OVAL question.
Is there a way to scan a group of computers for a specific vulnerability (referenced by its CVE designation)? I was thinking this would be a lightweight way to demonstrate the effectiveness of a patch that had been rolled out. thanks, Owen.
0 Comments
[ + ] Show comments
Answers (4)
Please log in to answer
Posted by:
airwolf
13 years ago
I'm not heavy into the OVAL capabilities of the KBOX, but I believe it's an on/off kind of thing. You can always write a custom SQL report to show details for a specific vulnerability.
Posted by:
dchristian
13 years ago
kawelea,
Unfortunately with the OVAL scans its an all or nothing.
Also remember that OVAL is very resource intensive on older machines.
Unfortunately with the OVAL scans its an all or nothing.
Also remember that OVAL is very resource intensive on older machines.
Posted by:
nshah
13 years ago
Another method you could use is if the vulnerability has a specific patch used to fix it, you can find the patch and add a patch label manually to it and run the detection. This will at least let you know the machines that do not have the patch(s) thus could be vulnerable.
Rating comments in this legacy AppDeploy message board thread won't reorder them,so that the conversation will remain readable.