MBSA - Microsoft Baseline Security Analyzer for XPe?

  • Thread starter Thread starter James
  • Start date Start date
J

James

I have customers who are requesting this support for XP Embedded. After
applying QFE's the images show that vulnerabilities still exist.

How do I respond to my customers? Have I missed something or will support
be included in the future?

Thanks,
James Baber
Maxspeed Corp.
 
Since no one knows what the dependencies are for MBSA, it's not surprising
that it could report incorrectly. I'm not even sure it recognizes the
embedded platform as being valid, so perhaps this is adding to your problem.

I'll try it on a runtime soon and report back, but for now I'd let the
customer know that MBSA has not been componentized and there are no known
plans at the moment to componentize it. Also, for some security fixes (like
the RPC vulnerability the prevents the Blaster worm) those individual public
scanning tools are sometimes verified against the embedded platform as well
before the QFE is deployed. I know for a fact the Q823980 RPC vulnerability
patch public scanner tool works on XPe.

Andy
 
Is MBSA not running? Or is it running but showing vulnerabilities?

If it's not running then add the Windows Installer component if you don't
currently build with it. This will get you a long way in getting 3rd part
apps. etc. to run.

What vulnerabilities is this tool reporting? You may need to do some
tweaking above and beyond just applying QFE's.

HTH... Doug
 
I can get the MBSA to run in HFNetChk mode in Command Line. One odd thing
is that it shows my XPe SP1 image as "XP Gold". When I compare an image
with all QFE's added to an image (XPe SP1 of course) without any QFE's
added, only a few items show as being patched successfully...

Windows Installer is included in the build.

James Baber
Maxspeed Corp.
 
Back
Top