I am seeing a vulnerability show up on a couple of servers for MS15-128, but when I look on these servers, I can see that the corresponding KB is successfully installed? Am I missing something here?
Few questions :
- Are you running authenticated scans
- Have you looked at the raw scan results from a scan. See what did Qualys find from the scan in order to report that vuln.
Thanks for the reply. Yes, I am running authenticated scans (and have verified the authenticated scan was successful for this server). When looking at the scan results, nothing jumped out at me, however, when I looked at ticket it created it showed me what it found!
To make it more interesting, Qualys is referencing this as one MS number but when I click the link to the MS KB article, it is listed under a different MS number...
At least I am on the right track now.
It could be superseded.
It looks like the MS has two security patches that reference this situation...go figure.
Thanks again for your help!
Retrieving data ...