4 Replies Latest reply on Apr 24, 2017 7:27 PM by dledoux

    Adobe Flash Player for Windows Server 2012 R2

    srs_nic Rookie

      Windows patch def 2.0.2.21.96

      windows patch def 2.0.2.21.96 db

      Asset Management 2.0.0.3

      ITScripts 4.0.72.1

       

      Nessus says I am missing patch...need version 25.0.0.127 or later   Nessus Plugin 97727,97325,97735

      need Microsoft patch 17-005(kb4010250),17-023(4014329)

       

      the only adobe flash player shavlik installed was a 2500148.   Tried to download and manually install patches and they did not take.

       

      Any suggestions?

        • 1. Re: Adobe Flash Player for Windows Server 2012 R2
          cwinning CommunityTeam

          Hello,

           

          MS17-005 was replaced by MS17-023, which is replaced by MS17-AFP-04.  A typical scan from Protect would show the latest patch, MS17-AFP-04 Q4018483 and offer it for deployment.  The previous patches are no longer needed at this point since the latest supersedes them.  Keep in mind, Nessus is a vulnerability tool and will often not have the same logic as a patching tool like Protect.

           

          Update your data, Help - Refresh Files then scan the target. (use a Security Patch scan template)  Does MS17-AFP-04 Q4018483 show missing?  If yes, deployment and then verify it's installed.  Once installed, the previous patch are no longer applicable.

           

          Thanks,

          Charles

          • 2. Re: Adobe Flash Player for Windows Server 2012 R2
            srs_nic Rookie

            I updated this morning.   Shavlik is showing that APSB17-07 was removed and APSB 17-10 (QNFP2500148) was installed.   I do not see MS17-023 or MS17-AFP-04 Q4018483...(when running the Security Patch Template) IS there a way to force it to look for that. and install. 

            • 3. Re: Adobe Flash Player for Windows Server 2012 R2
              cwinning CommunityTeam

              Hello,

               

              You can't brute force a patch install through Protect, it needs to be detected as missing.  It looks like there may be some confusion on what is installed on the target machine, what is the target OS for this machine?

               

              • APSB 17-10 (QNFP2500148) is for Flash Player released by Adobe. Adobe Security Bulletin
                • This is the latest patch.  This is a the Flash Plugin and it can be found on any OS.  This would apply to Flash Player when installed as a plugin for the various non-IE web-browsers.  And for IE for some of the older OS's
              • MS17-AFP-04 (Q4018483) is the Microsoft version:  https://support.microsoft.com/en-us/help/4018483/security-update-for-adobe-flash-player-april-11-2017
                • This is the latest patch.  This is the Flash Plugin specifically embedded in IE.  This is applicable for Adobe Flash Player if it's installed on any supported edition of Windows Server 2016, Windows Server 2012 R2, Windows Server 2012, Windows 10, Windows 10 Version 1511, Windows 10 Version 1607, Windows 8.1, or Windows RT 8.1.

               

              Thanks,

              Charles

              • 4. Re: Adobe Flash Player for Windows Server 2012 R2
                dledoux Rookie

                Same for us.  Server 2016 though.  Shavlik will not patch due to 'invalid language' which is very confusing.  If we run windows update we can see WU detect, download and apply the flash patch - then Shavlik detects the endpoint as fully patched.  This is fine for one endpoint.....but we have many more to patch.  Shavlik will not apply this patch correctly.