Hello everyone,
We use Tenable Security's Nessus product to identify vulnerabilities on our servers. After patching fully, I still see several vulnerabilities. I have discovered that 90%+ are because of third party applications that we aren't currently patching (we will be in the next month or so), but there are some that are Microsoft patches that aren't synchronizing with SCCM and I need help understanding why. So in short, I'm worried about the 10%.
2 examples;
MS12-043; Vulnerability in Microsoft XML Core Services could allow remote code execution
MS11-025; Vulnerability in Microsoft Foundation Class (MFC) Library could allow remote code execution
I have SCCM configured to download the following classifications: Critical Updates, Security Updates, Update Rollups, and Service Packs. I have it configured to not download; Definition Updates, Feature Packs, Tools, Updates.
I have several Microsoft applications chosen for updates to be downloaded for, but I do not see .NET Framework even in the available list (.NET Framework is one of the things that I need to update per Nessus).
Any suggestions?
Thanks