Updates not appearing from Patch Tuesday (14th Oct) on WSUS ver 2 "Simon Gronow" <srg[ at ]babcom.net.au> 10/19/2008 6:16:14 AM Hi Guys, we have three WSUS servers a v2 and 2 x v3. We noticed that on Patch Tuesday (14th Oct) or 2 x v3's reported updates, but our V2 server did not. Except for Defender and 1 Active Directory Patch for 2000. All the updates selected between the 3 servers are the same. Any one else got this? or is it time to upgrade to v3 Thanks Rgds Simon.

Re: Updates not appearing from Patch Tuesday (14th Oct) on WSUS ver 2 "Lawrence Garvin" <lawrence[ at ]nospam> 10/19/2008 2:01:23 PM "Simon Gronow" <srg[ at ]babcom.net.au> wrote in message news:%23vU9uIbMJHA.3496[ at ]TK2MSFTNGP04.phx.gbl... [Quoted Text] > we have three WSUS servers a v2 and 2 x v3. > > We noticed that on Patch Tuesday (14th Oct) or 2 x v3's reported updates, > but our V2 server did not. Except for Defender and 1 Active Directory > Patch for 2000. > > All the updates selected between the 3 servers are the same. > > Any one else got this? > > or is it time to upgrade to v3 Well... it's been "time to upgrade" for over a year now, but that's not likely the cause of this issue. Note: Yes -- it is *possible* that content might not have been published to the v2 servers yet -- but not likely. Is the v2 server synchronizing direct from Microsoft, or is it a downstream server from one of the v3 servers? When was the last =successful= synchronization on your v2 server. What are the actual products/classifications selected on the v2 server (if it's not a replica). Can you give a complete list of the updates that are missing from the v2 server? Does the v2 server connect to its upstream server through a proxy and/or firewall? Are there any entries in the Application Event Log of the v2 server that would be related? What entries are in the SoftwareDistribution.log for [a] the most recent successful synchronization? [b] the most recent (failed?) synchronization? -- Lawrence Garvin, M.S., MCITP(x2), MCTS(x5), MCP(x7), MCBMSP Principal/CTO, Onsite Technology Solutions, Houston, Texas Microsoft MVP - Software Distribution (2005-2009) MS WSUS Website: http://www.microsoft.com/wsus My Websites: http://www.onsitechsolutions.com; http://wsusinfo.onsitechsolutions.com My MVP Profile: http://mvp.support.microsoft.com/profile/Lawrence.Garvin

Re: Updates not appearing from Patch Tuesday (14th Oct) on WSUS ver 2 "Simon Gronow" <srg[ at ]megabus.com.au> 10/19/2008 7:28:40 PM Hi Lawrence Thanks for your help See below for the Answer to your questions Is the v2 server synchronizing direct from Microsoft, or is it a downstream server from one of the v3 servers? Direct from Microsoft When was the last =successful= synchronization on your v2 server. Every morning at 5am and I have forced a sync manually What are the actual products/classifications selected on the v2 server (if it's not a replica). Products = All O/s, all Ms Office, and All Classifications Can you give a complete list of the updates that are missing from the v2 server? Here is the list of updates that our WSUS3 server got but so far have not seen on v2 New Update Alert The following 59 new updates have been synchronized to SERVER since Tuesday, October 14, 2008 7:36 PM (GMT). Critical and Security Updates Security Update for Microsoft Office 2002 (KB956464) A vulnerability exists in Microsoft Office XP that could allow malicious script to run when you click a hyperlink. This update resolves that vulnerability. Security Update for Microsoft Excel 2002 (KB955464) A security vulnerability exists in Microsoft Excel 2002 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. Security Update for Microsoft Office Excel 2003 (KB955466) A security vulnerability exists in Microsoft Office Excel 2003 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. Security Update for Microsoft Office Excel 2007 (KB955470) A security vulnerability exists in Microsoft Office Excel 2007 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. Update for Microsoft Office Outlook 2007 Junk Email Filter (KB957258) This update provides the Junk E-mail Filter in Microsoft Office Outlook 2007 with a more current definition of which e-mail messages should be considered junk e-mail. Update for Microsoft Office Outlook 2003 Junk Email Filter (KB957257) This update provides the Junk E-mail Filter in Microsoft Office Outlook 2003 with a more current definition of which e-mail messages should be considered junk e-mail. Security Update for 2007 Microsoft Office System (KB955936) A security vulnerability exists in the 2007 Microsoft Office system and the Microsoft Office Compatibility Pack that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. Security Update for Excel Services in Microsoft Office SharePoint Server 2007 (KB955937), 32-bit Edition A security vulnerability exists in Excel Services in Microsoft Office SharePoint Server 2007, 32-bit Edition, that could allow arbitrary code to run when a maliciously modified file is opened on the server. This update resolves that vulnerability. Security Update for Excel Services in Microsoft Office SharePoint Server 2007 (KB955937), 64-bit Edition A security vulnerability exists in Excel Services in Microsoft Office SharePoint Server 2007, 64-bit Edition, that could allow arbitrary code to run when a maliciously modified file is opened on the server. This update resolves that vulnerability. Security Update for Microsoft Office Excel Viewer 2003 (KB955468) A security vulnerability exists in Microsoft Office Excel Viewer 2003 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. Security Update for Microsoft Office Excel Viewer (KB955935) A security vulnerability exists in Microsoft Excel Viewer that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability. Security Update for Windows 2000 (KB954211) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 (KB954211) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 for Itanium-based Systems (KB954211) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 x64 Edition (KB954211) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows XP (KB954211) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows 2000 (KB951071) A security issue has been identified that could allow an unauthenticated remote attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows 2000 (KB953155) A security issue has been identified that could allow an unauthenticated remote attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 (KB953155) A security issue has been identified that could allow an unauthenticated remote attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 for Itanium-based Systems (KB953155) A security issue has been identified that could allow an unauthenticated remote attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 x64 Edition (KB953155) A security issue has been identified that could allow an unauthenticated remote attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows XP (KB953155) A security issue has been identified that could allow an unauthenticated remote attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 (KB956803) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 for Itanium-based Systems (KB956803) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 x64 Edition (KB956803) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows XP (KB956803) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows 2000 (KB957280) A security issue has been identified in Windows Active Directory that could allow an attacker to compromise your Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 (KB956841) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 for Itanium-based Systems (KB956841) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 x64 Edition (KB956841) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows XP (KB956841) A security issue has been identified that could allow an authenticated local attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows 2000 (KB957095) A security issue has been identified that could allow an authenticated remote attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 (KB957095) A security issue has been identified that could allow an authenticated remote attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 for Itanium-based Systems (KB957095) A security issue has been identified that could allow an authenticated remote attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows Server 2003 x64 Edition (KB957095) A security issue has been identified that could allow an authenticated remote attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Security Update for Windows XP (KB957095) A security issue has been identified that could allow an authenticated remote attacker to compromise your Microsoft Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 5.01 Service Pack 4 (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 6 for Windows Server 2003 (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 6 for Windows Server 2003 for Itanium-based Systems (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 6 for Windows Server 2003 x64 Edition (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 6 for Windows XP (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 6 Service Pack 1 (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 7 Dynamic Installer for Windows Server 2003 (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 7 Dynamic Installer for Windows Server 2003 for Itanium-based Systems (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 7 Dynamic Installer for Windows Server 2003 x64 Edition (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 7 Dynamic Installer for Windows XP (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 7 Dynamic Installer for Windows XP x64 Edition (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 for Itanium-based Systems (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 x64 Edition (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for Internet Explorer 7 for Windows XP (KB956390) Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this item, you may have to restart your computer. Other Updates Windows Malicious Software Removal Tool - October 2008 (KB890830) - IE Version After the download, this tool runs one time to check your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps remove any infection that is found. If an infection is found, the tool will display a status report the next time that you start your computer. A new version of the tool will be offered every month. If you want to manually run the tool on your computer, you can download a copy from the Microsoft Download Center, or you can run an online version from microsoft.com. This tool is not a replacement for an antivirus product. To help protect your computer, you should use an antivirus product. Windows Malicious Software Removal Tool - October 2008 (KB890830) After the download, this tool runs one time to check your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps remove any infection that is found. If an infection is found, the tool will display a status report the next time that you start your computer. A new version of the tool will be offered every month. If you want to manually run the tool on your computer, you can download a copy from the Microsoft Download Center, or you can run an online version from microsoft.com. This tool is not a replacement for an antivirus product. To help protect your computer, you should use an antivirus product. Windows Malicious Software Removal Tool x64 - October 2008 (KB890830) After the download, this tool runs one time to check your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps remove any infection that is found. If an infection is found, the tool will