MBSA Report

Security assessment: Severe Risk
Computer name: WORKGROUP\ISS-FC09F97E756

IP address: 10.64.110.184
Security report name: WORKGROUP - ISS-FC09F97E756 (2-7-2011 1-02 PM)
Scan date: 2/7/2011 1:02 PM
Scanned with MBSA version: 2.2.2170.0
Catalog synchronization date:
Security update catalog: Microsoft Update
Security Updates Scan Results
Issue: SQL Server Security Updates

Score: Check passed
Result: No security updates are missing.
Current Update Compliance
| MS06-061 | Installed | MSXML 6.0 RTM Security Update (925673) | Critical |
Issue: Windows Security Updates

Score: Check passed
Result: No security updates are missing.
Current Update Compliance
| MS09-071 | Installed | Security Update for Windows Server 2003 (KB974318) |

Important |
| MS10-097 | Installed | Security Update for Windows Server 2003 (KB2443105)
| Important |
Critical |
Critical |
Moderate |
| 2443685 | Installed | Update for Windows Server 2003 (KB2443685) | |
Important |
Important |
| Important |
| MS10-070 | Installed | Security Update for Microsoft .NET Framework 1.1
SP1, Windows Server 2003, and Windows Server 2003 R2 x86 (KB2416451) | Important |
| MS10-041 | Installed | Microsoft .NET Framework 3.5 SP1 and .NET
Framework 2.0 SP2 Security Update for Windows 2000, Windows Server 2003, and Windows XP x86
(KB979909) | Important |
| MS09-051 | Installed | Security Update for Windows Media Format Runtime
9.5 for Windows Server 2003 (KB954155) | Critical |
Important |
| MS10-090 | Installed | Cumulative Security Update for Internet Explorer 7 for
Windows Server 2003 (KB2416400) | Critical |
| Important |
Critical |
Critical |
Important |
Important |
| MS09-061 | Installed | Microsoft .NET Framework 1.1 Service Pack 1 Security
Update for Windows Server 2003 x86 and Windows Server 2003 R2 x86 (KB953298) | Important |
Moderate |
Moderate |
Important |
Important |
Critical |
Important |
Moderate |
Critical |
| MS10-033 | Installed | Security Update for Windows Media Format Runtime
9.5 for Windows Server 2003 (KB978695) | Critical |
| Low |
| MS09-061 | Installed | Microsoft .NET Framework 2.0 Service Pack 1 Security
Update for Windows 2000, Windows Server 2003, and Windows XP (KB953300) | Critical |
Important |
| 914961 | Installed | Windows Server 2003 Service Pack 2 (32-bit x86) | |
Important |
Critical |
Critical |
| MS10-070 | Installed | Security Update for Microsoft .NET Framework 2.0 SP2
and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB2418241) | Important |
Critical |
Critical |
| Important |
| MS09-045 | Installed | Security Update for Jscript 5.7 for Windows Server 2003
(KB971961) | Critical |
Important |
Critical |
Important |
| Important |
| 940767 | Installed | Windows Internet Explorer 7 for Windows Server 2003 | |
| MS10-060 | Installed | Security Update for .NET Framework 2.0 SP2 and 3.5
SP1 on Windows Server 2003 and Windows XP x86 (KB983583) | Critical |
Important |
| Critical |
Low |
Important |
Critical |
| MS10-070 | Installed | Security Update for Microsoft .NET Framework 3.5 SP1
on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008 x86 (KB2416473) |
Important |
Moderate |
| MS08-069 | Installed | Security Update for Microsoft XML Core Services 6.0
Service Pack 2 (KB954459) | Important |
Important |
Critical |
Critical |
Important |
Critical |
Important |
Critical |
| 951847 | Installed | Microsoft .NET Framework 3.5 Service Pack 1 and .NET
Framework 3.5 Family Update (KB951847) x86 | |
| MS06-078 | Installed | Security Update for Windows Media Player 6.4
(KB925398) | Critical |
Moderate |
| 951847 | Installed | Microsoft .NET Framework 3.5 Service Pack 1 and .NET
Framework 3.5 Family Update for .NET versions 2.0 through 3.5 (KB951847) x86 | |
Critical |
Important |
Important |
Important |
Important |
| MS07-040 | Installed | Security Update for Microsoft .NET Framework,
Version 1.1 Service Pack 1 (KB933854) | Critical |
Important |
Critical |
Important |
Moderate |
Critical |
Critical |
| Important |
| Important |
Critical |
Critical |
Critical |
Important |
| MS10-034 | Installed | Cumulative Security Update for ActiveX Killbits for
Windows Server 2003 (KB980195) | Critical |
Important |
Moderate |
| Moderate |
Critical |
| Important |
| MS07-050 | Installed | Security Update for Internet Explorer 7 for Windows
Server 2003 (KB938127) | Critical |
| MS10-041 | Installed | Microsoft .NET Framework 1.1 SP1 Security Update for
Windows Server 2003 x86 and Windows Server 2003 R2 x86 (KB979907) | Important |
| Moderate |
Critical |
| Important |
| Critical |
Critical |
| Important |
Important |
| Important |
Critical |
| MS07-034 | Installed | Cumulative Security Update for Outlook Express for
Windows Server 2003 (KB929123) | Low |
| 890830 | Installed | Windows Malicious Software Removal Tool - January 2011
(KB890830) | |
| Important |
Critical |
Operating System Scan Results
Administrative Vulnerabilities
Issue: Local Account Password Test
Score: Check passed
Result: Some user accounts (1 of 3) have blank or simple passwords, or could not be
analyzed.
Detail:
| User | Weak Password | Locked Out | Disabled |
| Guest | Weak | - | Disabled |
| SUPPORT_388945a0 | - | - | Disabled |
| Administrator | - | - | - |
Issue: File System

