-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello flymolon,
On 10/31/2014 08:00 AM, flymolon wrote: > In fact, my MS-SQL Server version is 9.0.1399.0 and it's been reported > vulnerable. > The vulnerability as I know is MS08-040. > The plugin gb_ms08-040.nasl is for it but it detect in registry way, can it > be updated too? > Since we can detect the version without credentials now, guess there're more > NVTs like gb_ms08-040.nasl need to be updated. We can develop remote MS SQL bulletin NVTs, only if the main MS SQL version gets updated after the ms patch. Most of the time it will update only the file version not the MS SQL version. We will verify once again on the above scenario and if possible we will develop remote NVTs for MS SQL bulletins. Please let us know, if we miss any thing. Thanks for pointing out. Thanks! Veerendra GG -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEcBAEBAgAGBQJUfBzZAAoJEFdbOg70fJiaOGQH/i15rfFg7eb4rELttJNE3t6g lEQojqainGvS3BzQPmFJE8hZ3x2qsuJvfgfe7VEbGQrSZXI5GoDcXMoQsLIRajFr kZVHjyg68mEJv0R9s6gzdPtaij32kKneoio73W3Ys0YWLPw8ANhrBm2C1t8Qbcwe pRIaZzzXBGJXyi4d+XL5sJjTJjHSO0pNSri8Nmg8n5qvNSYf80aTOtODL2TGJz1g vC4URTiRj6quBeOrNKyFFKZKpr59hdkeJWHM0YRIpaeQSz9r48MZ6JfH1OVLT/j0 rlG6wzmf89ZLVQ37G9Sj5OAMgvqVDwWfNVKObyBtnXfSE9uH1NBRtkVyO4UEPUA= =vOI/ -----END PGP SIGNATURE----- _______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
