What do the red, yellow, and blue icons in MBSA scan reports mean?
MBSA displays different icons in the report score columns depending on whether a vulnerability was found on the scanned computer. There are two distinct types of checks performed by MBSA: administrative vulnerability (VA) checks and security update checks. For the administrative vulnerability checks, a red X is used when a critical check failed (for example, a user has a blank password). A yellow X is used when a non-critical check failed (for example, an account has a password that does not expire). A green checkmark is used when a check passes (that is, no issue was found for that particular check). A blue asterisk is used for best practice checks (for example, checking if auditing is enabled), and a blue asterisk informational icon is used for checks that simply provide information about the computer being scanned (for example, the operating system version of the scanned computer).
