[Incroyable HULK]

YOUR ONE STOP POST FOR WINDOWS CRITICAL UPDATES!

The following is a complete list of all critical HotFixes (patches) along with download link and switches examples for:
- Windows XP Professional with Service Pack 2
- Windows 2000 Professional with Service Pack 4
- Windows XP Professional with Service Pack 1 (no longer supported)


I will keep it updated after the 2nd Tuesday of every month (MS Patch Festival Day)

--------------------------------------------------------------------------------------
UPDATE LOG

October 10, 2006
Added KB925486, KB924496, KB924191, KB923414, KB923191 & KB922819 for WinXP SP2
Updated KB890830 for WinXP SP2
Removed KB917159 for WinXP SP2

September 12, 2006
Added KB922582, KB920872, KB920685 & KB919007 for WinXP SP2
Updated KB890830 for WinXP SP2

August 8, 2006
Added KB922616, KB921883, KB921398, KB920683, KB920670, KB920214, KB918899, KB917422 & KB905474 for WinXP SP2
Updated KB890830 for WinXP SP2
Removed KB916281, KB888113 & KB887742 for WinXP SP2

** Thanks to the_guy for the Win2K update **

July 11, 2006
Added KB917159, KB916595 & KB914388 for WinXP SP2
Updated KB890830 for WinXP SP2
Removed KB896422 for WinXP SP2

June 27, 2006
Updated KB911280 (Version 2) for WinXP SP2

June 13, 2006
Added KB918439, KB917953, KB917734, KB917344, KB916281, KB914389, KB913433 & KB911280 for WinXP SP2
Updated KB890830 for WinXP SP2
Removed KB913446, KB912812, KB911565 & KB885250 for WinXP SP2

May 9, 2006
Added KB913580 for WinXP SP2
Updated KB890830 for WinXP SP2

April 25, 2006
Added KB900485 for WinXP SP2

April 11, 2006
Added KB912812, KB911567, KB911562 & KB908531 for WinXP SP2
Updated KB911565 & KB890830 for WinXP SP2
Removed KB905915 for WinXP SP2

March 14, 2006
Updated KB890830 for WinXP SP2 and Win2K SP4

** Thanks to the_guy for the following Win2K update **
Added KB912919, KB911565, KB911564, KB908523, KB908519 & KB905915 for Win2K SP4
Removed KB885492 & KB896688 for Win2K SP4



ARCHIVED LOG FROM THE BEGINNING

 Log.htm (4.58K)
Number of downloads: 10990


--------------------------------------------------------------------------------------
MS WINDOWS XP PRO SP2 - (65)

WITH Windows Media Player 10 & Windows Live Messenger installed

Switches examples are used in the SVCPACK.INF file (this is the resultant of the/integrate: switch)

*** NEW ***
KB925486 -› Vulnerability in Vector Markup Language Could Allow Remote Code Execution
Download -› 783 KB (September 29, 2006)
Switches: KB925486.exe /q /n /z

*** NEW ***
KB924496 -› Vulnerability in Windows Object Packager could allow remote execution
Download -› 1.59 MB (October 9, 2006)
Switches: KB924496.exe /q /n /z

*** NEW ***
KB924191 -› Vulnerabilities in Microsoft XML Core Services could allow remote code execution
Download -› 1.05 MB (October 9, 2006)
Switches: KB924191.exe /q /n /z

*** NEW ***
KB923414 -› Vulnerability in Server Service could allow denial of service
Download -› 708 KB (October 9, 2006)
Switches: KB923414.exe /q /n /z

*** NEW ***
KB923191 -› Vulnerability in Windows Explorer could allow remote code execution
Download -› 4.04 MB (October 9, 2006)
Switches: KB923191.exe /q /n /z

*** NEW ***
KB922819 -› Vulnerabilities in TCP/IP IPv6 could allow denial of service
Download -› 836 KB (October 9, 2006)
Switches: KB922819.exe /q /n /z

KB922616 -› Vulnerability in HTML Help could allow remote code execution
Download -› 804 KB (August 7, 2006)
Switches: KB922616.exe /q /n /z

KB922582 -› Error message when you try to update a Microsoft Windows-based computer: "0x80070002"
Download -› 549 KB (September 11, 2006)
Switches: KB922582.exe /q /n /z

KB921883 -› Vulnerability in Server service could allow remote code execution
Download -› 685 KB (August 7, 2006)
Switches: KB921883.exe /q /n /z

KB921398 -› Vulnerability in Windows Explorer could allow remote code execution
Download -› 4.27 MB (August 7, 2006)
Switches: KB921398.exe /q /n /z

KB920872 -› Audio playback does not play the audio file from the correct position after you pause it, and you randomly receive a Stop error message when you try to play audio files in Windows XP Service Pack 2 (SP2)
Download -› 602 KB (August 17, 2006)
Switches: KB920872.exe /q /n /z

KB920685 -› Vulnerability in Indexing Service could allow cross-site scripting
Download -› 1.24 MB (September 11, 2006)
Switches: KB920685.exe /q /n /z

KB920683 -› Vulnerability in DNS resolution could allow remote code execution
Download -› 593 KB (August 7, 2006)
Switches: KB920683.exe /q /n /z

KB920670 -› Vulnerabilities in Microsoft Windows Hyperlink Object Library could allow remote code execution
Download -› 511 KB (August 7, 2006)
Switches: KB920670.exe /q /n /z

KB920214 -› Cumulative security update for Outlook Express
Download -› 771 KB (August 7, 2006)
Switches: KB920214.exe /q /n /z

KB919007 -› Vulnerability in Pragmatic General Multicast (PGM) could result in remote code execution
Download -› 553 KB (September 11, 2006)
Switches: KB919007.exe /q /n /z

KB918899 -› Cumulative security update for Internet Explorer
Download -› 4.40 MB (August 1, 2006)
Switches: KB918899.exe /q /n /z

KB918439 -› Vulnerability in ART image rendering could allow remote code execution
Download -› 553 KB (June 8, 2006)
Switches: KB918439.exe /q /n /z

KB917953 -› Vulnerability in TCP/IP could allow remote code execution
Download -› 770 KB (June 12, 2006)
Switches: KB917953.exe /q /n /z

KB917734 -› Vulnerability in Windows Media Player could allow remote code execution
Download -› 2.43 MB (June 12, 2006)
Switches: KB917734.exe /q /n /z

KB917422 -› Vulnerability in the Windows kernel could result in remote code execution
Download -› 920 KB (August 7, 2006)
Switches: KB917422.exe /q /n /z

KB917344 -› Vulnerability in Microsoft JScript could allow remote code execution
Download -› 746 KB (June 13, 2006)
Switches: KB917344.exe /q /n /z

KB916595 -› Stop error message on a Windows XP-based computer: "STOP 0x000000D1"
Download -› 596 KB (June 6, 2006)
Switches: KB916595.exe /q /n /z

KB914389 -› Vulnerability in Server Message Block could allow elevation of privilege
Download -› 972 KB (June 12, 2006)
Switches: KB914389.exe /q /n /z

KB914388 -› A vulnerability in the DHCP Client Service could allow remote code execution
Download -› 994 KB (July 10, 2006)
Switches: KB914388.exe /q /n /z

KB913580 -› Vulnerability in Microsoft Distributed Transaction Coordinator could allow denial of service
Download -› 1.24 MB (May 9, 2006)
Switches: KB913580.exe /q /n /z

KB913433 -› Vulnerabilities in Macromedia Flash Player from Adobe could allow remote code execution
Download -› 542 KB (May 9, 2006)
Switches: KB913433.exe /Q:A /R:N

KB912919 -› Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution
Download -› 711 KB (January 5, 2006)
Switches: KB912919.exe /q /n /z

