non&public MS Hotfixes (KBs) for XP (PreSP3)

[Almighty1]

added 09-JAN-2006

• KB 900485 [download link]
  
• Error message in Windows XP Service Pack 2: "Stop 0x7E"
  
• KB 912919 [download link]
  
• Vulnerability in graphics rendering engine could allow remote code execution
  

[Almighty1]

added 15-JAN-2006

• KB 908519 [download link]
  
• Vulnerability in embedded Web fonts could allow remote code execution
  

[Almighty1]

added 21-FEB-2006

• KB 901190 [download link]
  
• Vulnerability in the Korean Input Method Editor Could Allow Elevation of Privilege
  
• KB 911564 [download link]
  
• Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution
  
• KB 911565 [download link]
  
• Vulnerability in Windows Media Player Could Allow Remote Code Execution
  
• KB 911927 [download link]
  
• Vulnerability in Web Client Service Could Allow Remote Code Execution
  
• KB 911961 [download link]
  
• Update for Outlook 2003 Junk Email Filter
  
• KB 913446 [download link] | (updates Tcpip.sys)
  
• Vulnerability in TCP/IP Could Allow Denial of Service
  

[®®®]

added download links for

KB 889673

KB 913538

KB 907265

KB 899271

[Almighty1]

There are a bunch of other non-critical updates that shows up on windowsupdate.microsoft.com except not sure if these are needed.

This one seems like it will create a hassle for the user after installing it:

http://support.microsoft.com/kb/912945/en-us

This one seems to only be important for people using Internet Explorer 7.0:

http://support.microsoft.com/kb/904942/en-us

This one is more for Pieter but it seems like you will have to run another update later on because of this update:

http://support.microsoft.com/kb/912475/en-us

This is for a Microsoft Security Encryption Smart Card:

http://support.microsoft.com/kb/909520/en-us

[Almighty1]

added 26-MARCH-2006

• KB 902344 [download link]
  
• FIX: Some portable devices may take 30 seconds or longer to start playing back a piece of content when you play subscription content that is protected by Windows Media DRM that uses chained licenses
  
• KB 909993 [download link]
  
• An update is available for Windows Media Connect 2.0
  

[Almighty1]

added 29-MARCH-2006

• KB 319740 [download link]
  
• MFC applications leak GDI objects on computers that are running Windows XP
  

[Almighty1]

added 14-APRIL-2006

• KB 890830 [download link]
  
• Windows Malicious Software Removal Tool - April 2006
  
• KB 908531 [download link]
  
• Vulnerability in Windows Explorer Could Allow Remote Code Execution
  
• KB 911562 [download link]
  
• Vulnerability in the Microsoft Data Access Components (MDAC) Function Could Allow Code Execution
  
• KB 911565 [download link]
  
• Vulnerability in Windows Media Player could allow remote code execution
  
• KB 911567 [download link]
  
• Cumulative Security Update for Outlook Express
  
• KB 912812 [download link]
  
• Cumulative Security Update for Internet Explorer
  

[Almighty1]

added 09-MAY-2006

• KB 890830 [download link]
  
• Windows Malicious Software Removal Tool - May 2006
  
• KB 913433 [download link]
  
• Vulnerabilities in Macromedia Flash Player from Adobe Could Allow Remote Code Execution
  
• KB 913580 [download link]
  
• Vulnerability in Microsoft Distributed Transaction Coordinator Could Allow Denial of Service
  

[Almighty1]

added 19-MAY-2006

• KB 918005 [download link]
  
• Battery power may drain more quickly than you expect on a Windows XP SP2-based portable computer
  

[Almighty1]

added 03-JUNE-2006

• KB 917730 [download link]
  
• Install this update to fix a situation where you cannot create a network connection when you are starting a Windows XP SP2-based computer.
  

[Almighty1]

added 08-JUNE-2006

• KB 916595 [download link]
  
• Install this update to prevent an issue in which you may receive a ?Stop 0xD1? error message on a computer that is running Windows XP Service Pack 2.
  

