INSTALL INSTRUCTIONS - HOTFIX FOR XP EMBEDDED OS FROM RADIANT SYSTEMS ===================================================================== File: MS09-ALL_Q12_SP3.EXE - 2009 Q1-Q2 Rollup Patch for XP Embedded SP3 - Go to http://www.microsoft.com/technet/security/bulletin/ms0x-xxx.mspx for full details on this patch and to download the XP Professional version of this patch. Fill in x-xxx with the MS patch name (full list below). - Applies to: SP3 All Hard Drive Images; CF and uDOC users may want to pick and choose from individual patches due to storage space concerns. - This patch includes an update for Internet Explorer 7 (see MS09-019/KB969897) All XPE SP3 images are built with Internet Explorer 7, but if you should need the IE6 patch, download it from this web page: http://www.microsoft.com/technet/security/bulletin/ms09-019.mspx The IE7 patch will not install if it does not find IE7 on the system. - Reboot required: Yes ==================== Use "MS09-ALL_Q12_SP3.EXE /passive /forcerestart" to run the patch in Unattended Mode. Note: If you get "###Error: Unable to open install EXE" when you run the patch, verify that you are using the entire file name including .EXE extension. ==================== This security update supports the following setup switches: /help Displays the command line options Setup Modes /quiet Quiet mode (no user interaction or display) /passive Unattended mode (progress bar only) Restart Options /norestart Do not restart when installation is complete /forcerestart Restart after installation ============================================ Verifying Patch Installation: The registry entries under HKLM\Software\Microsoft\WindowsNT\CurrentVersion\Hotfix contain all of the KBnnnnnn designations for installed Hotfixes. You can check there to verify that a particular hotfix is installed. Listed times are UTC/GMT and will vary according to the time zone of the patched system. A reboot may be required before all files can be seen. Files will be updated ONLY if already present in the image; no files are added if not necessary. Short version of the patch list: KB969898 MS09-001/KB958687 MS09-007/KB960225 MS09-010/KB923561 MS09-011/KB961373 MS09-012/KB959454 MS09-013/KB960803 MS09-015/KB959426 MS09-019/KB969897 MS09-020/KB970483 MS09-022/KB961501 MS09-025/KB968537 MS09-026/KB970238 KB969898 Cumulative Security Update of ActiveX Kill Bits for SP3 http://www.microsoft.com/technet/security/advisory/969898.mspx and http://support.microsoft.com/kb/969898 This patch has no files to verify, only a large number of registry entries. Check the registry key listed above, or look in Add/Remove Programs (show Updates must be checked). MS09-001/KB958687 Vulnerabilities in SMB Could Allow Remote Code Execution for SP3 http://www.microsoft.com/technet/security/bulletin/ms09-001.mspx File Name Version Size Date Time Folder Srv.sys 5.1.2600.5725 333,952 11-Dec-2008 12:33 C:\Windows\System32\Drivers MS09-007/KB960225 Vulnerability in SChannel Could Allow Spoofing for SP3 http://www.microsoft.com/technet/security/bulletin/ms09-007.mspx File Name Version Size Date Time Folder Schannel.dll 5.1.2600.5721 144,896 05-Dec-2008 06:58 C:\Windows\System32 MS09-010/KB923561 Vulnerabilities in WordPad and Office Text Converters Could Allow Remote Code Execution (923561/960477) for SP3 http://www.microsoft.com/technet/security/bulletin/ms09-010.mspx File Name Version Size Date Time Folder Mswrd8.wpc 2007.10.31.10 279,552 22-Apr-2008 00:58 C:\Program Files\Windows NT\Accessories Sysmain.sdb Not Applicable 1,203,922 27-Mar-2009 06:33 C:\Windows\AppPatch Wordpad.exe 5.1.2600.5584 215,552 21-Apr-2008 12:15 C:\Program Files\Windows NT\Accessories Xpsp4res.dll 5.1.2600.5594 2,560 03-May-2008 11:55 C:\Windows\System32 MS09-011/KB961373 Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (961373) for SP3 http://www.microsoft.com/technet/security/bulletin/ms09-011.mspx File Name Version Size Date Time Folder Quartz.dll 6.5.2600.5731 1,288,192 20-Dec-2008 23:14 C:\Windows\System32 MS09-012/KB959454 Vulnerabilities in Windows Could Allow Elevation of Privilege (959454) for SP3 http://www.microsoft.com/technet/security/bulletin/ms09-012.mspx File Name Version Size Date Time Folder Msdtclog.dll 2001.12.4414.706 58,880 12-Jun-2008 14:09 C:\Windows\System32 Msdtcprx.dll 2001.12.4414.706 428,032 12-Jun-2008 14:09 C:\Windows\System32 Msdtctm.dll 2001.12.4414.706 956,928 12-Jun-2008 14:09 C:\Windows\System32 Msdtcuiu.dll 2001.12.4414.706 161,792 12-Jun-2008 14:09 C:\Windows\System32 Mtxclu.dll 2001.12.4414.706 66,560 12-Jun-2008 14:09 