KB911927 -› Vulnerability in Web Client Service could allow remote code execution.
Download -› 604 KB (February 13, 2006)
Switches: KB911927.exe /q /n /z

KB911567 -› Cumulative Security Update for Outlook Express
Download -› 1.50 MB (April 10, 2006)
Switches: KB911567.exe /q /n /z

KB911564 -› Vulnerability in Windows Media Player plug-in with non-Microsoft Internet browsers could allow remote code execution.
Download -› 598 KB (February 13, 2006)
Switches: KB911564.exe /q /n /z

KB911562 -› Vulnerability in Microsoft Data Access Components (MDAC) function could allow code execution
Download -› 560 KB (April 10, 2006)
Switches: KB911562.exe /q /n /z

KB911280 -› Vulnerability in Routing and Remote Access could allow remote code execution (V2)
Download -› 1.04 MB (June 27, 2006)
Switches: KB911280.exe /q /n /z

KB910437 -› Automatic Updates can no longer download updates after an Access Violation error occurs
Download -› 1.13 MB (December 12, 2005)
Switches: KB910437.exe /q /n /z

KB908531 -› Vulnerability in Windows Explorer Could Lead to Remote Code Execution
Download -› 4.44 MB (April 10, 2006)
Switches: KB908531.exe /q /n /z

KB908519 -› Vulnerability in Embedded Web Fonts Could Allow Remote Code Execution
Download -› 584 KB (January 9, 2006)
Switches: KB908519.exe /q /n /z

KB905749 -› Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege
Download -› 569 KB (August 10, 2005)
Switches: KB905749.exe /q /n /z

KB905474 -› Windows Genuine Advantage Notifications application
Download -› 999 KB (Version 1.5.540.0)
Switches: KB905474.exe /q /n /z

KB905414 -› Vulnerability in Network Connection Manager Could Allow Denial of Service
Download -› 607 KB (August 10, 2005)
Switches: KB905414.exe /q /n /z

KB904706 -› Vulnerability in DirectShow Could Allow Remote Code Execution
Download -› 964 KB (August 11, 2005)
Switches: KB904706.exe /q /n /z

KB902400 -› Vulnerabilities in MS DTC and COM+ Could Allow Remote Code Execution
Download -› 4.70 MB (August 10, 2005)
Switches: KB902400.exe /q /n /z

KB901214 -› Vulnerability in Microsoft Color Management Module could allow remote code execution
Download -› 612 KB (July 11, 2005)
Switches: KB901214.exe /q /n /z

KB901017 -› Vulnerability in the Microsoft Collaboration Data Objects could allow code execution (Windows)
Download -› 0.99 MB (August 10, 2005)
Switches: KB901017.exe /q /n /z

KB900725 -› Vulnerabilities in Windows Shell Could Allow Remote Code Execution
Download -› 4.92 MB (August 10, 2005)
Switches: KB900725.exe /q /n /z

KB900485 -› Error message in Windows XP Service Pack 2: "Stop 0x7E"
Download -› 571 KB (April 25, 2006)
Switches: KB900485.exe /q /n /z

KB899591 -› Vulnerability in Remote Desktop Protocol could allow denial of service
Download -› 571 KB (August 8, 2005)
Switches: KB899591.exe /q /n /z

KB899589 -› Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution
Download -› 527 KB (August 10, 2005)
Switches: KB899589.exe /q /n /z

KB899587 -› Vulnerabilities in Kerberos could allow denial of service, information disclosure, and spoofing
Download -› 721 KB (August 8, 2005)
Switches: KB899587.exe /q /n /z

KB898461 -› Installs a permanent copy of the Package Installer for Windows version 6.1.22.4
Download -› 477 KB (June 27, 2005)
Switches: KB898461.exe /q /n /z

KB896428 -› Vulnerability in Telnet client could allow information disclosure
Download -› 513 KB (June 13, 2005)
Switches: KB896428.exe /q /n /z

