Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: KB2729450 security update for .NET 2.0 SP2 not recognised

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Microsoft
And, this specific program:
Microsoft .NET Framework 2.x

This thread has been marked as resolved.
Bundaburra KB2729450 security update for .NET 2.0 SP2 not recognised
Member 14th Nov, 2012 06:06
Ranking: 0
Posts: 21
User Since: 18th Feb, 2008
System Score: 100%
Location: AU
I have downloaded and installed the latest MS fixes, including MS12-074, KB2729450 which is a security update for .NET 2.0 SP2. When installed via MS Update, there were no errors and the installation was said to be successful. I have verified, using Add/Remove Programs, Belarc Advisor, and Windows Update List (a Nirsoft program), that KB2729450 has indeed been properly installed.

My problem is that MS Update is continuing to offer me this update, and the PSI is saying that the update is missing. I have in fact re-installed it one more time, but to no avail.

Running XP SP3, supposedly fully patched. How can I stop this annoying behaviour?


Post "RE: KB2729450 security update for .NET 2.0 SP2 not recognised" has been selected as an answer.
Bundaburra RE: KB2729450 security update for .NET 2.0 SP2 not recognised
Member 14th Nov, 2012 06:31
Score: 0
Posts: 21
User Since: 18th Feb 2008
System Score: 100%
Location: AU
On looking further into this, the PSI is objecting to aspnet_wp.exe, which it is detecting as version 2.0.50727.3634, saying that this is an insecure version, and saying that the security patch KB2729450 is not installed. (As noted above, it has been installed - twice.)

I am now wondering if the update actually failed, even though it seems to be successful?
Is the above version the new one, installed by the update, or still an old one? Looking at the program's attributes, it was both created and modified on 25/12/11.
Was this reply relevant?
+0
-0
mogs RE: KB2729450 security update for .NET 2.0 SP2 not recognised
Expert Contributor 14th Nov, 2012 07:27
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
@Bundaburra

You could try running MBSA ( Microsoft Baseline Security Analyser 2.2 )....it may help you determine what's wrong......it supports XP.
Don't be put off by the introduction.....seeming to be for corporate users only...it works for private users too. I have it installed and run it as a matter of course..usually once a month on a Vista machine.
It's available from here :-
http://technet.microsoft.com/en-us/security/cc1849... FAQ's on subsequent pages.

Hope it helps.......regards...

--
Was this reply relevant?
+0
-0
Bundaburra RE: KB2729450 security update for .NET 2.0 SP2 not recognised
Member 14th Nov, 2012 09:00
Score: 0
Posts: 21
User Since: 18th Feb 2008
System Score: 100%
Location: AU
After installing the same updates on another computer and not experiencing the same problem there, I concluded that there must be something wrong with my .NET installations. I did a thorough uninstall of them using Revo, then downloaded and re-installed. After the initial install there was a raft of updates, including once again KB2729450, and after that the problem was solved. The PSI is now happy, and gave me a 100% score. I hope everything will be OK now.
Was this reply relevant?
+0
-0
mogs RE: KB2729450 security update for .NET 2.0 SP2 not recognised
Expert Contributor 14th Nov, 2012 09:20
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
@Bundaburra

Glad to read that you got the problem sorted....you might keep the MBSA link for future reference tho'.
If you wish you can close this thread by pressing Accept...that will prevent tag-on posts and reminder e mails to your inbox.

Regards...........

--
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability