“Configuration Manager Vulnerability Assessment allows you to scan managed systems for common missing security updates and misconfigurations which might make client computers more vulnerable to attack.
Software installation errors and misconfigurations compromise security and stability, resulting in escalated support costs. System Center 2012 Configuration Manager Vulnerability Assessment Configuration Pack can help prevent errors and security risks, increasing your organizational uptime and helping you build a more secure infrastructure. This configuration pack provides vulnerability assessment reporting for common missing security updates and misconfigurations by using the configuration baselines in Configuration Manager. The Configuration Manager Vulnerability Assessment Configuration Pack monitors the configuration of Microsoft Windows operating systems, Internet Explorer, Microsoft Office, SQL Server, and Internet Information Services (IIS). To use this Configuration Pack, import and assign the three configuration baselines (Vulnerability Assessment: IIS Baseline, Vulnerability Assessment: SQL Server Baseline, Vulnerability Assessment: Windows Baseline) to a collection containing the computers you want to monitor. To understand in detail what each configuration item will be evaluating, review the properties of the configuration item. “
Configuration Manager Vulnerability Assessment can be download from the following link.