KB896424 -› Vulnerabilities in Graphics Rendering Engine Could Allow Code Execution
Download -› 2.47 MB (November 7, 2005)
Switches: KB896424.exe /q /n /z

KB896423 -› Vulnerability in Print Spooler service could allow remote code execution
Download -› 551 KB (August 8, 2005)
Switches: KB896423.exe /q /n /z

KB896358 -› A vulnerability in HTML Help could allow remote code execution
Download -› 0.99 MB (June 13, 2005)
Switches: KB896358.exe /q /n /z

KB894391 -› FIX: DBCS attachment file names are not displayed in Rich Text e-mail messages and you may receive a "Generic Host Process" error message after you install security update MS05-012
Download -› 1.98 MB (August 8, 2005)
Switches: KB894391.exe /q /n /z

KB893803 -› Windows Installer 3.1 (v2) is available
Download -› 2.46 MB (May 12, 2005)
Switches: KB893803.exe /q /n /z

KB893756 -› Vulnerability in Telephony service could allow remote code execution
Download -› 676 KB (August 8, 2005)
Switches: KB893756.exe /q /n /z

KB891781 -› Vulnerability in the DHTML editing component ActiveX control could allow code execution
Download -› 397 KB (February 7, 2005)
Switches: KB891781.exe /q /n /z

KB890859 -› Vulnerabilities in Windows kernel could allow elevation of privilege and denial of service
Download -› 5.81 MB (April 11, 2005)
Switches: KB890859.exe /q /n /z

*** UPDATED ***
KB890830 -› Microsoft® Windows® Malicious Software Removal Tool (v1.21)
Download -› 4.05 MB (October 10, 2006)
Switches: KB890830.exe /q (cannot use the /integrate; option)

KB890046 -› Vulnerability in Microsoft agent could allow spoofing
Download -› 511 KB (June 13, 2005)
Switches: KB890046.exe /q /n /z

KB888302 -› Vulnerability in Windows could allow information disclosure
Download -› 387 KB (February 7, 2005)
Switches: KB888302.exe /q /n /z

KB886185 -› Critical Update for Windows XP
Download -› 385 KB (December 13, 2004)
Switches: KB886185.exe /q /n /z

KB885836 -› A vulnerability in WordPad could allow code execution
Download -› 517 KB (December 13, 2004)
Switches: KB885836.exe /q /n /z

KB885835 -› Vulnerabilities in Windows Kernel and LSASS could allow elevation of privilege
Download -› 2.95 MB (December 13, 2004)
Switches: KB885835.exe /q /n /z

KB873339 -› Vulnerability in HyperTerminal could allow code execution
Download -› 598 KB (December 13, 2004)
Switches: KB873339.exe /q /n /z


MANDATORY CRITICAL HOTFIXES - May not show up on your configuration!

KB885626 -› Your computer stops responding when you restart to complete the installation of Windows XP Service Pack 2
Download -› 459 KB (October 29, 2004)
Switches: KB885626.exe /q /n /z

KB873374 -› Microsoft GDI+ Detection Tool
Download -› 216 KB (September 21, 2004)
Switches: KB873374.exe /Q:A /R:N (HALT BOX)
import this registry setting instead:
REG ADD "HKLM\SOFTWARE\Microsoft\GdiDetectionTool" /v "GDITool" /t REG_DWORD /d "00000001" /f



that's about it ... for now



NON-CRITICAL UPDATES FOR WINDOWS XP PRO SP2 - I can't garantee accuracy!