[Almighty1]

added 18-JUNE-2006

• KB 890830 [download link]
  
• Windows Malicious Software Removal Tool - June 2006
  
• KB 911280 [download link]
  
• Vulnerability in Routing and Remote Access Could Allow Remote Code Execution
  
• KB 914389 [download link]
  
• Vulnerability in Server Message Block Could Allow Elevation of Privilege
  
• KB 916281 [download link]
  
• Cumulative Security Update for Internet Explorer
  
• KB 917344 [download link]
  
• Vulnerability in Microsoft JScript Could Allow Remote Code Execution
  
• KB 917734 [download link]
  
• Vulnerability in Windows Media Player Could Allow Remote Code Execution
  
• KB 917953 [download link]
  
• Vulnerability in TCP/IP Could Allow Remote Code Execution
  
• KB 918439 [download link]
  
• Vulnerability in ART Image Rendering Could Allow Remote Code Execution
  

[®®®]

thanks Vince

[®®®]

added 21-JUNE-2006

KB 897338 [download link]

Update 897338 adds support for the following language locales

• Bosnian (Cyrillic, Bosnia and Herzegovina)
  
• Filipino (Philippines)
  
• Frisian (Netherlands)
  
• Inuktitut (Latin, Canada)
  
• Irish (Ireland)
  
• Luxembourgish (Luxembourg)
  
• Mapudungun (Chile)
  
• Mohawk (Mohawk)
  
• Nepali (Nepal)
  
• Pashto (Afghanistan)
  
• Romansh (Switzerland)
  

Updates kernel32.dll and others to Mai 2006 (not 2005 as seen in the KB article)

[®®®]

[KB 896256 download link]

Update 896256 updates XP kernel & HAL to version:

• 28-Sep-2005 23:35 5.1.2600.2765 134,272 Halmacpi.dll
  
• 29-Sep-2005 00:02 5.1.2600.2765 2,136,064 Ntkrnlmp.exe
  
• 28-Sep-2005 23:35 5.1.2600.2765 2,057,344 Ntkrnlpa.exe
  
• 28-Sep-2005 23:35 5.1.2600.2765 2,015,744 Ntkrpamp.exe
  
• 29-Sep-2005 00:04 5.1.2600.2765 2,180,096 Ntoskrnl.exe
  
• 28-Sep-2005 23:32 5.1.2600.2765 30,720 Arpidfix.exe
  

Uploaded the patch in 5 main languages. To

• download the patch for XP localized in German go here.
  
• download the patch for XP localized in English go here.
  
• download the patch for XP localized in Spanish go here.
  
• download the patch for XP localized in French go here.
  
• download the patch for XP localized in Italian go here.
  
• download the patch for XP localized in Dutch go here.
  
• download the patch for XP localized in Turkish go here.
  

[Almighty1]

added 13-JULY-2006

• KB 890830 [download link]
  
• Windows Malicious Software Removal Tool - July 2006
  
• KB 914388 [download link]
  
• Vulnerability in DHCP Client Service Could Allow Remote Code Execution
  
• KB 917159 [download link]
  
• Vulnerability in Server Service Could Allow Remote Code Execution
  
• KB 917283 [download link]
  
• Vulnerability in ASP.NET Could Allow Information Disclosure
  
• KB 917537 [download link]
  
• Vulnerability in Microsoft Internet Information Services using Active Server Pages Could Allow Remote Code Execution
  

[Almighty1]

added 11-AUGUST-2006

• KB 890830 [download link]
  
• Windows Malicious Software Removal Tool - August 2006
  
• KB 917422 [download link]
  
• Vulnerability in Windows Kernel Could Result in Remote Code Execution
  
• KB 918899 [download link]
  
• Cumulative Security Update for Internet Explorer
  
• KB 920214 [download link]
  
• Vulnerability in Microsoft Windows Could Allow Remote Code Execution
  
• KB 920670 [download link]
  
• Vulnerabilities in Microsoft Windows Hyperlink Object Library Could Allow Remote Code Execution
  
• KB 920683 [download link]
  
• Vulnerability in DNS Resolution Could Allow Remote Code Execution
  
• KB 921398 [download link]
  
• Vulnerability in Windows Explorer Could Allow Remote Code Execution
  
• KB 921883 [download link]
  
• Vulnerability in Server Service Could Allow Remote Code Execution
  
• KB 922616 [download link]
  
• Vulnerability in HTML Help Could Allow Remote Code Execution
  

[®®®]

• KB 920872
  This is a reliability update for Windows XP machines. Install this audio component update to prevent memory corruption issues which may cause an unstable state on a computer that is running Windows XP Service Pack 2. After you install this item, you may have to restart your computer.
  Updates the following files:
  - Kmixer.sys v5.1.2600.2929 (14-Jun-2006)
  - Splitter.sys v5.1.2600.2929 (14-Jun-2006)
  - Wdmaud.sys v5.1.2600.2929 (14-Jun-2006)
  The Kmixer.sys file, the Splitter.sys file, and the Wdmaud.sys file are Windows audio driver files. These files perform the following functions:
  - Enable audio devices
  - Enable audio playback
  - Allow for the audio device to record audio and to pass the data to programs
  
