Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Duplicate patched programs and a bug

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
PSI

This thread has been marked as locked.
sanderl Duplicate patched programs and a bug
Member 19th May, 2010 12:45
Ranking: 0
Posts: 17
User Since: 18th Sep, 2008
System Score: N/A
Location: N/A
Is it possible to hide duplicate patched programs?
For example: in my list of patched programs 'CAPICOM 2.x' is mentioned 4 times. Isn't it possible to merge them into one item?

Also a bug report:
In the list with patched programs:
-click the suggest link on the bottom
-suggest a program
-press OK
-click the 'browse' button in the suggest dialog
-notice the suggest screen first resizes... a second click does open the browse dialog.

This user no longer exists RE: Duplicate patched programs and a bug
Member 19th May, 2010 12:54
on 19th May, 2010 12:45, sanderl wrote:
in my list of patched programs 'CAPICOM 2.x' is mentioned 4 times.


Hi,
If you can post the path to all 4 entries, I can correct the rules so we no longer have multiple detection. This problem can sometimes occur with old versions on your disk, backup drives, etc.
If you post the paths I can correct any eventual problems with the rules, or at least tell you what's causing the multiple detection.

(unknown source)

Also a bug report:


Thank you for your report. It'll be forwarded to our developers.
Was this reply relevant?
+0
-0
sanderl RE: Duplicate patched programs and a bug
Member 19th May, 2010 13:04
Score: 0
Posts: 17
User Since: 18th Sep 2008
System Score: N/A
Location: N/A
Last edited on 19th May, 2010 13:09
on 19th May, 2010 12:54, wrote:
If you can post the path to all 4 entries, I can correct the rules so we no longer have multiple detection. This problem can sometimes occur with old versions on your disk, backup drives, etc.
If you post the paths I can correct any eventual problems with the rules, or at least tell you what's causing the multiple detection.


These are all duplicates on my system:

Akamai Download Manager ActiveX Control 2.x
C:\Windows\Downloaded Program Files\Manager.exe
C:\Windows\Downloaded Program Files\DownloadManagerV2.ocx

ATI Catalyst Control Center 2.x
C:\Windows\assembly\GAC_MSIL\CCC\2.0.0.0__90ba9c70 f846762e\CCC.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

CAPICOM 2.x
C:\Program Files\Microsoft CAPICOM 2.1.0.2\Lib\X86\capicom.dll
C:\Windows\System32\capicom.dll
C:\Program Files\Microsoft SDKs\Windows\v6.0A\bin\capicom.dll
C:\Program Files\Common Files\microsoft shared\CAPICOM\CapiCom.dll

Defraggler 1.x
C:\Program Files\Defraggler\df.exe
C:\Program Files\Defraggler\Defraggler.exe

GameSpy Arcade 2.x
C:\Program Files\GameSpy Arcade\Aphex.exe
C:\Program Files\GameSpy Arcade\ArcRes.dll

Google Gears 0.x
C:\Users\Gast\AppData\Local\Google\Chrome\Applicat ion\4.1.249.1045\gears.dll
C:\Users\sander\AppData\Local\Google\Chrome\Applic ation\6.0.401.1\gears.dll
C:\Users\sander\AppData\Local\Google\Chrome\Applic ation\5.0.396.0\gears.dll
C:\Users\Gast\AppData\Local\Google\Chrome\Applicat ion\4.1.249.1064\gears.dll

Sun Java JRE 1.6.x / 6.x
C:\Windows\System32\java.exe
C:\Program Files\Java\jre6\bin\java.exe

Windows Live Sync 14.x
C:\Program Files\Windows Live\Sync\WindowsLiveSync.Resource.dll
C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe


o, just noticed:
CAPICOM 2.1.0.2
C:\Program Files\Microsoft CAPICOM 2.1.0.2\Lib\X86\capicom.dll
C:\Program Files\Microsoft SDKs\Windows\v6.0A\bin\capicom.dll
C:\Program Files\Common Files\microsoft shared\CAPICOM\CapiCom.dll
CAPICOM 2.0.0.3
C:\Windows\System32\capicom.dll

And Gears is also due to multiple versions...
Was this reply relevant?
+0
-0
Maurice Joyce RE: Duplicate patched programs and a bug
Handling Contributor 19th May, 2010 13:09
Score: 11743
Posts: 9,000
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Last edited on 19th May, 2010 13:28
Withdrawn - Emil on the case!

Emil:
Is it really a bug? I believe this sequence of events is incorrect to suggest a programme.

In the list with patched programs:
-click the suggest link on the bottom
-suggest a program
-press OK
-click the 'browse' button in the suggest dialog
-notice the suggest screen first resizes... a second click does open the browse dialog.