 Updates.htm (36.55K)
Number of downloads: 13052



--------------------------------------------------------------------------------------
MS WINDOWS 2000 PRO SP4 - (47)

WITH IE 6 & WMP 9 & DirectX 9.0c & Windows Live Messenger installed

Switches examples are used in a BATCH file (run from cmdlines.txt) or SVCPACK.INF

*** NEW ***
KB922616 -› Vulnerability in HTML Help could allow remote code execution
Download -› 700 KB (August 7, 2006)
Switches: KB922616.exe /passive /norestart /quiet

*** NEW ***
KB921398 -› Vulnerability in Windows Explorer could allow remote code execution
Download -› 1.18 MB (August 7, 2006)
Switches: KB921398.exe /passive /norestart /quiet

*** NEW ***
KB921883 -› Vulnerability in Server service could allow remote code execution
Download -› 602 KB (August 7, 2006)
Switches: KB921883.exe /passive /norestart /quiet

*** NEW ***
KB920958 -› Vulnerability in Windows kernel could allow elevation of privilege
Download -› 1.52 MB (August 7, 2006)
Switches: KB920958.exe /passive /norestart /quiet

*** NEW ***
KB920683 -› Vulnerability in DNS resolution could allow remote code execution
Download -› 560 KB (August 7, 2006)
Switches: KB920683.exe /passive /norestart /quiet

*** NEW ***
KB920670 -› Vulnerabilities in Microsoft Windows Hyperlink Object Library could allow remote code execution
Download -› 509 KB (August 7, 2006)
Switches: KB920670.exe /passive /norestart /quiet

*** NEW ***
KB918899 -› Cumulative Security Update for Internet Explorer
Download -› 3.99 MB (August 1, 2006)
Switches: KB918899.exe /passive /norestart /quiet

KB918439 -› Vulnerability in ART Image Rendering Could Allow Remote Code Execution
Download -› 558 KB (June 7, 2006)
Switches: KB918439.exe /passive /norestart /quiet

KB917953 -› Vulnerability in TCP/IP Could Allow Remote Code Execution
Download -› 623 KB (June 12, 2006)
Switches: KB917953.exe /passive /norestart /quiet

KB917736 -› Vulnerability in RPC Mutual Authentication Could Allow Spoofing
Download -› 684 KB (June 12, 2006)
Switches: KB917736.exe /passive /norestart /quiet

KB917734 -› Vulnerability in Windows Media Player Could Allow Remote Code Execution
Download -› 2.18 MB (June 12, 2006)
Switches: KB917734.exe /passive /norestart /quiet

KB917537 -› Vulnerability in Microsoft Internet Information Services using Active Server Pages Could Allow Remote Code Execution
Download -› 612 KB (July 10, 2006)
Switches: KB917537.exe /passive /norestart /quiet

*** NEW ***
KB917422 -› Vulnerability in the Windows kernel could result in remote code execution
Download -› 723 KB (August 7, 2006)
Switches: KB917422.exe /passive /norestart /quiet

*** NEW ***
KB917008 -› Vulnerability in Microsoft Management Console could allow remote code execution
Download -› 1.27 MB (August 7, 2006)
Switches: KB917008.exe /passive /norestart /quiet

KB917344 -› Vulnerability in Microsoft JScript Could Allow Remote Code Execution
Download -› 329 KB (June 13, 2006)
Switches: KB917344.exe /q:a /r:n

KB917159 -› Vulnerability in Server Service Could Allow Remote Code Execution
Download -› 601 KB (July 10, 2006)
Switches: KB917159.exe /passive /norestart /quiet

KB914389 -› Vulnerability in Server Message Block Could Allow Elevation of Privilege
Download -› 1.16 MB (June 12, 2006)
Switches: KB914389.exe /passive /norestart /quiet

KB914388 -› Vulnerability in DHCP Client Service Could Allow Remote Code Execution
Download -› 604 KB (July 10, 2006)
Switches: KB914388.exe /passive /norestart /quiet

KB913580 -› Vulnerability in Microsoft Distributed Transaction Coordinator Could Allow Denial of Service
Download -› 5.21 MB (May 9, 2006)
Switches: KB913580.exe /passive /norestart /quiet

KB912919 -› Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution
Download -› 711 KB (January 5, 2006)
Switches: KB912919.exe /passive /norestart /quiet

KB911567 -› Cumulative Security Update for Outlook Express
Download -› 2.25 MB (April 10, 2006)
Switches: KB911567.exe /passive /norestart /quiet

