nothing ever updates.

  I get a notice that says a security and stability update is recommended for Fire Fox 3.6.15. When I click to update a bar appears showing attempt to contact but nothing ever updates.

  Sometimes the updater gets in a funny state - Go to http://www.mozilla.org/en-US/firefox/new/ and download the full installer. Close Firefox and run the installer

• HT5808 I have an original iPad and there have been no recent iOS updates for it. Am I vulnerable to the recent SSL security issues? Is my iPad safe to use?

  I have the original iPad. There have been no recent ios updates for it. Is the SSL security issue a problem? Is my iPad safe to use?

  You are OK. The fix is not necessary in iOS 5.1.1.

• Movies list done in Notes updated to my Blockbuster account w/o my knowledge. Security issues?

  Movies list done in Notes updated to my Blockbuster account w/o my knowledge. Security issues?
  How was this possible?

  Ok, let me explain:
  One day at Blockbuster store I started to make a list on Notes app on my iPhone with movies that I want to add to my BB online queue when I get home (for DVD mail in delivery, just like Netflix used to be). All good so far. Few days later the list it's not in Notes anymore and when I checked my BB account the movies that were on the list I made in Notes are now in my BB queue. How was the list moved, the accounts are not linked, don't even think it's possible to link Notes with BB anyway.

• MacAppStore update security issue?

  Wow. So many issues going on with Apple site that I don't like.
  1.) Mac App Store issued an update for an app I deleted about a month ago.
  Then it tells me I nned to log into another one of my accounts to update that one too.
  Problem is, the email address it displayed as my other email address is not mine.
  2.) I logged onto Apple Support and it does not give an option to explore my issue.
  Anything close to it is grayed out so I cannot click on it to get any suggestions.
  3.) I used Grab tool to take a 40k snap shot of the Mac App Store message mentioned above, but it the submit button is
  not active to attach the image to this support  page. Are TIFF images not allowed?
  Basically I want to find out why Mac App Store is linking me to this unknown email address?
  Is this a hacking issue?
  I am an avid Apple fan and feel support is getting harder and harder.

  Is this a hacking issue?
  Seems this ID is linked with the Chinese, I would be especially concerned in that (unless you have friends from there who used your computer recently). Did you install any software outside of the MAS recently? Like from the Pirate Bay or Iso Hunt?

• Other web browsers and security issues?

  Since even an Apple KB article recognizes the need for an additional browser and because of Safari's limitations and problems, I'm going to try switching to another browser (most likely OmniWeb and am looking at Firefox, Shira and Opera also though perhaps not as a primary browser) but I'm wondering about their ability to keep on top of any security issues for Mac? (and how do you keep up with security updates?)
  Though perhaps unfounded, at least with Safari, I feel that Apple has a vested interest in keeping on top of security issues (for Safari and Java) and I can readily find out about security updates via software updater.

  Most of the other Mac browsers have their adherents. They are all good browsers (I have 7 browsers installed to test various web sites and for change-of-pace usage). They all have their strengths and they all have their weaknesses. Only iCab and OmniWeb are still shareware, the rest are now or always have been free (Opera just recently stopped charging for its browser).
  I have settled on Firefox as my alternate browser and I use it maybe just a tad more than Safari, but I do switch back and forth between them. The Mozilla foundation is good at getting security updates out when needed. Firefox has a button on the toolbar to check for updates. One nice thing about Firefox is that you can install free extensions which enhance the features available. I have one to supplement tab features, one to control iTunes from Firefox's status bar, one to help me format messages in discussion forums, and one to block ads.
  I prefer OmniWeb for doing intensive research because of the way it handles tabs in its sidebar, showing me which ones I've looked at and which ones I haven't, and giving me great flexibility in rearranging tabs, which are viewable as thumbnails or text names (I have had up to a hundred or so tabs open in OmniWeb.
  Shiira is good and its fast. I have not checked for updates for a while, but the last time I updated there was still a problem with Shiira kicking you out of logged-in sites when you moved from page to page with in web site. This may have been fixed by now - they were aware of the problem back then.
  Camino is a native OS X cousin of Firefox and is also fast, but is not updated as often.
  I would stay away from Mozilla or Netscape unless you need all the additional modules they have and which take up hard disk space. Firefox and Camino represent the browser module of Mozilla/Netscape. Mozilla and Netscape have modules for email, irc chat, newsgroups, and for creating and editing web pages. Netscape is a branded and slightly customized version of Mozilla and is not updated as often.
  Opera is a nice browser and some use it as their main browser, but I have not seen anything that really stands out for me, but that does not mean it is not worth a look.
  I would stay away from abandonware Internet Explorer.
  As for checking for updates, several of them, as with many Mac programs, now have a menu item that allows you to check for updates. Most of them also announce their updates on both VersionTracker and MacUpdate.
  Happy Exploring.