Deploy Microsoft Zero-Day Patch with a Zenith Job

by Mark Berry 7/7/2009 2:58:44 PM

Yesterday, Microsoft released this security advisory:

Vulnerability in Microsoft Video ActiveX control could allow remote code execution

That article includes a "Fix it" link that users can click on to disable the exploited ActiveX objects in Internet Explorer. The link downloads a small installer file which users can only execute if they are logged on as administrators. So deploying using that link would require that an administrator log on to each computer, including servers, and run the installer.

How can I quickly deploy this patch to all systems that I manage? I could follow the instructions in the related TechNet article to manually set up a .reg file, then deploy that with logon scripts or group policy. That article at least confirms that the fix is changing HKEY_LOCAL_MACHINE entries, so it's not user-specific. I decided instead to deploy the installer using a Zenith job. Here's how.

More...

Tags: , , ,

IT Administration

E-mail | Kick it! | DZone it! | del.icio.us
Permalink | Comments (1) | Post RSSRSS comment feed

Powered by BlogEngine.NET 1.4.5.0
Theme by Mads Kristensen. Customized by Mark Berry.

About the author

Mark Berry Mark Berry owns MCB Systems, a firm active in both IT administration and database software development.

E-mail me Send mail
`

Archive

Tags

Categories


Blogroll

Download OPML file OPML

Disclaimer

The opinions expressed herein are my own personal opinions and absolutely represent my employer's views. I'm self-employed! Please keep in mind that what worked for me or someone else may not apply to your situation. Always have a good backup, and use any information here at your own risk!

Entire contents copyright © 2010 by MCB Systems. Sign in