Tenable is showing all are machines missing MS16-095 (plugin 92819). But Shavlik patched all computers for this vulnerability the day after patch Tuesdsay (8/10/16). However, from what I’ve been able to discover, the KB3175443 patch that we rolled out to everyone after Patch Tuesday has since by modified by Shavlik and the new version is needed to patch all required files.
This is the file in question:
C:\Windows\system32\mshtml.dll has not been patched. Remote version : 11.0.9600.18426 Should be : 11.0.9600.18427
Here’s what I did to verify this issue. On my Shavlik console, I deleted the existing file and downloaded the same file again and it indeed has a newer date and a different size. I manually checked the file version on the client, manually uninstalled the patch, and manually reapplied the patch. That fixed the issue. So the question is, what could we do to fix this?