- Microsoft Baseline Security Analyzer
-
Microsoft Baseline Security Analyzer
Screenshot of Microsoft Baseline Security Analyzer analysis resultDeveloper(s) Microsoft Initial release 16 August 2004[1] Stable release 2.2 / 10 August 2010[2] Operating system Windows Server 2008 R2, Windows 7, Windows Server 2008, Windows Vista, Windows Server 2003, Windows XP and Windows 2000[2] Platform IA-32 and x86-64[2] Size 1.5 ~ 1.7 MB[2] Available in English, German, French and Japanese[2] Type Computer security License Freeware Website microsoft.com/mbsa Microsoft Baseline Security Analyzer (MBSA) is a software tool released by Microsoft to determine security state by assessing missing security updates and less-secure security settings within Microsoft Windows, Windows components such as Internet Explorer, IIS web server, and products Microsoft SQL Server, and Microsoft Office macro settings. Security updates are determined by the current version of MBSA using the Windows Update Agent present on Windows computers since Windows 2000 Service Pack 3. The less-secure settings, often called Vulnerability Assessment (VA) checks, are assessed based on a hard-coded set of registry and file checks. An example of a VA might be that permissions for one of the directories in the wwwroot folder of IIS could be set at too low a level, allowing unwanted modification of files from outsiders.
Versions 1.2.1 and below run on NT4, Windows 2000, Windows XP, and Windows Server 2003, provide support for IIS versions 5 through 6, SQL Server 7 and 2000, Internet Explorer 5.01 and 6.0 only, and Microsoft Office 2000 through 2003. Security update assessment is provided by an integrated version of Shavlik's HFNetChk 3.8 scan tool. MBSA 1.2.1 was localized into English, German, French and Japanese versions and supported security assessment for any locale.
Version 2.0 retained the hard-coded VA checks, but replaced the Shavlik security assessment engine with Microsoft Update technologies which adds dynamic support for all Microsoft products supported by Microsoft Update. MBSA 2.0.1 was released to support the revised Windows Update (WU) offline scan file (WSUSSCN2.CAB). MBSA 2.1 added Vista and Windows Server 2008 support, a new Vista-styled GUI interface, support for the latest Windows Update Agent (3.0), a new Remote Directory (/rd) feature and extended the VA checks to x64 platforms.
See Also
- Belarc Advisor
- RSBAC
References
- ^ "Download Details: Microsoft Baseline Security Analyzer v1.2.1 (for IT Professionals)". Microsoft Download Center. Microsoft Corporation. http://www.microsoft.com/downloads/details.aspx?FamilyID=b13ebd6b-e258-4625-b0a3-64a4879f7798&displaylang=en. Retrieved 13 October 2009.[dead link]
- ^ a b c d e "Download Details: Microsoft Baseline Security Analyzer 2.2 (for IT Professionals)". Microsfot Download Center. Microsoft Corporation. 6 August 2010. http://www.microsoft.com/downloads/en/details.aspx?displaylang=en&FamilyID=02be8aee-a3b6-4d94-b1c9-4b1989e0900c. Retrieved 21 November 2009.
External links
- Official website
- Microsoft Office Visio 2007 Connector for the Microsoft Baseline Security Analyzer (MBSA) 2.1
Microsoft security products Numbers in brackets are the years of the initial release of the product. For Windows Windows Firewall [2001] · Baseline Security Analyzer [2004] · Malicious Software Removal Tool [2005] · Windows Defender [2005] · RootkitRevealer [2006] · Microsoft Security Essentials [2009] · Microsoft Safety Scanner [2011]For Windows Server Threat Management Gateway [1997] · Online Protection for Exchange [2007] · Unified Access Gateway [2007] · Identity Manager [2010] · Protection for Exchange Server [2010] · Protection for SharePoint Server [2010] · Protection Server Management Console [2010]OthersDiscontinued Related topics Categories:- Microsoft software
- Operating system security
- Windows-only freeware
- 2004 software
Wikimedia Foundation. 2010.