MS Baseline Security Analyzer Report

Hi All,

I was wonder if someone can help me understand this MSBSA report.

I'm mainly concerned with the top 3 lines.....

Wednesday, June 15, 2005

Security Updates Vulnerabilities Unable to scan Office Security Updates Error occured while checking for Office updates. Could not update files for Office Update Inventory Tool. 030003

Security Updates Vulnerabilities Check failed (non-critical) MSXML Security Updates 1 products are using a service pack not at the latest version or have other warnings....(Says I have SP5 and that I need SP7)

Security Updates Vulnerabilities Best practice Windows Security Updates 1 security updates could not be confirmed.......(Says vulnerability in PNG Processing could lead to buffer overrun { 890261} ).....MS05-009

Security Updates Vulnerabilities Check passed MDAC Security Updates No critical security updates are missing.

Windows Scan Results Vulnerabilities Check failed (non-critical) Automatic Updates Updates are not automatically downloaded or installed on this computer.....(I am alerted to updates, but I download them manually since I use 56k)

Windows Scan Results Vulnerabilities Best practice Windows Firewall Windows Firewall is disabled and has exceptions configured.....(I use Sygate for a firewall)

Windows Scan Results Vulnerabilities Check passed Local Account Password Test No user accounts have simple passwords.

Windows Scan Results Vulnerabilities Check passed File System All hard drives (4) are using the NTFS file system.

Windows Scan Results Vulnerabilities Check passed Guest Account The Guest account is not disabled on this computer.

Windows Scan Results Vulnerabilities Check passed Restrict Anonymous Computer is properly restricting anonymous access.

Windows Scan Results Vulnerabilities Check passed Administrators No more than 2 Administrators were found on this computer.

Windows Scan Results Vulnerabilities Check not performed Password Expiration Check is skipped on Windows XP Home Edition computers.

Windows Scan Results Vulnerabilities Check not performed Autologon Check is skipped on Windows XP Home Edition computers.

Windows Scan Results Additional System Information Additional information Windows Version Computer is running Windows 2000 or greater.

Windows Scan Results Additional System Information Best practice Auditing Check is skipped on Windows XP Home Edition computers.

Windows Scan Results Additional System Information Additional information Shares No shares are present on your computer.

Windows Scan Results Additional System Information Best practice Services No potentially unnecessary services were found.

Internet Information Services (IIS) Scan Results Additional System Information Best practice IIS Status IIS is not running on this computer.

SQL Server Scan Results Product Status Best practice SQL Server/MSDE Status SQL Server and/or MSDE is not installed on this computer.

Desktop Application Scan Results Vulnerabilities Check passed IE Zones Internet Explorer zones have secure settings for all users.

Desktop Application Scan Results Vulnerabilities Check not performed Macro Security No Microsoft Office products are installed

 

I saw something like that myself (On Google), but I wasn't sure.

Now that you mention it, I remember a report about possible scanning errors.

I cannot find any more Windows (Critical & otherwise) updates to install, and according to Belarc Advisor, all the updates I have now are installed correctly.

Hopefully, the next MBSA will not have any bugs in it.

Thanks Pete!