Summary
ManageSoft Security Patch Management fails to detect Internet Explorer 6.0 for Windows Server 2003 with Windows Server 2003 Service Pack 1 installed. As a result, the security bulletins MS05-025, MS05-037 and MS05-038 will be reported as "not applicable" to such devices, and the relevant patch from these bulletins will not be installed.
ManageSoft Security Patch Management fails to detect Internet Explorer 6.0 for Windows Server 2003 with Windows Server 2003 Service Pack 1 installed. As a result, the security bulletins MS05-025, MS05-037 and MS05-038 will be reported as "not applicable" to such devices, and the relevant patch from these bulletins will not be installed.
The installation agent log file will show messages such as the following when processing relevant patch packages on affected devices (exact details in the logging will vary depending on the version of ManageSoft Security Patch Management in use):
Detected installed product "Windows Server 2003" (ProductID 178) Service pack "Windows Server 2003 Service Pack 1" (ServicePackID 232) [...] Security patch MS05-037/WindowSServer2003-KB903235-x86-ENU.EXE is out of scope
In particular, note that the logging here does not show the product "Internet Explorer 6.0 for Windows Server 2003" as being installed.
This incorrect behavior can be resolved for systems running ManageSoft Security Patch Management 7.2 or later by downloading the latest version of the ManageSoft Security Patch Management securityproducts.xml file as described in KB article M100659.
Additional Information
Information about the MS05-025 security bulletin can be found at http://www.microsoft.com/technet/security/bulletin/MS05-025.mspx.
Information about the MS05-037 security bulletin can be found at http://www.microsoft.com/technet/security/bulletin/MS05-037.mspx.
Information about the MS05-038 security bulletin can be found at http://www.microsoft.com/technet/security/bulletin/MS05-038.mspx.
Comments