Quote:
Originally Posted by Simon336697
Hi Lery and everyone.
Lery I took your advice and checked the rule.
The rule is checking for the existence of a particular version of gdiplus.dll.
Let's say it is looking for version 8.1
In Altiris, machines that have the patch installed are reporting as vulnerable, BUT they DO have the patch installed. The problem is, is that the version of gdiplus.dll they have is an older version eg.version 7.8, than what the rule is looking for.
So it is trying to keep on installing the patch and failing.
I just dont know what to do from here.
There are so many patches and multiple patches it seems install there own version of gdiplus.dll.
Calling on you gurus who have struck similar issues before.
Really appreciate all your expertise.
|
The way I understand your reply, you have an older version of a .dll file that the rule is looking for. So then yes you are vulnerable? Altiris gets the rule definition from Microsoft, so if Microsoft says you should have version X or higher of a file, and you do not, then we will flag you as vulnerable.
Now that you understand how to correctly evaluate a rule on a client machine, I would recommend running through the combined Patch Management Fixes KB. Located here
https://kb.altiris.com/article.asp?article=46144&p=1
Since PM 6.x was released Altiris put out a lot of different little hot fixes and patches. This combined KB article contains a single executable to apply them all. The fixes are also listed in the article. There is a known issue in reporting discrepencies that might help you as well.
