I am still seeing some weirdness that doesn't make sense. I have machines that are telling me that they're vulnerable to MS03-026 but not to MS03-039 and I do not think that this is possible. I'm running msrpc_dcom2.nasl v1.22 and msrpc_dcom.nasl v1.10.
I've checked a random selection of the ones that show this and they run NT 4.0 or W2K. The MS scanner shows them as patched with 039+026 but not 026 on its own (5 of them) or it errors out with "unable to establish a null session" (1 of them). Anything I can do to help debug this? -----Original Message----- From: Renaud Deraison [mailto:[EMAIL PROTECTED] Sent: 18 September 2003 15:05 To: [EMAIL PROTECTED] Subject: msrpc_dcom2.nasl false positive anyone ? Is anyone still experiencing false positives with msrpc_dcom2.nasl rev1.20 or newer ?
