2.019 - Security-related Software Patches are not applied.

Information

Major software vendors release security patches and hot fixes to their products when security vulnerabilities are discovered. It is essential that these updates be applied in a timely manner to prevent unauthorized persons from exploiting identified vulnerabilities.

The Severity code may be elevated to a Category I if patches deemed Critical have not been applied.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Apply all Microsoft security-related patches to the Windows system.

See Also

http://iasecontent.disa.mil/stigs/zip/Oct2016/U_Windows_Vista_V6R41_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-29726r1_rule, STIG-ID|2.019, Vuln-ID|V-3828

Plugin: Windows

Control ID: de0794560ac9e2e7feca8ec8f16e0baabac20bd16e59036309d08dc452beba34