KB911564 -› Vulnerability in Windows Media Player plug-in with non-Microsoft Internet browsers could allow remote code execution.
Download -› 598 KB (February 13, 2006)
Switches: KB911564.exe /passive /norestart /quiet


KB911562 -› Vulnerability in MDAC that could allow remote code execution
Download-2.5sp3 -› 2.0 MB (April 10, 2006)
Switches: KB911562.exe /passive /norestart /quiet

OR

KB911562 -› Vulnerability in MDAC that could allow remote code execution
Download-2.7sp1 -› 2.63 MB (April 10, 2006)
Switches: KB911562.exe /passive /norestart /quiet

OR

KB911562 -› Vulnerability in MDAC that could allow remote code execution
Download-2.8 -› 2.5 MB (April 10, 2006)
Switches: KB911562.exe /passive /norestart /quiet

OR

KB911562 -› Vulnerability in MDAC that could allow remote code execution
Download-2.8sp1 -› 1.52 MB (April 10, 2006)
Switches: KB911562.exe /passive /norestart /quiet


KB911280 -› Vulnerability in Routing and Remote Access Could Allow Remote Code Execution
Download -› 907 KB (June 27, 2006)
Switches: KB911280.exe /passive /norestart /quiet

KB908531 -› Vulnerability in Windows Explorer that could allow remote code execution
Download -› 1.18 MB (April 25, 2006)
Switches: KB908531.exe /passive /norestart /quiet

KB908519 -› Vulnerability in Embedded Web Fonts Could Allow Remote Code Execution
Download -› 584 KB (January 9, 2006)
Switches: KB908519.exe /passive /norestart /quiet

KB905749 -› Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege
Download -› 507 KB (August 10, 2005)
Switches: KB905749.exe /passive /norestart /quiet

KB905495 -› Vulnerability in the Windows FTP client could allow file transfer location tampering
Download -› 555 KB (August 10, 2005)
Switches: KB905495.exe /passive /norestart /quiet

KB905414 -› Vulnerability in Network Connection Manager Could Allow Denial of Service
Download -› 508 KB (August 10, 2005)
Switches: KB905414.exe /passive /norestart /quiet

KB904706 -› Vulnerability in DirectShow Could Allow Remote Code Execution
Download -› 963 KB (August 11, 2005)
Switches: KB904706.exe /passive /norestart /quiet

KB901214 -› Vulnerability in Microsoft Color Management Module could allow remote code execution
Download -› 567 KB (July 12, 2005)
Switches: KB901214.exe /passive /norestart /quiet

KB901017 -› Vulnerability in the Microsoft Collaboration Data Objects could allow code execution (Windows)
Download -› 765 KB (August 10, 2005)
Switches: KB901017.exe /passive /norestart /quiet

KB900725 -› Vulnerabilities in Windows Shell Could Allow Remote Code Execution
Download -› 2.21 MB (August 10, 2005)
Switches: KB900725.exe /passive /norestart /quiet

KB899589 -› Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution
Download -› 496 KB (August 10, 2005)
Switches: KB899589.exe /passive /norestart /quiet

KB899587 -› Vulnerabilities in Kerberos could allow denial of service, information disclosure, and spoofing
Download -› 1.02 MB (August 8, 2005)
Switches: KB899587.exe /passive /norestart /quiet

KB896424 -› Vulnerabilities in Graphics Rendering Engine Could Allow Code Execution
Download -› 1.35 MB (November 7, 2005)
Switches: KB896424.exe /passive /norestart /quiet

KB896423 -› Vulnerability in Print Spooler service could allow remote code execution
Download -› 579 KB (August 8, 2005)
Switches: KB896423.exe /passive /norestart /quiet

KB896358 -› A vulnerability in HTML Help could allow remote code execution
Download -› 821 KB (June 13, 2005)
Switches: KB896358.exe /passive /norestart /quiet

