AnsweredAssumed Answered

QID 90047 on Server 2012 (non R2)

Question asked by Diarmuid O'Sullivan on Mar 1, 2016
Latest reply on Mar 2, 2016 by Diarmuid O'Sullivan

I am having an issue on a number of Server 2012 (non R2). These are new builds awaiting deployment. There are no other patch related vulnerabilities on the report. The following are the details:

 

QID 90047 Microsoft Windows Kernel Elevation of Privilege Vulnerability (MS15-063).

RESULTS: %windir%\System32\Kernelbase.dll Version is 6.2.9200.17637

 

Windows authentication was successful for the host

 

Vulnerability is showing on a new build, Windows Server 2012 (non R2).

 

Tried to remedy by installing patch KB3063858. “The update is not applicable to your computer” message pops up.  These systems are fully patched via Windows update as well.

 

Then I ran MBSA, which states there are no security updates missing.

 

Tried searching for the QID on the Qualys community forum, but with no results.

 

I raised a ticket with Qualys support this morning, but thought it might be good to post here aswell.

 

Any help on this matter would be much appreciated.


Diarmuid

Outcomes