Security covered with greater file versions?

R

Randy

I ran Microsoft Baseline Security Analyzer and received
3 "yellow X" warnings for files being out of date.

For example, under the caption Reason relating to MS02-
055 Unchecked Buffer in Windows Help Facility Could
Enable Code Execution (Q323255) it reads:

File C:\Windows\system32\hhctrl.ocx has a file version
[5.2.3735.0] that is greater than what is expected
[5.2.3669.0].

Has the security risk been alleviated with the more
current file version?

Thank you.
 
R

Roger Abell

Later versions are said to include fixes released
at earlier versions. The reason this happens is that
the XML file used by the MBSA detection only takes
into account versions released as part of a security
patch, so when there is a later release/update not
categorized as security related you get one of this
type of indications from MBSA.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

windows security update 1
MBSA 1
Baseline Sec. Adv. problem 3
So 'the higher the version, the more up-to-date the software' not always true? 2
Baseline security analyser 2
Keyser Soze's XP Security Pack 2.001 7
Ziff-Davis Benchmarking Operation 1
CSharp Coding Standards 18

Top