Good afternoon,
My question is in regards to the "Vulnerability Release Date" for a given patch or update. In my position as InfoSec Engineer I have the responsibility of reporting on MS patches and the following categories:
Vulnerability Release Date:
Total Endpoints:
Applicable Endpoints:
Endpoints Patched:
Not Patched:
Percent Patched:
My question is why are there so many "Vulnerability Release Dates" associated with a single item and how do INOT consider half of what I'm seeing as duplicates? Using MS13-052 as an example, my patch management system is telling me there are multiple(21).NET Framework notices addressing everything from 3.5.1 (and every other .Net in between), and Silverlight, each with its own KB, and they all are for Windows7 systems (other OS versions as well).
I guess what I'm really asking is... are these all individual patches\updates or is it a single item based on OS version (x86 or x64) that addresses all of those separate issues?
Thanks.
Don