- #INTEL S 00086 DETECTION TOOL UPDATE#
- #INTEL S 00086 DETECTION TOOL PATCH#
- #INTEL S 00086 DETECTION TOOL FULL#
- #INTEL S 00086 DETECTION TOOL DOWNLOAD#
Remove old versions of tool and scriptġ0. Check if Discoverytool already exists locallyĩ. HKEY_LOCAL_MACHINE\SOFTWARE\Intel\Setup and Configuration Software\INTEL-SA-00086 Discovery Tool\System Status Check if system was previously found to be not vulnerable. Check if Discoverytool executable is foundĦ. HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0Ĥ. HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\BIOS TblOperatingsystem.Caption Like '%Windows Server 2016%') TblOperatingsystem.Caption Like '%Windows Server 2012%' Or TblOperatingsystem.Caption Like '%Windows 7%' Or '%Windows 10%' Or tblOperatingsystem.Caption Like '%Windows 8%' Or TblAssetCustom.Model Not Like '%VMware%' And (tblOperatingsystem.Caption Like '%Virtual%' And tblAssetCustom.Model 'HVM domU' And Where tsysAssetTypes.AssetTypename = 'Windows' And tblAssetCustom.Model Not Like TblAssets.AssetID = tblOperatingsystem.AssetID Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID Hit the Save & Run button to save the report. Left-click somewhere in the upper section of the page so the query applies.ĥ. Paste the SQL query (report) found in the report center at the bottom of the page, replacing the default SQL query.ģ. Open the report builder in the Lansweeper web console under Reports/Create New Report.Ģ. To add the report below to Lansweeper, do the following:ġ. You can deploy based on a selection of your choosing, we however recommend using the report listed below that will give back all Windows computers with a supported OS that are not Virtual Machines.Go to Deployment tab in the web console, select the Intel-SA-00086 package.Place the vbs file in the Packageshare\DiscoveryTool folder.
#INTEL S 00086 DETECTION TOOL DOWNLOAD#
#INTEL S 00086 DETECTION TOOL PATCH#
This deployment package will allow you to inventory all computers that are vulnerable, but it will not patch them.
#INTEL S 00086 DETECTION TOOL FULL#
Make sure to follow the full instructions found in this post to fully view the output. This installer package runs the Intel-SA-00086 vulnerability detection tool. Make sure to kill the Intel-SA-00086-console.exe task on these virtual machines. As a result running the package on a VM may cause it to hang and end up on a 'Package Timeout' error. Update 5: Updated the accompanying report with extra where clauses to prevent Xen and VMware servers from being targetedĭISCLAIMER: The Intel discovery tool has been known to hang on Virtual Machines. Click the Download Package button to download the latest version.
#INTEL S 00086 DETECTION TOOL UPDATE#
Update 7 16:25 CET: the package was updated to allow the script to run successfully in more environments and prevent package timeout issues.