KB893803 -› Windows Installer 3.1 (v2) is available
Download -› 2.46 MB (May 12, 2005)
Switches: KB893803.exe /passive /norestart /quiet

KB893756 -› Vulnerability in Telephony service could allow remote code execution
Download -› 565 KB (August 8, 2005)
Switches: KB893756.exe /passive /norestart /quiet

KB891861 -› Update Rollup 1 for Windows 2000 SP4
Download -› 31.1 MB (June 27, 2005)
Switches: KB891861.exe /passive /norestart /quiet

*** UPDATED ***
KB890830 -› Microsoft® Windows® Malicious Software Removal Tool (v1.19)
Download -› 3.32 MB (August 10, 2006)
Switches: KB890830.exe /q (cannot use the /integrate; option)

KB890046 -› Vulnerability in Microsoft agent could allow spoofing
Download -› 942 KB (June 13, 2005)
Switches: KB890046.exe /passive /norestart /quiet

KB873374 -› Microsoft GDI+ Detection Tool
Download -› 216 KB (September 21, 2004)
Switches: KB873374.exe /Q:A /R:N (HALT BOX)
import this registry setting instead:
REG ADD "HKLM\SOFTWARE\Microsoft\GdiDetectionTool" /v "GDITool" /t REG_DWORD /d "00000001" /f

KB842773 -› update package that includes BITS 2.0 and WinHTTP 5.1
Download -› 695 KB (February 22, 2005)
Switches: KB842773.exe /passive /norestart /quiet

KB833989 - Buffer overrun in JPEG processing (GDI+) could allow code execution in Internet Explorer SP1
Download -› 1.0 MB (September 14, 2004)
Switches: KB833989.exe /Q:A /R:N

KB832483 -› Buffer overrun in an MDAC function could allow code execution
Download -› 2.0 MB (July 28, 2004)
Switches: "KB832483.exe /C:""dahotfix.exe /q /n"" /q:a"



--------------------------------------------------------------------------------------
MS WINDOWS XP PRO SP1 - (30)

NO LONGER SUPPORTED!!!

 XP_SP1.htm (31.32K)
Number of downloads: 2159

.

This post has been edited by Incroyable HULK: 30 October 2006 - 09:38 PM

[Bilou_Gateux]

Windows Server 2003 Post SP1 HotFixes Security Updates

moved in HFSLIP here

This post has been edited by Bilou_Gateux: 13 October 2005 - 01:53 AM

[Incroyable HULK]

PlaceHolder

This post has been edited by Incroyable HULK: 14 March 2006 - 07:48 PM

[Bilou_Gateux]

*** moved ***

This post has been edited by Bilou_Gateux: 13 October 2005 - 01:48 AM

[Incroyable HULK]

DOOOOOOOOONE!

[RyanVM]

You're missing some XPSP2 hotfixes. I've got all the fixes in my pack. They're listed at my website. It should give you the information you need to add them to the list.
http://www.ryanvm.ne...updatepack.html

[Incroyable HULK]

Thank's RyanVM, I'll be updating my SP2 section tomorrow. Enought for today!

I have to build a "clean" simulation of Windows XP SP2 in order to check for updates... like the one I use for Windows 2000 SP4 and Windows XP SP1.

[bilemke]

This thread is for only official hotfixes that dont require contacting MS right?

Otherwise.. here is one of many available for download if you get a hold of MS for the password for the hotfix ftp.

http://support.microsoft.com/kb/883523

BTW.. KB article only.. no download links

[Acheron]

I have succesfully tested the following switch in SVCPack.inf for the POST-SP1 update "KB832483 -› Buffer overrun in an MDAC function could allow code execution":

"KB832483.exe /C:""dahotfix.exe /q /n"" /q:a"

Notice the double quotes!!!

For unattended installation during batch you can use the following command:

KB832483.exe /C:"dahotfix.exe /q /n" /q:a

Please update the thread to make it no exclusion anymore

[Incroyable HULK]

@hp38guser

Done! I wish I had this information earlier...

