Microsoft KB Archive/914791

= Versions of Microsoft Baseline Security Analyzer that are earlier than MBSA 2.0.1 will no longer be supported after October 9, 2007 =

Article ID: 914791

Article Last Modified on 10/18/2007

-

APPLIES TO


 * Microsoft Baseline Security Analyzer 1.2

-



Important This article contains information about how to modify the registry. Make sure that you back up the registry before you modify it. Make sure that you know how to restore the registry if a problem occurs. For more information about how to back up, restore, and modify the registry, click the following article number to view the article in the Microsoft Knowledge Base:

256986 Description of the Microsoft Windows registry



INTRODUCTION
This article discusses the cessation of support for versions of the Microsoft Baseline Security Analyzer (MBSA) that are earlier than MBSA 2.0.1. For the latest information about MBSA and about a replacement for MBSA 1.2.1, visit the following Microsoft Web site:

http://www.microsoft.com/mbsa



MORE INFORMATION
After October 9, 2007, versions of MBSA that are earlier than MBSA 2.0.1 will no longer be supported by Microsoft. Additionally, the Mssecure.xml file that pre-MBSA 2.0.1 versions of MBSA use to detect security updates will not be updated after October 9, 2007. Therefore, security scans that you perform by using any pre-MBSA 2.0.1 version of MBSA will not include detection for any security bulletins that are released after this date.

Note Through October 9, 2007, you can use MBSA 1.2.1 to detect missing security updates that MBSA 1.2.1 supports. This includes any security updates that may be released on October 9, 2007.

MBSA 2.0.1 and MBSA 2.1 contain significant improvements over earlier versions of MBSA. To guarantee support for all future security bulletins, MBSA 2.0.1 is based on Microsoft Windows Server Update Services (WSUS) technology and on Microsoft Update technology. Additionally, MBSA 2.0.1 supports detection for a wider range of products. We recommend that you upgrade to MBSA 2.0.1 before October 9, 2007 for the following reasons:  The MSSecure.xml file that is used by MBSA 1.2.1 does not contain detection for several Microsoft security updates. The XML file also does not contain detection for Microsoft Office products, for Windows Internet Explorer 7, for Windows Media Player 10, for Windows Media Player 11, for the .NET Framework, for Windows Vista, or for any 64-bit Windows operating systems. MBSA 2.0.1 contains support for all mainstream Microsoft products and components, with some exceptions. For more information about supported Microsoft products and components, click the following article number to view the article in the Microsoft Knowledge Base:

895660 Microsoft Baseline Security Analyzer (MBSA) 2.0 is available

 MBSA 1.2.1 may report results that conflict with Microsoft Update and with WSUS Server. MBSA 2.0.1 is aligned with Microsoft Update and with WSUS Server to help make sure that all Microsoft tools report the same results.

Important This cessation of support for MBSA 1.2.1 and for the Mssecure.xml catalog file does not affect the following two Microsoft products, even though they are based on MBSA 1.2.1 detection technologies:
 * Microsoft Systems Management Server (SMS) 2.0 Software Update Inventory Tool
 * Microsoft SMS 2003 when it is used together with the Software Update Inventory Tool

As of June 12, 2007, the MSSecure.xml file will contain a new warning to inform customers that MBSA 1.2.1 and the MSSecure.xml catalog file that is used by MBSA 1.2.1 will no longer be publicly supported after October 9, 2007. This will cause the graphical interface (GUI) and the command-line interface (CLI) in MBSA 1.2.1 to report a critical warning that does not indicate a vulnerability on the system. This warning will be reported in the following ways.

Graphical user interface

After MBSA 1.2.1 runs a scan, a bulletin with the following title is displayed:

MBSA 1.2.1 will EXPIRE on October 9, 2007 - Upgrade Required

MBSACLI /hf mode command-line interface

The scan report will contain the following warning under the &quot;operating system&quot; section of the scanned computer:

Patch NOT Found MBSA12 914791

Warning Serious problems might occur if you modify the registry incorrectly by using Registry Editor or by using another method. These problems might require that you reinstall the operating system. Microsoft cannot guarantee that these problems can be solved. Modify the registry at your own risk.To suppress this warning, follow these steps:  Click Start, click Run, type regedit, and then click OK. Locate the following key in the registry, and then click it:

 

 On the Edit menu, point to New, click DWORD Value, and then add the following registry value:  Value name: MBSAUpgradeNeeded</li> Data type: REG_DWORD</li> Base: Hexadecimal</li> Value data: 1</li></ul> </li> Exit Registry Editor.</li></ol>

Download information
MBSA 1.2.1 and the MSSecure.xml catalog file will no longer receive updates after October 9, 2007. However, you can still access the MBSA 1.2.1 scan tool and the catalog for legacy purposes after October 9, 2007. To do this, visit the MBSA 1.2.1 legacy-tool Web site. Or visit one of the following Microsoft Web sites:

MBSA 1.2.1 English download
Download the Microsoft MBSA 1.2.1 English package now.

MBSA 1.2.1 French download
Download the Microsoft MBSA 1.2.1 French package now.

MBSA 1.2.1 German download
Download the Microsoft MBSA 1.2.1 German package now.

MBSA 1.2.1 Japanese download
Download the Microsoft MBSA 1.2.1 Japanese package now.

MSSecure.xml catalog file English download
Download the MSSecure.xml catalog file English package now.

MSSecure.xml catalog file French download
Download the MSSecure.xml catalog file French package now.

MSSecure.xml catalog file German download
Download the MSSecure.xml catalog file German package now.

MSSecure.xml catalog file Japanese download
Download the MSSecure.xml catalog file Japanese package now.

The Extended Security Update Inventory Tool will also be updated. Updates to this tool will guarantee comprehensive detection and deployment for all Microsoft security issues that are listed on the following Microsoft Web site:

http://www.microsoft.com/technet/security/current.aspx

For more information about how to upgrade MBSA, visit the following Microsoft Web site:

http://www.microsoft.com/technet/security/tools/mbsahome.mspx

For more information about how to update SMS 2003, visit the following Microsoft Web site:

http://technet.microsoft.com/en-us/sms/bb676766.aspx

For more information about how to update SMS 2.0, visit the following Microsoft Web site:

http://technet.microsoft.com/sms/bb676799.aspx

Keywords: kbtshoot kbinfo KB914791

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.