• KB 909095
  Kernel Update. Install this update to fix a situation where the computer does not hibernate and you receive an "Insufficient System Resources Exist to Complete the API" error message. After you install this item, you may have to restart your computer.
  Updates the following files:
  - Ntkrnlmp.exe v5.1.2600.2774 (12-Oct-2005)
  - Ntkrnlpa.exe v5.1.2600.2774 (11-Oct-2005)
  - Ntkrpamp.exe v5.1.2600.2774 (11-Oct-2005)
  - Ntoskrnl.exe v5.1.2600.2774 (12-Oct-2005)
  NOTE
  You might want to read THIS thread, to get an overview of more recent XP KERNEL updates.
  

[Almighty1]

added 13-SEPTEMBER-2006

• KB 885855 [download link]
  
• You cannot use infrared communications to transfer files on a computer that is running Windows XP Service Pack 2
  
• KB 890830 [download link]
  
• Windows Malicious Software Removal Tool - September 2006
  
• KB 919007 [download link]
  
• Vulnerability in Pragmatic General Multicast (PGM) Could Allow Remote Code Execution
  
• KB 920685 [download link]
  
• Vulnerability in Indexing Service Could Allow Cross-Site Scripting
  
• KB 922582 [download link]
  
• Error message when you try to update a Microsoft Windows-based computer: "0x80070002"
  

[Almighty1]

added 24-SEPTEMBER-2006

• KB 923996 [info][download link]
  
• When you visit a Web page that uses a custom pop-up object, Internet Explorer 6 closes unexpectedly
  

[Almighty1]

added 26-SEPTEMBER-2006

• KB 925486 [download link]
  
• Vulnerability in Vector Markup Language Could Allow Remote Code Execution
  

[Almighty1]

added 11-OCTOBER-2006

• KB 890830 [download link]
  
• Windows Malicious Software Removal Tool - October 2006
  
• KB 922770 [download link]
  
• Vulnerability in ASP.NET Could Allow Information Disclosure
  
• KB 922819 [download link]
  
• Vulnerabilities in TCP/IP Could Allow Denial of Service
  
• KB 923191 [download link]
  
• Vulnerability in Windows Shell Could Allow Remote Code Execution
  
• KB 923414 [download link]
  
• Vulnerability in Server Service Could Allow Denial of Service
  
• KB 924191 [download link]
  
• Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution
  
• KB 924496 [download link]
  
• Vulnerability In Windows Object Packager Could Allow Remote Code Execution
  
• KB 925672 [download link]
  
• MSXML 4.0 SP2 Security Update
  
• KB 925673 [download link]
  
• Vulnerabilities in Microsoft XML Core Services 6.0 RTM Could Allow Remote Code Execution
  

[Almighty1]

added 25-OCTOBER-2006

• KB 914440 [download link]
  
• Network Diagnostics for Windows XP is available to help identify and fix network connection problems
  

[Almighty1]

added 15-NOVEMBER-2006

• Microsoft .NET Framework 3.0 Redistributable Package [download link]
  
• Internet Explorer 7 [download link]
  
• Windows Media Player 11 [download link]
  
• Microsoft Baseline Security Analyzer 2.0.1 [download link]
  
• KB 890830 [download link]
  
• Windows Malicious Software Removal Tool - November 2006
  
• KB 920213 [download link]
  
• Vulnerability in Microsoft Agent Could Allow Remote Code Execution
  
• KB 922760 [download link]
  
• Cumulative Security Update for Internet Explorer
  
• KB 923789 [download link]
  
• Vulnerabilities in Macromedia Flash Player from Adobe Could Allow Remote Code Execution
  
• KB 923980 [download link]
  
• Vulnerabilities in Client Service for NetWare Could Allow Remote Code Execution
  
• KB 924270 [download link]
  
• Vulnerability in Workstation Service Could Allow Remote Code Execution
  
• KB 927977 [download link]
  
• Vulnerabilities in Microsoft XML Core Services 6.0 Could Allow Remote Code Execution
  
• KB 927978 [download link]
  
• Vulnerabilities in Microsoft XML Core Services 4.0 Could Allow Remote Code Execution