We use a modified version of the pr_xp_hotfixes rule. I was going
through looking at the additions from the last patch Tuesday and see
only one difference pertaining to the Flash critical update:

!pc_Flash_6_0_79|pc_KB913433_MS06-020_XP_9x_Flash

However, if I'm reading this correctly there seems to be some logic
errors with this. If a user has upgraded to a newer version, 7 or 8,
then the rule fails for two reasons: 
1) this rule doesn't look for a newer version
2) if a newer version has been installed, the old flash.ocx file at
version 6.0.79 is still present, causing the rule to fail
3) this rule doesn't address vulnerable versions of 7 or 8. Is this
because MS doesn't provide a patch if you've upgraded to 7 or 8?

Nevertheless, it seems as though this rule would always be broken for
upgraded users.

Am I misunderstanding this rule?

Simon
-- 

Simon L. Bell
Network Support Specialist
Georgia Southern University
e: simonbell(at)georgiasouthern.edu
o: 912.681.5209
f: 912.681.0272

**Confidentiality Notice**
The documents accompanying this transmission contain confidential and
privileged information. The information is the property of the sender
and intended only for use by the individual or entity named above. The
recipient of this information is prohibited from disclosing the contents
of the information to another party. If you are neither the intended
recipient nor the employee or agent responsible for delivery to the
intended recipient, you are hereby notified that disclosure of contents
in any manner is strictly prohibited.