We help IT Professionals succeed at work.

Windows Internal Database

ManieyaK_
ManieyaK_ asked
on
Got a hit on our vulnerability scan this month, MS15-058, it's referring to WID used by our WSUS.  It's saying the current version (2014.120.2000.8) should be (2014.120.2269.0) is there anyway to update this, or does WSUS itself need to be updated?
Comment
Watch Question

Qlemo"Batchelor", Developer and EE Topic Advisor
Top Expert 2015

Commented:
I cannot see that security bulletin being related to WID at all, only to SQL Server. WID does not provide a way to remote execute SQLs, so the vulnerability cannot apply IMO.
If there is really any need to update WID, it get's difficult, because it can only be patched together with the product using it: WSUS or WIndows Server.
Technical Lead - Network Security
Commented:
So MS15-058 is explained here: https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-058 and in the bulletin it lists each server and the fix for that server so I can't really answer your question specifically because you didn't specify which server is affected, but you dont really need to list that, just go to that link, look up the affected server, find the fix and then fix it.
ManieyaK_CSSP

Author

Commented:
I've been to the link & followed the direction for our Server version (SQL 2014) on Server 2016.  3045324 is the one related to us, downloaded & attempted to install update (Security Update for SQL Server 2014 RTM (KB3045324)), but it doesn't detect any instances so there's nothing it can update.
Nathan HawkinsTechnical Lead - Network Security

Commented:
So at this point, I think you have done your due diligence. Typically in SIEMs you can update the alert it created as "corrected/remediated" and this should disable the alert at this point.