Does anybody know how to modify the plugin smb_nt_ms02-026.nasl to use it for http://microsoft.com/technet/security/bulletin/MS03023.asp scan ?
Thanks,
Artur
| "Young, Keith" <[EMAIL PROTECTED]>
08/22/2003 03:05 PM
|
To: <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]> cc: Subject: RE: Looking for plugins to check if Windows is patched with MS03-023 and MS03-26 patches |
> I already found a plugin to check if Windows is patched with MS03-007
patch
> but still looking for plugins checking for MS03-023 and MS03-26
patches
> (http://microsoft.com/technet/security/bulletin/MS03023.asp ,
> http://microsoft.com/technet/security/bulletin/MS03-026.asp)
>
> Does anybody know them already ?
Artur,
For MS03-026, use one of these:
11790 smb_nt_ms03-026.nasl - determines if the patch is installed;
requires registry access
11808 msrpc_dcom.nasl - determines if host is vulnerable; can be done
across the network
11818 smb_msblast.nasl - determines if host is infected with MS-Blast;
requires reg access
For MS03-026, you'll (or some other kind soul will) need to modify an
existing one. I would suggest using the smb_nt_ms02-026.nasl as a base.
--Keith
