Trend Micro CSM for SMB Vulnerability scan issue?

Do any of you folks have any familiarity with this product?

I've got two machines that are popping up in the vulnerability report
for a patch that is 3 years old now. I know for a fact both of the
machines (my own machine) and a newly deployed machine have this patch
installed.

Trend is giving me a Critical Threat Level for these (3 bars).

This is the vulnerability:
http://www.microsoft.com/technet/security/bulletin/MS05-004.mspx

I even re-applied the patches via a downloadable executable and re-
scanned the machines and the report doesn't change.

What's odd though is that none of the other machines have this
problem, and they are all deployed via the same Windows XP SP2 CD with
connection to my WSUS 3 server.

I called Trend Micro and they said that the vulnerability scan checks
the windows version number to assess threats. But this didn't make
sense as she went on to state that if the vulnerability patch was in a
service pack or roll up that Trend Micro doesn't see it as applied.

-Ryan

Ryan
Fri Apr 04 09:49:55 PDT 2008

Nobody else has come across this?

I had a third machine pop up, but that one was a missing patch. Once
it was applied that machine dropped off the list. The other two (mine
and another newer workstation) still show up, even though these
patches are long applied.

Henrik
Fri Apr 04 10:29:17 PDT 2008

What does WSUS, applied or not applied?
If your using WSUS, trust It all the way. You are only creating double work
with this ghost chasing. ;-)
MS stands for trust worthy computing so you made a good choice to step up to
WSUS3. :-)
--
Henrik Arenblad, MCP SBS,


"Ryan" <mindflux98@gmail.com> wrote in message
news:f3bad1e8-4ba9-49e3-a18c-6eb1a456044b@a70g2000hsh.googlegroups.com...
> Nobody else has come across this?
>
> I had a third machine pop up, but that one was a missing patch. Once
> it was applied that machine dropped off the list. The other two (mine
> and another newer workstation) still show up, even though these
> patches are long applied.

Ryan
Fri Apr 04 12:58:33 PDT 2008

On Apr 4, 12:29 pm, "Henrik \(Hear\)" <hea...@remove-this-hotmail.com>
wrote:
> What does WSUS, applied or not applied?
> If your using WSUS, trust It all the way. You are only creating double work
> with this ghost chasing. ;-)
> MS stands for trust worthy computing so you made a good choice to step up to
> WSUS3. :-)
> --

Henrik,

I'm running WSUS3 SP1. According to WSUS the patches are applied.
That's why I am baffled.

Henrik
Fri Apr 04 13:19:40 PDT 2008

As I wrote, you should trust WSUS.
Dont mess up you everyday work with ghost chases and thefore loosing time.
Trust WSUS and stick to one product that does the job and have an easier day
:-) .
--
Henrik Arenblad, MCP SBS,


"Ryan" <mindflux98@gmail.com> wrote in message
news:e525f60d-5928-4837-bb95-0aaf25e50cfa@t54g2000hsg.googlegroups.com...
> On Apr 4, 12:29 pm, "Henrik \(Hear\)" <hea...@remove-this-hotmail.com>
> wrote:
>> What does WSUS, applied or not applied?
>> If your using WSUS, trust It all the way. You are only creating double
>> work
>> with this ghost chasing. ;-)
>> MS stands for trust worthy computing so you made a good choice to step up
>> to
>> WSUS3. :-)
>> --
>
> Henrik,
>
> I'm running WSUS3 SP1. According to WSUS the patches are applied.
> That's why I am baffled.
>