/build/static/layout/Breadcrumb_cap_w.png

OVAL question.

Is there a way to scan a group of computers for a specific vulnerability (referenced by its CVE designation)? I was thinking this would be a lightweight way to demonstrate the effectiveness of a patch that had been rolled out. thanks, Owen.

0 Comments   [ + ] Show comments

Answers (4)

Posted by: airwolf 13 years ago
Red Belt
0
I'm not heavy into the OVAL capabilities of the KBOX, but I believe it's an on/off kind of thing. You can always write a custom SQL report to show details for a specific vulnerability.
Posted by: dchristian 13 years ago
Red Belt
0
kawelea,

Unfortunately with the OVAL scans its an all or nothing.

Also remember that OVAL is very resource intensive on older machines.
Posted by: kawelea 13 years ago
Orange Belt
0
Thanks much for the replies.
Posted by: nshah 13 years ago
Red Belt
0
Another method you could use is if the vulnerability has a specific patch used to fix it, you can find the patch and add a patch label manually to it and run the detection. This will at least let you know the machines that do not have the patch(s) thus could be vulnerable.
Rating comments in this legacy AppDeploy message board thread won't reorder them,
so that the conversation will remain readable.

Don't be a Stranger!

Sign up today to participate, stay informed, earn points and establish a reputation for yourself!

Sign up! or login

Share

 
This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