Should it not be this which works perfectly?

1. Click on the suggest link at the bottom.
2. Click the BROWSE button.
3. Navigate to the file to suggest & insert it.
4. Click SUGGEST A PROGRAM



--
Maurice

Windows 7 SP1 64 Bit OS
HP Intel Pentium i7
IE 11 for Windows 7 SP1
16GB RAM
Was this reply relevant?
+0
-0
This user no longer exists RE: Duplicate patched programs and a bug
Member 19th May, 2010 14:01
Hi,

Could you please try rescanning? I've updated our rules, so hopefully they should all only be shown once.

@Maurice

This is probably not a bug, but we'll look into it anyway. Thanks for caring.

Hope this helps.
Was this reply relevant?
+0
-0
sanderl RE: Duplicate patched programs and a bug
Member 19th May, 2010 14:45
Score: 0
Posts: 17
User Since: 18th Sep 2008
System Score: N/A
Location: N/A
@Maurice:
This better? I thought you might understand that 'suggest a program' means all the steps required to do so:

1. Start Secunia PSI
2. Click on the patched programs tab
3. Press the suggest link in the patched programs page
4. Click browse and select a file. Now press OK in this dialog.
5. Fill in the other two textboxes
6. Press the suggest button. A message 'thank you, would you like to suggest another program' appears, press OK
7. Press the browse button. Notice the suggest screen first resizes... a second click does open the browse dialog.



@Emil:
Akamai Download Manager ActiveX Control 2.x isn't shown anymore at all
ATI Catalyst Control Center 2.x is fixed now!
CAPICOM 2.x still shows 4 entries
Defraggler 1.x isn't shown anymore at all
GameSpy Arcade 2.x is fixed now
Sun Java JRE 1.6.x / 6.x is fixed now
Windows Live Sync 14.x is fixed now


Also something else I noticed:
The .NET Framework 4.0 (C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMS vcHost.exe) is shown as '4.x' and not as 'Microsoft .NET Framework 4.x'

Was this reply relevant?
+0
-0
This user no longer exists RE: Duplicate patched programs and a bug
Member 19th May, 2010 15:32
Hi,

Could you try rescanning again? Hopefully it should be one entry per program this time.
Thanks for your cooperation.
Was this reply relevant?
+0
-0
sanderl RE: Duplicate patched programs and a bug
Member 19th May, 2010 15:47
Score: 0
Posts: 17
User Since: 18th Sep 2008
System Score: N/A
Location: N/A
Duplicates:
-Defraggler (2x)
-CAPICOM (4x)

The others are fixed! Thanks!
Was this reply relevant?
+0
-0
Anthony Wells RE: Duplicate patched programs and a bug
Expert Contributor 19th May, 2010 17:04
Score: 2445
Posts: 3,332
User Since: 19th Dec 2007
System Score: N/A
Location: N/A
Last edited on 19th May, 2010 17:05
@sanderl ,

Regarding your Google Chrome and gears under two user names :-

Gast is using a stable version of Chrome and according to Secunia Advisory 39651 version 4.1.249.1064of Chrome is "patched" , while 4.1.249.1045 is "vulnerable" . This version of Chrome should be displayed in the "insecure" tab and should be deleted - that will take one of the 4 gears with it .

Sander is using Dev channel versions and the two latest versions are the 5.x and 6.x showing . PSI does not track Beta/Dev channel versions of Chrome , so these gears entries are the only one you will see .

When Google '"silent updates" Chrome it leaves the "older" version file behind . In this case all the old "stable" versions (pre ..1064) are vulnerable and should removed . Version ...1045 is an even older version that probably was left after a "manual" install .

TiMow has an easy to follow clean up procedure in this thread

http://secunia.com/community/forum/thread/show/427...

Hope this is clear , ask if not .

Anthony


--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0
This user no longer exists RE: Duplicate patched programs and a bug
Member 20th May, 2010 09:05
on 19th May, 2010 15:47, sanderl wrote:
Duplicates:
-Defraggler (2x)
-CAPICOM (4x)


Hi,

The Defraggler duplicate should hopefully be corrected now. As for CAPICOM, there is little I can do as all the paths you posted seem to be unrelated copies (and thus actually merits 4 entries).
Thank you for calling our attention to the other double-detections.
Was this reply relevant?
+0
-0
sanderl RE: Duplicate patched programs and a bug
Member 20th May, 2010 09:29
Score: 0
Posts: 17
User Since: 18th Sep 2008
System Score: N/A
Location: N/A
Defraggler is fixed indeed! Thanks!
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability