Microsoft: >> Baseline Security Analyzer Security Vulnerabilities
Microsoft Baseline Security Analyzer (MBSA) 1.2 does not correctly identify systems that have been patched but remain vulnerable to exploit until the system is rebooted, possibly giving the administrator a false sense of security.
CVSS Score
5.0
EPSS Score
0.144
Published
2004-02-10
Microsoft Baseline Security Analyzer (MBSA) 1.0 stores security scans in a known location C:\Documents and Settings\username\SecurityScans in plaintext, which could allow remote attackers to obtain sensitive information about the system via malicious active content such as ActiveX controls or Java.
CVSS Score
5.0
EPSS Score
0.062
Published
2002-12-31