Microsoft Baseline Security Analyzer

Microsoft Baseline Security Analyzer (MBSA) is an easy-to-use tool designed for the IT professional that helps small- and medium-sized businesses determine their security state in accordance with Microsoft security recommendations and offers specific remediation guidance. Improve your security management process by using MBSA to detect common security misconfigurations and missing security updates on your computer systems.

MBSA 2.1

MBSA 2.1 is the latest version of Microsoft’s free security and vulnerability assessment scan tool for administrators, security auditors, and IT professionals.

MBSA 2.1 offers Windows Vista and Windows Server 2008 compatibility, a revised user interface, 64-bit support, improved Windows Embedded support, and compatibility with the latest versions of the Windows Update Agent (WUA) based on Microsoft Update.

MBSA 2.1 is also compatible with Microsoft Update, Windows Server Update Services 2.0 and 3.0, the SMS Inventory Tool for Microsoft Update (ITMU), and SCCM 2007.

For a complete list of products supported by MBSA 2.1 based on Microsoft Update (MU) and Windows Server Update Services (WSUS) technologies, visit the Products Supported by WSUS page.

See the MBSA 2.1 page for more information or to download the latest version.

Unless specifically noted, all references to MBSA 2.0 in the MBSA TechNet pages also apply to MBSA 2.1.

Legacy Product Support: For customers with legacy Microsoft products not supported by MBSA 2.1, Microsoft Update, and WSUS — or who require compatibility with MBSA 1.2.1 or Shavlik’s HFNetChk technologies — Shavlik Technologies offers a free MBSA 2.1 companion tool called Shavlik NetChk Limited.

Users who have the following products in their environment can use Shavlik NetChk Limited to augment MBSA 2.0.1 results for comprehensive security update detection.

•	Office 2000
•	ISA Server 2000
•	FrontPage Server Extensions 2000/2002
•	Visual Studio .Net 2002/2003
•	SQL Server 7.0/2000
•	Other products not included in Microsoft Update's supported product list

For more information about Shavlik NetChk Limited, or to download the tool, visit the Shavlik NetChk Limited page on Shavlik's Web site.

The third-party tool provided at the link above is manufactured by a company that is independent of Microsoft. Microsoft makes no warranty, implied or otherwise, regarding the performance or reliability of these products.

MBSA 2.0.1

MBSA 2.0.1 is the previous version of MBSA, which is compatible with the revised Windows Update offline scan file. (For information on the revised scan file, see`http://support.microsoft.com/kb/926464.) This earlier version enables MBSA to download and read the newer file format. MBSA 2.1 includes this functionality and more improvements. MBSA 2.0.1 is provided primarily for customers who require the earlier version of MBSA for compatibility reasons.

Additional Links

•	MBSA Newsgroups Server: news.microsoft.com Group: microsoft.public.security.baseline_analyzer

•	Security Update Management Tools

Top of page