MBSA - Microsoft Baseline Security Analyzer announcement
-
Link
This forum is for the Microsoft Baseline Security Analyzer security tool (www.microsoft.com/mbsa). No other security questions can be answered in this forum.
Welcome to the updated MBSA TechNet forum to discuss the free Microsoft Baseline Security Analyzer security scan tool.
As a security scan tool based on Microsoft Update, the behavior and results of MBSA are the same as Microsoft Update (not Windows Update that only detects updates for Windows products). With the exception of WSUS-managed machines where the administrator's approved updates take precedence, MBSA will report exactly what Microsoft Update will report. Like Systems Management Server (SMS), System Center Configuration Manager (SCCM), WSUS Server, MBSA uses the exact same logic and mechanisms as Microsoft Update to determine update applicability and installed state.
As a security scan tool, MBSA reports against three classifications of updates: Security Updates, Update Rollups and Service Packs. Critical (non-security) Updates, Definition Updates and Feature Packs and drivers are not detected by MBSA.
The majority of issues reported by MBSA users stem from an expected update not being displayed - which is often because the update is not an MSRC security bulletin listed in the Security Bulletin Search (http://www.microsoft.com/technet/security/current.aspx) or is not an update rollup (like a new version of Internet Explorer) or a Service Pack.
Almost all issues can be easily resolved by reviewing the error message displayed by MBSA, reviewing the System Requirements within the MBSA Help file (installed with MBSA) or the online MBSA Q&A (FAQ) located here: http://technet.microsoft.com/en-us/security/cc184922.
The latest MBSA news and information can be found at www.microsoft.com/mbsa and in the MBSA Q&A (FAQ).
-
0 VotesAug 2020 wsusscn2.cab reported as damaged or not valid via MBSAcli.exe
Hi everyone. we downloaded the latest (Aug 2020) wsusscn2.cab from the link ...Proposed | 18 Replies | 9105 Views | Created by WhackyWakie - Wednesday, August 12, 2020 7:36 AM | Last reply by SMKM123 - Wednesday, September 16, 2020 4:25 PM
-
0 Votes
-
0 Votes
-
0 Votes
SID Filtering Enable on Domain Level - Windows 2012
Hello Experts, I have single AD Forest, 1 root domain and 4 child domain which having parent child trust with each other Windows 2012 Functional ...Unanswered | 11 Replies | 2107 Views | Created by NiketanG - Saturday, September 5, 2020 7:35 AM | Last reply by NiketanG - Sunday, September 6, 2020 3:02 PM -
0 Votes
i am trying to find about this elevated logon on my computer that only I use
S-1-5-21-3421936177-1260733994-173998510-1001 i am trying to find out about this logon it is on a lot of logons in different programs i am only ... -
1 Votes
MBSA The catalog file is damaged or an invalid catalog
I downloaded August 2020 release of wsusscn2.cab file size 944,928KB and when I ran the MBSA tool, error was reported "The catalog file is damaged or an invalid catalog". I tried on ...Unanswered | 1 Replies | 4508 Views | Created by LT_TampaBay - Friday, August 14, 2020 12:50 PM | Last reply by Radek Beran - Monday, August 17, 2020 6:35 AM -
0 Votes
wsusscn2.cab damaged or corrupted
Hi guys, apparently the current wsusscn2.cab file on http://go.microsoft.com/fwlink/?LinkId=76054 is corrupted. The download on several end devices brought the ... -
0 Votes
Unable to install KB4565511 & KB4565912 / Installation struck in 90% in Windows 2016 Server
Hi, I have to complete the below mentioned patches installation manually. But when i am trying install these 2 patches, installation getting struck at 90% and ... -
0 Votes
Solve SWEET32 Birthday Attack and TLS 1.0 Vulnerabilities PCI-Compliance
Hi, I have a Windows 2016 server that I ran the script fix ... -
0 Votes
Microsoft Security Compliance Toolkit | Security Baseline | Challenge Question
I have applied Microsoft security baseline to Windows 10 IoT. Can anyone please provide a workaround or a solution to revert back the system to previous/original ... -
0 Votes
Multi-Factor Auntheticator
Multi-Factor Authentication was enforced on some of our users and I've done the following to try and resolve the issue. Created the app password. Deleted the ... -
0 Votes
MBSA no longer supported - stop asking questions about it - here is an alternate solution
" & update.Title Next WScript.Quit Now open up an elevated command prompt and change to the ...Unanswered | 1 Replies | 5660 Views | Created by Blake Morrison - Friday, September 13, 2019 12:44 PM | Last reply by xtremewlr - Tuesday, January 14, 2020 5:14 PM -
0 Votes
Ransomware - VSSadmin alternatives that Ransomware might use
We know that Ransomware often uses VSSadmin to encrypt files and we have renamed it. However we recently had an attack where it seems that another utility may have been ... -
0 Votes
Windows 10 Update without Internet
Just been to Technet looking for an answer on how to perform a Windows 10 update without the PC directly connecting to the internet. Can anyone provide a simple step by step how to? GREATLY ...Answered | 2 Replies | 1579 Views | Created by Bob Dillard - Thursday, December 12, 2019 7:01 PM | Last reply by Bob Dillard - Wednesday, December 18, 2019 5:07 PM -
0 Votes
Intune (ConfigMgr) app-security // VDI (citrix, vmware)
Hi, I was wondering if anyone has experience with Intune (ConfigMgr) on-premises with securering application and VDI-solutions such ...Unanswered | 0 Replies | 1276 Views | Created by Kjetil Skaardal - Tuesday, November 19, 2019 9:24 AM -
0 Votes
MBSA SCAN Getting hung in middle of Offline wsusscn2.cab scanning.
