What does the windows update scanner need to detect ?

CVA 1.0.1.18
Database 1.10.
Vista SP1 (installed with SP1 inc).

If i scan my system it finds 19 Windows updates installed.
If i compare this to the installed patches i’m missing a bunch.

947864 IE7 (cumulative update, there is a later update 950759).
948881 ActiveX Killbits (cumulative update, there is a later update 9507650).
941833 XML 4.0 SP2 - Recommended
941314 Windows - Important
938371 Vista - Important
947562 Vista - Recommended
951978 Vista - Important
952709 Vista - Important
955020 Vista - Important

It also detects Office update for 2007 - 951808 but doesn’t show Office2007 SP1 installed ?
Missing these for Office also:
946983 - Important
947590 - Important
952142 - Important
946691 - Important

(B)

Hi Ronny,
CVA checks only Windows Security Updates, which means updates which are related with some sort of vulnerability in Windows.

Whatever updates you have mentioned, they are not really security updates and not related to any vulnerability in Windows OS.

Hope this helps in understanding what CVA shows. There can be many updates from Windows but we show only once related to vulnerability.

Thanks
-umesh

Okay i can understand this, but maybe the “normal” user can get confused this way ?
Is it an idea to put something in the GUI stating it only look’s for security/vulnerability patches ?

Hi Ronny,
We would make it ample clear in next release and may also provide option to search for product and driver updates.

Thanks
-umesh

I would love to have CVA looking for all Windows updates & patches, not just strictly security related. Maybe I’m wrong but I think there are also stability patches (or are these the same as security?) which I find very important as well.

Any chance that we will see this in a release soon?

Thanks :slight_smile:

LA