[Acheron]

Incroyable Hulk, you are referring to install using batch files?

Then you should post the second command line I posted

Quote

Switches examples are used in a BATCH file

Or meaby you can explain to people how to use these tweaks in svcpack.inf?

BTW, posted this one before

http://www.msfn.org/board/index.php?act=ST...ndpost&p=178678

[Incroyable HULK]

@hp38guser

Read Carefully!

there is 3 different method for installation, 1 for each systems:

Batch file = Windows 2000 SP4
SVCPACK.INF = Windows XP SP1
/integrate: = Windows XP SP2

Cheers!

[RyanVM]

bilemke, on Nov 9 2004, 04:19 AM, said:

This thread is for only official hotfixes that dont require contacting MS right?

Otherwise.. here is one of many available for download if you get a hold of MS for the password for the hotfix ftp.

http://support.microsoft.com/kb/883523

BTW.. KB article only.. no download links

Sounds like a challenge to me

[Incroyable HULK]

Maybe I should contact MS...


Hello? is this MS speaking? My name is Incredible HULK and I'd like to get all the non critical updates delivered to my Office. What? you think i'm crazy

Maybe I am... Maybe

[vcBlackBox]

You can also download all the hotfixes for Windows 2000 SP-4 in one neat setup package.

AutoPatcher 2000
Downloads: http://www.autopatch...download2k.html
Info: http://www.autopatch...fullinfo2k.html

[Incroyable HULK]

@vcBlackBox

Nice, but there's too much stuff for me in that package!

[vcBlackBox]

@Incroyable HULK

You could always just download the lite or ultralite versions.
http://www.autopatch...liteinfo2k.html

[Incroyable HULK]

@vcBlackBox

How do you remove the front cover of the Antec Sonata Case without breaking it? You can pull the tab from the panel side but on the other side there is no way to access the plastic tab...

[urgan]

@vcBlackBox

A few remarks on your 2000SP4 list.

1 - KB834707 can be replaced by KB873377 with success.
Update rollup 873377 includes the cumulative security fixes in MS04-038 as well as hotfixes released since MS04-004.
See KB

2 - KB839645 is superceded by KB841356 (in both XP too), see KB.

3 - KB828026 behaviour is fixed by KB832353 (all versions up to 9, in XP too)

4 - KB814078 should be replaced by "Windows Script 5.6 for Windows 2000 and XP" available
here since it replaces the problematic jscript.dll 5.6.0.8513 by 5.6.0.8825.
(Not tested with XP yet, where it gave me more problems)

These are the findings on a problem myself, Bilou_Gateux and others have been working here

These replacements work, I've tested a slipstreamed 2000SP4 today with 0 critical updates and verified it with hfnetchk, only got warning of version bigger than expected. It also works within svcpack, with a few tricks devised by the grat Bilou_Gateux.

I'm replying here, so this info reaches more people who needs this info just in case you don't want to do these changes.

[Incroyable HULK]

Bilou_Gateux, on Nov 8 2004, 03:10 PM, said:

It works fine for Windows 2000 if reg.exe Registry Console Tool For Windows 2000 - version 2.0 is copied before in %systemroot%\system32 or somewhere in the path.
For Windows XP, i have never checked but it should works exactly the same...

I run the command from
cmdlines.txt

[Commands]
".\GDITool.cmd"

GDITool.cmd

ECHO OFF
:: http://support.microsoft.com/kb/873374/en-us
:: Set Microsoft GDI+ Detection Tool to completed
REG ADD "HKLM\SOFTWARE\Microsoft\GdiDetectionTool" /v "GDITool" /t REG_DWORD /d "00000001" /f

@Bilou_Gateux

I tried this method with my Win2000 install. I used the exact syntax you suggested (copy & paste) and it doesn't work. The only thing unclear is if I had to copy reg.exe to System32 to use your method... because I didn't!

Where do you get this reg.exe version 2.0 from?