Yes, if your machines are reporting problematic so even after applying P2, they are still vulenarble, P2 doesnt address that issue but only that Hotfix.
For some reasons ePO Query doesnt give you exact resuilts even though the Hotfix was applied, I would suggest to run a SQL script to find out exat HOtfix number applied on your machines and if it reports well, you are done.
Copy and paste this script into your DB SQL Query, you may change the number string with the hotfix number that you have applied and want query for.(this query is for Hotfix 793640)
1.Open the Microsoft SQL Server Management Studio.
2.Right click your ePO Database and select New Query
3.Copy and paste the following Microsoft SQL Query
select ln.nodename as Hostname, pp.productversion as Version, pp.hotfix asPatch, ps.value as Hotfix from epoleafnode ln join epoproductproperties pp onln.autoid = pp.parentid join epoproductsettings ps on pp.autoid = ps.parentidwhere ps.settingname = 'Fixes' and ps.value like '%793640%'
order by hostname
i'm not familiar with the intricacies SQL..
If any machine with the patch is ok, then is there a way to do that SQL script with a NOT statement, so I can identify only machine that DON'T have the hotfix?
First I would like to try this one:
Open ePo console and double click any problematic machine.
Click on Products.
In the product list click Virus Scan Enterprise
Scrol down this window and under "General Tab" look for
Fixes=xxxxxxxx, if you see the applied Hotfix number here them its ok.