Ivanti Patch for Windows downloads the CAB file, verifies its digital signature, and then extracts the XML file to your local computer. The XML file is a digitally signed CAB file and is available on the Ivanti website. When you run Ivanti Patch for Windows (without specifying advanced file input options), the program must download a copy of this XML file so that it can identify the hotfixes that are available for each product. The WindowsPatchData.zip replaces the hf7b.xml used by previous patch scan engine versions and is used for the following Product versions: The data definition file, which is contained on the console in a secured file named WindowsPatchData.zip, is created and hosted by Ivanti. Cross references to the Common Vulnerabilities and Exposures (CVE) database hosted by (CVEID).Related Microsoft Knowledge Base article numbers.Information about which patches replace which other patches.Registry changes that were applied by the hotfix installation package.Files in each hotfix package and their file versions.The data file contains security bulletin name and title, and detailed data about product-specific security hotfixes, including: The Ivanti patch scan engine uses a data definition file that contains information about which security hotfixes are available for each product. The Ivanti Patch for Windows scan engine performs security patch assessment against a variety of Windows-based operating systems and products from Microsoft and other product 3rd party vendors.
To understand the basics of how the scan engine works in our products, please see the following information from the online Help system Patch Scanning Overview The purpose of this article is to explain how patch scan detection works in Shavlik Protect, Ivanti Patch for Windows Servers and patch scan SDK.
0 kommentar(er)
