Forum Thread: Updates

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
PSI

This thread has been marked as locked.
celmo Updates
Member 17th Sep, 2017 12:58
Ranking: 0
Posts: 7
User Since: 17th Sep, 2017
System Score: N/A
Location: US
The scanner reported that I had 3 programs that needed updating. I installed Flash Player 27.x, Microsoft Process Explorer 1.5.x and MS XML Core Services 4.x but after a reboot and rescan, the same 3 are reported again.

Maurice Joyce RE: Updates
Handling Contributor 17th Sep, 2017 14:17
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
What OS are you using?

--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+0
-0
celmo RE: Updates
Member 17th Sep, 2017 14:18
Score: 0
Posts: 7
User Since: 17th Sep 2017
System Score: N/A
Location: US
Sorry, Windows 10 on a DEll PC.
Was this reply relevant?
+0
-0
Maurice Joyce RE: Updates
Handling Contributor 17th Sep, 2017 15:20
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
I assume you are talking about the embedded Flash Player using Windows Update? Microsoft released the security update on 12th September. Look in your Windows Update history for KB4038806. If it is not installed run a Windows Update scan and update it manually.

Once this is installed correctly PSI gives a clean bill of health with a version number of 27.0.0.130(IE).

Microsoft Process Explorer was last vulnerable a year ago so you must have a very old copy installed - did you use this link to update it?

https://docs.microsoft.com/en-us/sysinternals/down...


MSXML 4 is obsolete and has been for years. It cannot be updated. It was used on older OS's to run legacy programmes and was never intended for use on any modern OS. It is not being asset tracked by anyone so users have no idea if it is vulnerable.

Knowing that you have a few options:

1. Do nothing. This will allow the PSI to remind you that you are running a risk with your security.

2. Create a PSI ignore rule. This will stop the reminders but the risk remains the same as above.

3. Uninstall all aspects of MSXML 4. This will cripple any very very old applications you have installed that is dependent on it.

4. Rename the vulnerable MSXML file that PSI shows you by adding an extension .OLD

If you want more help could you please give the paths to the problems. To do this:

Right click and select SHOW DETAILS from the offending prgrammes in scan results page - this reveals the detail required. In the case of Flash it will show you something like this:

C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx version number 27.0.0.130(IE)


--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+2
-0
celmo RE: Updates
Member 17th Sep, 2017 22:38
Score: 0
Posts: 7
User Since: 17th Sep 2017
System Score: N/A
Location: US
Thank you, Maurice. I was able to eliminate two of the issues, but not the KB one. I can't seem to find any evidence that it was installed and when I check, there is no update available and the installed update doesn't list that KB.
Was this reply relevant?
+0
-0
Maurice Joyce RE: Updates
Handling Contributor 17th Sep, 2017 23:38
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Try the Microsoft Update Catalog here:

https://www.catalog.update.microsoft.com/Home.aspx

Insert the KB number in the search box and then select the download that matches your system from the list.


--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+2
-0
celmo RE: Updates
Member 18th Sep, 2017 12:47
Score: 0
Posts: 7
User Since: 17th Sep 2017
System Score: N/A
Location: US
I am on Version 1709 of W10 and the only version listed when I search for that KB is 1703. If I try to run that, it errors that the update is not applicable to your computer. Thanks for all your help though.
Was this reply relevant?
+0
-0
Maurice Joyce RE: Updates
Handling Contributor 18th Sep, 2017 13:04
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Version 1709 is not due for official release until the 17th October and replaces version 1703 - you must be a member of the Windows Insider (BETA) Programme to get it early and it will not be supported as you have noted in the catalog.

PSI does not support anything in BETA either but it looks like it is reporting correctly in that you appear to have a vulnerable version of Flash embedded due to a windows Update issue.

Microsoft should be able to advise via the Insider Programme Reporting chain.


--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+3
-0
celmo RE: Updates
Member 20th Sep, 2017 21:24
Score: 0
Posts: 7
User Since: 17th Sep 2017
System Score: N/A
Location: US
I installed the latest Windows Update Release (1709/16291.0)and it has the updated flash 27.x, thus no more warnings on that. Only xml Core 3 and 6 show up now but as up to date. Thought you might want to know. Thanks for your help!
Was this reply relevant?
+0
-0
Maurice Joyce RE: Updates
Handling Contributor 20th Sep, 2017 21:27
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Thank you for the update. Pleased you are all fixed up.

--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+0
-0

maryathomes

OZ Assignment Help
[+]
This reply has been deleted

This thread has been marked as locked.