Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: WSUS 3.0 SP2 released - SANS Internet Storm Center SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
WSUS 3.0 SP2 released

Microsoft released SP2 for it latest and greatest version of Windows Server Update Services (WSUS).

You can find a more detailed description of the update here:

The most important feature is probably the integration with up and coming versions of Windows like 2008 R2 and Windows 7. Without WSUS support, it would be hard for many organizations to deploy these new Windows versions.

One improvement that caught my attention:

"Stability and reliability fixes are included for the WSUS server, such as support for IPV6 addresses that are longer than 40 characters."

At first, if you think about it, an IPv6 address can have up to 39 characters if you represent it as 2001:0db8:1111:2222:3333:4444:5555:6666 (8*2 digits + 7 colons). However, it is also possible to add a netmask like /128 or /64, which will exceed the size limit of 40 characters. I find little issues like this to be typical gotchas in organizations converting to IPv6.

There are no critical "must install today" features as far as I can tell in this release. Test it carefully and deploy once ready.

Johannes B. Ullrich, Ph.D.
SANS Technology Institute

I will be teaching next: Application Security: Securing Web Apps, APIs, and Microservices - SANS London June 2022


4479 Posts
ISC Handler
Aug 26th 2009
And what MS doesn't seem to tell you is that while the Microsoft Report Viewer Redistributable (2008) is a prerequisite if for use with the WSUS console to use drill down reports, is that this is not upgraded from the 2005 version previously used. Nor does the redistributable download upgrade the 2005 version. You must remove the 2005 version, then install the 2008 version manually.

Sign Up for Free or Log In to start participating in the conversation!