Microsoft Baseline Security Analyzer 2.2
Preface
The scope of this document is focused on how customers can identify the most current Microsoft Quick Fix Engineering (QFE) releases and Security Updates that are applicable to their Golden Master image and is not concerned with the process of downloading and deploying these items.
The Microsoft Baseline Security Analyzer (MBSA) solution presents a
Introduction
This white paper describes the application of MBSA on HP thin clients with WES 7 for the purpose of assessing the security state and detecting missing security updates for this platform.
Background
To easily assess the security state of Windows machines, Microsoft offers the free Microsoft Baseline Security Analyzer (MBSA) scan tool. MBSA includes a graphical and command line interface that can perform local or remote scans of Microsoft Windows systems.
MBSA 2.2 runs on Windows Server® 2008 R2, Windows 7, Windows Server 2008, Windows Vista™, Windows Server 2003, Windows XP and Windows 2000 systems and will scan for missing security updates, rollups, and service packs using Microsoft Update technologies. MBSA also scans for common security misconfigurations (also called Vulnerability Assessment checks) using a known list of less secure settings and configurations for all versions of Windows; Internet Information Server (IIS) 5.0, 6.0, and 6.1; SQL Server 2000 and 2005; Internet Explorer® (IE) 5.01 and later; and Office 2000, 2002, and 2003 only.
To assess missing security updates, MBSA only scans for missing security updates, update rollups, and service packs available from Microsoft Update. MBSA does not scan or report missing
2