Microsoft fixes month-old WSUS patch snafu
Corrects latest update gaffe plaguing business users
The hotfix, which Microsoft outlined in a support document published Wednesday, addresses a snafu first reported by the company's WSUS program manager, Cecilia Cole, three weeks ago.
At the time, Cole said that PCs with Office 2003, or components of that version of the application suite, were unable to retrieve updates from their designated WSUS servers because of an unspecified bug.
The WSUS problem was the second in two weeks with one of Microsoft's patching mechanisms. In mid-June, some corporations running System Center Configuration Manager 2007 (ConfigMgr) were unable to push patches to end users' machines. In both cases, a June update to Office 2003 Service Pack 1 was involved, Microsoft admitted. But it offered no further details.
Last week, in fact, a Microsoft spokesman said it was "premature" to say that the WSUS problem was related to a ConfigMgr glitch.
In yesterday's support document, Microsoft acknowledged that the WSUS bug was rooted in the Office 2003 update, but it didn't provide details. "This problem occurs because a recent revision to an Office 2003 Service Pack 1 update causes some WSUS 3.0 servers to incorrectly synchronize the revised update with the update's approvals," read the document. "When the affected client computers communicate with such a server, the Web service is unable to process the approvals. Therefore, the detection is unsuccessful."
Microsoft did not immediately reply to a request for more information about a possible link between the WSUS and ConfigMgr troubles.
However, the company did say it is still working on delivering the fix through the normal Windows Update and WSUS channels; currently, the patch is available only as a manual download.
"When released through WU/WSUS, it will be marked as a mandatory update, which means it will appear in the Updates/WSUS Updates node of the Admin console, and will be auto-approved by default," warned Marc Shepard, lead program manager, in an entry posted today to the WSUS team's blog.
Read more about Security in Computerworld's Security Topic Center.
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- The 12 PCI DSS 3.0 requirements addressed by Peer 1 Hosting This handy quick reference outlines the 12 PCI DSS 3.0 requirements, who needs to be compliant and how Alert Logic solutions address the...
- Defense Throughout the Vulnerability Life Cycle This whitepaper provides insight into how to leverage threat and log management technologies to protect your IT assets throughout their vulnerability life cycle.
- Mobile Policy Checklist Here's what to consider when putting together a mobile policy designed to support a highly productive workforce.
- Securing BYOD Mobile computing is becoming so ubiquitous that people no longer bat an eye seeing someone working two devices simultaneously. Individuals and organizations are...
- Live Webcast On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy...
- Live Webcast Endpoint Backup & Restore: Protect Everyone, Everywhere Arek Sokol from the bleeding-edge IT team at Genentech/Roche explains how he leverages cross-platform enterprise endpoint backup in the public cloud as part...
- Streamline Software Asset Management, Compose a software Management Symphony Keeping track of your organization's software is easy with effective software management solutions from CDW. View the videos in our software solutions channel
- Druva inSync: Endpoint Data Protection & Governance CLICK HERE to watch this video about protecting corporate data on laptops and mobile devices, sponsored by Druva. All Security White Papers | Webcasts