Hi All, In need of help ! i have been running the MBSA scan in one of my newly created OS windows 10 LTSC 2019. I installed MBSA scan and copied the cab file under ...Unanswered | 0 Replies | 1595 Views | Created by Krishnaprasanth N - Tuesday, October 22, 2019 11:15 AM -
0 Votes
MBSA for Windows Server 2016
Hi, My objective is to run the tool and analyze the security and software patches on server or computer and produce a list of recommended install. I read that ...Unanswered | 1 Replies | 7140 Views | Created by Turfy - Thursday, March 14, 2019 4:06 AM | Last reply by Crakdkorn - Sunday, October 20, 2019 9:19 PM -
0 Votes
Backdoor.Gonymdos -- PC Running ICECAST and BUTT attacked for the third time with Norton Anti-Virus and Malwarebytes Installed
According to Norton Anti-Virus the audio streaming PC, with only ports 80 and 8000 not blocked, was infected by Backdoor.Gonymdos which, according to the literature, allows other malware to set up ... -
0 Votes
Winhttp security risk?
Hi, I have a question regarding WinHttp. Up until now, we had issues using RDP due to a certificate problem, RDP could not check the revoke ... -
0 Votes
MBSA is not able to complete Scanning getting error "Cannot load security cab file"
i have a MBSA system which is used for scanning my network PCs for find the missed updates. now i am not able to scan the systems, getting error '"Cannot load security cab file". i have ...Answered | 1 Replies | 3323 Views | Created by Vinod C V - Wednesday, March 8, 2017 5:41 AM | Last reply by Vinod C V - Wednesday, August 21, 2019 1:26 PM - Items 1 to 20 of 640 Next ›
MBSA - Microsoft Baseline Security Analyzer announcement
-
Link
This forum is for the Microsoft Baseline Security Analyzer security tool (www.microsoft.com/mbsa). No other security questions can be answered in this forum.
Welcome to the updated MBSA TechNet forum to discuss the free Microsoft Baseline Security Analyzer security scan tool.
As a security scan tool based on Microsoft Update, the behavior and results of MBSA are the same as Microsoft Update (not Windows Update that only detects updates for Windows products). With the exception of WSUS-managed machines where the administrator's approved updates take precedence, MBSA will report exactly what Microsoft Update will report. Like Systems Management Server (SMS), System Center Configuration Manager (SCCM), WSUS Server, MBSA uses the exact same logic and mechanisms as Microsoft Update to determine update applicability and installed state.
As a security scan tool, MBSA reports against three classifications of updates: Security Updates, Update Rollups and Service Packs. Critical (non-security) Updates, Definition Updates and Feature Packs and drivers are not detected by MBSA.
The majority of issues reported by MBSA users stem from an expected update not being displayed - which is often because the update is not an MSRC security bulletin listed in the Security Bulletin Search (http://www.microsoft.com/technet/security/current.aspx) or is not an update rollup (like a new version of Internet Explorer) or a Service Pack.
Almost all issues can be easily resolved by reviewing the error message displayed by MBSA, reviewing the System Requirements within the MBSA Help file (installed with MBSA) or the online MBSA Q&A (FAQ) located here: http://technet.microsoft.com/en-us/security/cc184922.
The latest MBSA news and information can be found at www.microsoft.com/mbsa and in the MBSA Q&A (FAQ).