Score: Check passed
Result: All hard drives (1) are using the NTFS file system.
Detail:
| Drive Letter | File System |
| C: | NTFS |
Issue: Password Expiration

Score: Check failed (non-critical)
Result: Some user accounts (2 of 3) have non-expiring passwords.
Detail:
| User |
| Administrator |
| Guest |
| SUPPORT_388945a0 |
Issue: Guest Account

Score: Check passed
Result: The Guest account is disabled on this computer.
Issue: Autologon
Score: Check passed
Result: Autologon is not configured on this computer.
Issue: Restrict Anonymous

Score: Check passed
Result: Computer is properly restricting anonymous access.
Issue: Administrators
Score: Check passed
Result: No more than 2 Administrators were found on this computer.
Detail:
| User |
| Administrator |
Issue: Windows Firewall

Score: Best practice
Result: Windows Firewall is not installed or configured properly, or is not available on this
version of Windows.
Issue: Automatic Updates

Score: Check passed
Result: Updates are automatically downloaded and installed on this computer.
Issue: Incomplete Updates

Result: No incomplete software update installations were found.
Additional System Information
Issue: Windows Version

Result: Computer is running Microsoft Windows Server 2003.
Issue: Auditing
Result: Logon Success auditing is enabled, however Logon Failure auditing should also be
enabled.
Issue: Shares
Result: 2 share(s) are present on your computer.
Detail:
| Share | Directory | Share ACL | Directory ACL |
| ADMIN$ | C:\WINDOWS | Admin Share | BUILTIN\Users - RX,
BUILTIN\Power Users - RWXD, BUILTIN\Administrators - F, NT AUTHORITY\SYSTEM - F |
| C$ | C:\ | Admin Share | BUILTIN\Administrators - F, NT
AUTHORITY\SYSTEM - F, BUILTIN\Users - RX, Everyone - RX |
Issue: Services
Result: Some potentially unnecessary services are installed.
Detail:
| Service | State |
| Telnet | Stopped |
Internet Information Services (IIS) Scan Results

IIS is not running on this computer.
SQL Server Scan Results

SQL Server and/or MSDE is not installed on this computer.
Desktop Application Scan Results

Administrative Vulnerabilities
Issue: IE Zones
Score: Check failed (critical)
Result: Internet Explorer zones do not have secure settings for some users.
Detail:
| User | Zone | Level | Recommended Level |
| ISS-FC09F97E756\Administrator | Trusted sites | Medium-Low | Medium |
| ISS-FC09F97E756\Administrator | Internet | Custom | High |
Sub-Detail:
| Setting | Current | Recommended |
| Run components not signed with Authenticode | Enable | Disable |
| Run components signed with Authenticode | Enable | Disable |
| File download | Enable | Disable |
Issue: IE Enhanced Security Configuration for Administrators

Score: Check passed
Result: The use of Internet Explorer is restricted for administrators on this server.
Issue: IE Enhanced Security Configuration for Non-Administrators

Score: Check passed
Result: The use of Internet Explorer is restricted for non-administrators on this server.
Issue: Macro Security

Score: Check not performed
Result: No supported Microsoft Office products are installed.

MBSA Report

Загружено:

Сведения о документе

Исходное описание:

Оригинальное название

Авторское право

Доступные форматы

Поделиться этим документом

Поделиться или встроить документ

Параметры публикации

Этот документ был вам полезен?

Это неприемлемый материал?

Авторское право:

Доступные форматы

MBSA Report

Загружено:

Авторское право:

Доступные форматы

Security assessment: Severe Risk

Computer name: WORKGROUP\ISS-FC09F97E756

Security Updates Scan Results

Issue: SQL Server Security Updates

Current Update Compliance

| MS06-061 | Installed | MSXML 6.0 RTM Security Update (925673) | Critical |

Issue: Windows Security Updates

Current Update Compliance

| MS09-071 | Installed | Security Update for Windows Server 2003 (KB974318) |

Operating System Scan Results

Issue: File System

Issue: Password Expiration

Issue: Guest Account

Issue: Restrict Anonymous

Issue: Windows Firewall

Issue: Automatic Updates

Issue: Incomplete Updates

Additional System Information

Issue: Windows Version

Internet Information Services (IIS) Scan Results

SQL Server Scan Results

Desktop Application Scan Results

Issue: IE Enhanced Security Configuration for Administrators

Issue: IE Enhanced Security Configuration for Non-Administrators

Issue: Macro Security

Вам также может понравиться