display a status report the next time that you start your computer. A new version of the tool will be offered every month. If you want to manually run the tool on your computer, you can download a copy from the Microsoft Download Center, or you can run an online version from microsoft.com. This tool is not a replacement for an antivirus product. To help protect your computer, you should use an antivirus product. Cumulative Security Update for ActiveX Killbits for Windows 2000 (KB956391) Security issues have been identified in ActiveX controls that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for ActiveX Killbits for Windows Server 2003 (KB956391) Security issues have been identified in ActiveX controls that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for ActiveX Killbits for Windows Server 2003 for Itanium-based Systems (KB956391) Security issues have been identified in ActiveX controls that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for ActiveX Killbits for Windows Server 2003 x64 Edition (KB956391) Security issues have been identified in ActiveX controls that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Cumulative Security Update for ActiveX Killbits for Windows XP (KB956391) Security issues have been identified in ActiveX controls that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Does the v2 server connect to its upstream server through a proxy and/or firewall? No, just a normal Natted Server directly through our Router to MS - Same as the WSUS 3 servers Are there any entries in the Application Event Log of the v2 server that would be related? What entries are in the SoftwareDistribution.log for [a] the most recent successful synchronization? [b] the most recent (failed?) synchronization? I checked the event logs and it shows a sucessful sync over the last 10 days. I have also rebooted the server too just to be sure. Rgds Simon. "Lawrence Garvin" <lawrence[ at ]nospam> wrote in message news:OgZCtMfMJHA.260[ at ]TK2MSFTNGP05.phx.gbl... [Quoted Text] > "Simon Gronow" <srg[ at ]babcom.net.au> wrote in message > news:%23vU9uIbMJHA.3496[ at ]TK2MSFTNGP04.phx.gbl... > >> we have three WSUS servers a v2 and 2 x v3. >> >> We noticed that on Patch Tuesday (14th Oct) or 2 x v3's reported updates, >> but our V2 server did not. Except for Defender and 1 Active Directory >> Patch for 2000. >> >> All the updates selected between the 3 servers are the same. >> >> Any one else got this? >> >> or is it time to upgrade to v3 > > Well... it's been "time to upgrade" for over a year now, but that's not > likely the cause of this issue. > > Note: Yes -- it is *possible* that content might not have been published > to the v2 servers yet -- but not likely. > > Is the v2 server synchronizing direct from Microsoft, > or is it a downstream server from one of the v3 servers? > > When was the last =successful= synchronization on your v2 server. > > What are the actual products/classifications selected on the v2 server (if > it's not a replica). > > Can you give a complete list of the updates that are missing from the v2 > server? > > Does the v2 server connect to its upstream server through a proxy and/or > firewall? > > Are there any entries in the Application Event Log of the v2 server that > would be related? > > What entries are in the SoftwareDistribution.log for > [a] the most recent successful synchronization? > [b] the most recent (failed?) synchronization? > > > -- > Lawrence Garvin, M.S., MCITP(x2), MCTS(x5), MCP(x7), MCBMSP > Principal/CTO, Onsite Technology Solutions, Houston, Texas > Microsoft MVP - Software Distribution (2005-2009) > > MS WSUS Website: http://www.microsoft.com/wsus > My Websites: http://www.onsitechsolutions.com; > http://wsusinfo.onsitechsolutions.com > My MVP Profile: http://mvp.support.microsoft.com/profile/Lawrence.Garvin >

Re: Updates not appearing from Patch Tuesday (14th Oct) on WSUS ver 2 DaveMills <DaveMills[ at ]newsgroup.nospam> 10/20/2008 8:50:04 PM My WSUS 2 server download about 80 update on 14/Oct. Not all your listed ones were there by some are. The next 2 in particular [Quoted Text] > Security Update for Microsoft Office Excel 2003 (KB955466) > A security vulnerability exists in Microsoft Office Excel 2003 that >could allow arbitrary code to run when a maliciously modified file is >opened. This update resolves that vulnerability. > > > Security Update for Microsoft Office Excel 2007 (KB955470) > A security vulnerability exists in Microsoft Office Excel 2007 that >could allow arbitrary code to run when a maliciously modified file is >opened. This update resolves that vulnerability. > > -- Dave Mills There are 10 types of people, those that understand binary and those that don't.

Re: Updates not appearing from Patch Tuesday (14th Oct) on WSUS ver 2 "Simon Gronow" <srg[ at ]babcom.net.au> 10/22/2008 10:07:02 AM It's funny. I added another product to our WSUS v2 server today and like magic it started to sync with updates very funny, but it's working Rgds Simon. "DaveMills" <DaveMills[ at ]newsgroup.nospam> wrote in message news:ojrpf4pmvmq49qja1fqou8liaia4mmv1d1[ at ]4ax.com... [Quoted Text] > My WSUS 2 server download about 80 update on 14/Oct. Not all your listed > ones > were there by some are. The next 2 in particular > > >> Security Update for Microsoft Office Excel 2003 (KB955466) >> A security vulnerability exists in Microsoft Office Excel 2003 that >>could allow arbitrary code to run when a maliciously modified file is >>opened. This update resolves that vulnerability. >> >> >> Security Update for Microsoft Office Excel 2007 (KB955470) >> A security vulnerability exists in Microsoft Office Excel 2007 that >>could allow arbitrary code to run when a maliciously modified file is >>opened. This update resolves that vulnerability. >> >> > -- > Dave Mills > There are 10 types of people, those that understand binary and those that > don't.