RE: Missing Windows update reported as a vulnerability by TMH and Bela

if you cant find it that way
look in the av logs windows reads it first and will stop a update

"Hugo_Pt" wrote:

> Hello.
> Trend Micro Housecall reported as a vulnerability in my system the missing
> update 'Vulnerability in Microsoft JScript Could Allow Remote Code Execution
> (917344)'. See this screenshot:
> http://forum.avast.com/index.php?act...attach=185 79
> The link on Housecall report directs to the Microsoft Security Bulletin
> MS06-023, published in June 13, 2006. In the same Bulletin, under 'Affected
> components', the one that corresponds to my OS is 'Microsoft JScript 5.6 on
> Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2'.
> In Windows Control Panel>Add and Remove programs.
> I also downloaded and installed the utility 'Belarc Advisor', available in
> http://www.belarc.com/. It also detected the same vulnerability in my System:
>
> «Installed Microsoft Hotfixes
> ...
> X KB917344 on 06-08-2007 (details...) Reinstall!»
>
> I searched through all of my Windows updates installed and didn't found
> KB917344. I also went to Microsoft Update Website and it doesn't detect any
> priority update missing in my system.
>
> I don't know if i should install manually this update, alone or with
> 'Cumulative Security Update for Internet Explorer (916281)' -see Caveats in
> Microsoft Security Bulletin MS06-023. Question is, since these updates were
> published on June 2006, how do i know if i have installed a more recent
> Windows update or Windows component which replace the missing updates, and
> are they really necessary? Is there the risk that they may deactivate or
> conflict with an already installed update? Why aren't they detected as
> priority updates to download in the Microsoft Update website?