Running one of my regular windows update check shows my win7 IE11 machines as vulnerable for KB3008923 all of a sudden (patch from 2014).
Remediation center doesn't seem to think my machines are vulnerable. I just put a ticket in, possibly a rules issue, not sure yet. Just wondering if anyone else out there is seeing this?
I just checked my Win 7 x64 VM and under windows update - that patch is listed with a few others.
I am going to run through my normal Altiris/SMP patches - restart and run Win Update again.
Then I will patch all current windows patches and see if it disappears as it should.
Per our Superseded Bulletins report, it (14-080) was replaced by MS15-009 (I am sure this one has been replaced many times by now).
Thanks Gregg, I should have checked superseded. I'll reply back when I hear back on my ticket. It is weird windows prompting for this old patch suddenly unless they modified it.
Microsoft accidentally broke supercedence.
Thanks Ray - I was about to do some research and you got there first. Woody is great.
I booted up an older laptop and it does not have this patch listed as needed (yet).
My VM is still installing patches - appears windows updates are always faster through MS vs SMP :(
Another 2014 update popping up for me today in windows update, KB2987107. This one only partially superseded but compliance center doesn't think I need it. This is a "cumulative security update for Internet Explorer" that showed up after I installed cumulative update for IE this month (MS17-05-IE). Going to give it a few days to see if MS straightens it out.