| CVE-2020-0744 and CVE-2019-0765 [message #147760] |
Wed, 18 March 2020 04:53  |
erictsang
Messages: 4
Registered: March 2020
|
|
|
|
Hi,
I have 2 issues that looking for help.
1. CVE-2020-0744
I have patch installed for this but after full scan languard still prompts me as low risk, is there a bug again?
2. CVE-2019-0765
I submitted a request to support, they provided me a way to ignore this in rule manager, I have done it.
But when I generate a vscan report, it still show me this vulnerability as high risk. I need a clean report
for Audit, may I know how can I ignore this in vscan report?
|
|
|
|
| Re: CVE-2020-0744 and CVE-2019-0765 [message #147766 is a reply to message #147760] |
Wed, 18 March 2020 15:57  |
rsbomar
Messages: 12
Registered: March 2020
|
|
|
|
|
Have you checked your devices to see what version of comctl32.dll you have installed. Check the date/time and version of the file and post it here. I have the same problem but I suspect it is a problem with Microsoft Updates. My comctl32.dll is dated 9/15/2018 and has a file version of 5.82.1776.1131 and a product version of 10.0.17763.1131.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| Re: CVE-2020-0744 and CVE-2019-0765 [message #147876 is a reply to message #147840] |
Fri, 27 March 2020 20:55 |
rsbomar
Messages: 12
Registered: March 2020
|
|
|
|
|
Can someone from GFI please inform us what causes CVE-2020-0744 to fail? If you look at the information on that CVV it points to Microsoft support site that shows the security patch KB4537764 fixes this issue. Well my server has KB4537764 installed but my server still reports this vulnerability.
|
|
|
|
|
|
Members
Search
Help
Register
Login
Home