C:\Windows\System32 Mtxoci.dll 2001.12.4414.706 91,648 12-Jun-2008 14:09 C:\Windows\System32 MS09-013/KB960803 Vulnerabilities in Windows HTTP Services Could Allow Remote Code Execution (960803) for SP3 http://www.microsoft.com/technet/security/bulletin/ms09-013.mspx File Name Version Size Date Time Folder Winhttp.dll 5.1.2600.5727 354,304 16-Dec-2008 12:22 C:\Windows\System32 MS09-015/KB959426 Blended Threat Vulnerability in SearchPath Could Allow Elevation of Privilege (959426) for SP3 http://www.microsoft.com/technet/security/bulletin/ms09-015.mspx File Name Version Size Date Time Folder Kernel32.dll 5.1.2600.5781 991,744 22-Mar-2009 02:29 C:\Windows\System32 Secur32.dll 5.1.2600.5753 56,832 04-Feb-2009 09:12 C:\Windows\System32 MS09-019/KB969897 Cumulative Security Update for Internet Explorer 6 for SP3 http://www.microsoft.com/technet/security/bulletin/ms09-019.mspx File Name Version Size Date Time Folder Advpack.dll 7.0.6000.21045 124,928 29-Apr-2009 04:49 C:\Windows\System32 Dxtmsft.dll 7.0.6000.21045 347,136 29-Apr-2009 04:49 C:\Windows\System32 Dxtrans.dll 7.0.6000.21045 214,528 29-Apr-2009 04:49 C:\Windows\System32 Extmgr.dll 7.0.6000.21045 132,608 29-Apr-2009 04:49 C:\Windows\System32 Html.iec 2017.0.0.21045 389,120 28-Apr-2009 09:56 C:\Windows\System32 Icardie.dll 7.0.6000.21045 63,488 29-Apr-2009 04:49 C:\Windows\System32\DllCache Ie4uinit.exe 7.0.6000.21045 70,656 28-Apr-2009 09:56 C:\Windows\System32 Ieakeng.dll 7.0.6000.21045 153,088 29-Apr-2009 04:49 C:\Windows\System32\DllCache Ieaksie.dll 7.0.6000.21045 230,400 29-Apr-2009 04:49 C:\Windows\System32\DllCache Ieakui.dll 7.0.6000.21045 161,792 25-Apr-2009 05:26 C:\Windows\System32\DllCache Ieapfltr.dat 7.0.6011.0 2,455,488 09-Jul-2008 14:25 C:\Windows\System32 Ieapfltr.dll 7.0.6000.16730 380,928 29-Apr-2009 04:49 C:\Windows\System32 Iedkcs32.dll 17.0.6000.21045 388,608 29-Apr-2009 04:49 C:\Windows\System32 Ieencode.dll 2017.0.0.21045 78,336 29-Apr-2009 04:49 C:\Windows\System32 Ieframe.dll 7.0.6000.21045 6,069,248 29-Apr-2009 04:49 C:\Windows\System32 Ieframe.dll.mui 7.0.6000.16414 991,232 09-Jul-2008 14:30 C:\Windows\System32\en-us Iernonce.dll 7.0.6000.21045 44,544 29-Apr-2009 04:49 C:\Windows\System32 Iertutil.dll 7.0.6000.21045 268,288 29-Apr-2009 04:49 C:\Windows\System32 Ieudinit.exe 7.0.6000.21045 13,824 28-Apr-2009 09:56 C:\Windows\System32\DllCache Iexplore.exe 7.0.6000.21045 636,088 25-Apr-2009 05:27 C:\Program Files\internet explorer Inetcpl.cpl 7.0.6000.21045 1,830,912 29-Apr-2009 04:49 C:\Windows\System32 Jsproxy.dll 7.0.6000.21045 27,648 29-Apr-2009 04:49 C:\Windows\System32 Msfeeds.dll 7.0.6000.21045 459,264 29-Apr-2009 04:49 C:\Windows\System32 Msfeedsbs.dll 7.0.6000.21045 52,224 29-Apr-2009 04:49 C:\Windows\System32 Mshtml.dll 7.0.6000.21045 3,598,336 29-Apr-2009 17:19 C:\Windows\System32 Mshtmled.dll 7.0.6000.21045 477,696 29-Apr-2009 04:49 C:\Windows\System32 Msrating.dll 7.0.6000.21045 193,024 29-Apr-2009 04:49 C:\Windows\System32 Mstime.dll 7.0.6000.21045 671,232 29-Apr-2009 04:49 C:\Windows\System32 Occache.dll 7.0.6000.21045 102,912 29-Apr-2009 04:49 C:\Windows\System32 Pngfilt.dll 7.0.6000.21045 44,544 29-Apr-2009 04:49 C:\Windows\System32 Url.dll 7.0.6000.21045 105,984 29-Apr-2009 04:49 C:\Windows\System32 Urlmon.dll 7.0.6000.21045 1,163,264 29-Apr-2009 04:49 C:\Windows\System32 Webcheck.dll 7.0.6000.21045 233,472 29-Apr-2009 04:49 C:\Windows\System32 Wininet.dll 7.0.6000.21045 828,928 29-Apr-2009 04:49 C:\Windows\System32 MS09-020/KB970483 Vulnerabilities in Internet Information Services (IIS) Could Allow Elevation of Privilege for SP3 http://www.microsoft.com/technet/security/bulletin/ms09-020.mspx File Name Version Size Date Time Folder Httpext.dll 6.0.2600.5817 268,288 21-May-2009 18:09 C:\Windows\System32\inetsrv MS09-022/KB961501 Vulnerabilities in Windows Print Spooler Could Allow Remote Code Execution for SP3 http://www.microsoft.com/technet/security/bulletin/ms09-022.mspx File Name Version Size Date Time Folder Localspl.dll 5.1.2600.5809 346,112 07-May-2009 15:14 C:\Windows\System32 MS09-025/KB968537 Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege for SP3 http://www.microsoft.com/technet/security/bulletin/ms09-025.mspx File Name Version Size Date Time Folder Win32k.sys 5.1.2600.5796 1,847,808 17-Apr-2009 23:20 C:\Windows\System32 MS09-026/KB970238 Vulnerability in RPC Could Allow Elevation of Privilege for SP3 http://www.microsoft.com/technet/security/bulletin/ms09-026.mspx File Name Version Size Date Time Folder Rpcrt4.dll 5.1.2600.5795 585,216 15-Apr-2009 15:24 C:\Windows\System32