Jump to content

Maxfutur

Member
  • Posts

    237
  • Joined

  • Last visited

  • Donations

    $0.00 

Posts posted by Maxfutur

  1. Maybe this has to be be added to the INF:

    Windows Registry Editor Version 5.00

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Control Panel\Extended Properties\{2CA4F306-B280-4ab2-B5E1-1DFA3583F046}]
    "C:\\WINDOWS\\system32\\FlashPlayerCPLApp.cpl"=dword:0000000a

    If this is true, i think is better to replace "WINDOWS" with "%Windir%" without the quotes.

    Im outdated by now. :whistle:

  2. Be aware,

    i realized some tests on a VM, when you move KB961742-v3 to HFSVCPACK_SW1, at the first startup of windows when you logon, the my documents window open up. And each time you logon this window appears...

    This KB is definitely strange.

    A solution is to make a cab in HFGUIRUNONCE to install silently at first logon.

    Like Mim0 said, if you don't use WinXP on a VM under Win 7, don't use it ;)

    I do use include and have no problems.

    BTW. do you install any third party software?

    Have you checked the startup line with Autoruns?

  3. Classified as High Priority Update by Window Update:

    WindowsXP-KB2541763-x86-XXX.exe

    KB article:

    http://support.microsoft.com/kb/2541763

    Download:

    http://www.microsoft.com/downloads/details.aspx?FamilyId=f55fb271-3fcc-4127-88a6-0676eb3fe27f

    A update that enables Internet Explorer in Windows XP, in Windows Vista, or in Windows Server 2008 to parse fragmented TLS/SSL handshake messages is available

    Replaces:

    MS10-049: KB980436

  4. Btw, thx for the links to the bulletins, Maxfutur, although several of 'em are wrong (I mean the description you put doesn't match the actual contents of the bulletins), sometimes they don't even apply to winXP. I guess M$ changed bulletin numbers at some point.

    (example: bulletin 5)

    You are right.

    See the note:

    Note: Sometimes Microsoft's guys make bulletins mix-up on when Bulletin Summary gets published, it means that Bulletin 15 would published as Bulletin 1 and so its link pointing out to /MS11-037.mspx

    Thanks for the new Flash update.

  5. how can you know beforehand? Got an insider? :rolleyes:

    This month we expect from 8 to 9 updates for HFSLIP (excluding MSRT), see Table 1 & Table 2 (first time i see splitted the bulletins table):

    http://www.microsoft.com/technet/security/bulletin/ms11-jun.mspx

    Links to Bulletins will became online after 11 hrs PST (Pacific Standard Time) Jun 14, 2011:

    Bulletin 1 (XP Critical):

    http://www.microsoft.com/technet/security/bulletin/MS11-037.mspx

    Bulletin 2 (XP - Silverlight 4 Critical):

    http://www.microsoft.com/technet/security/bulletin/MS11-038.mspx

    Bulletin 3 (Microsoft Forefront Threat Management Gateway 2010 Client)

    http://www.microsoft.com/technet/security/bulletin/MS11-039.mspx

    Bulletin 4 (XP x64, server 2003 & others):

    http://www.microsoft.com/technet/security/bulletin/MS11-040.mspx

    Bulletin 5 (XP Critical):

    http://www.microsoft.com/technet/security/bulletin/MS11-041.mspx

    Bulletin 6 (XP Critical):

    http://www.microsoft.com/technet/security/bulletin/MS11-042.mspx

    Bulletin 7 (XP Critical):

    http://www.microsoft.com/technet/security/bulletin/MS11-043.mspx

    Bulletin 8 (XP - Internet Explorer 6, 7 & 8 Critical):

    http://www.microsoft.com/technet/security/bulletin/MS11-044.mspx

    Bulletin 9 (XP - Internet Explorer 6, 7 & 8 Critical):

    http://www.microsoft.com/technet/security/bulletin/MS11-045.mspx

    Bulletin 10 (XP Important):

    http://www.microsoft.com/technet/security/bulletin/MS11-046.mspx

    Bulletin 11 (Excel 2002 SP3, 2003 SP3, 2007, 2010 32 & 64 bit for windows & Mac):

    http://www.microsoft.com/technet/security/bulletin/MS11-047.mspx

    Bulletin 12 (XP Important):

    http://www.microsoft.com/technet/security/bulletin/MS11-048.mspx

    Bulletin 13 (Server 2008, Server 2008 R2):

    http://www.microsoft.com/technet/security/bulletin/MS11-049.mspx

    Bulletin 14 (Vista):

    http://www.microsoft.com/technet/security/bulletin/MS11-050.mspx

    Bulletin 15 (Visual Studio 2005 SP1, 2008 SP1 & 2010 - SQL Server):

    http://www.microsoft.com/technet/security/bulletin/MS11-051.mspx

    Bulletin 16 (Server 2003 & 2008):

    http://www.microsoft.com/technet/security/bulletin/MS11-052.mspx

    MSRT V 3.20 would became accesible in the first one to tree hours PST of June 14 ()

    http://download.microsoft.com/download/4/A/A/4AA524C6-239D-47FF-860B-5B397199CBF8/windows-kb890830-v3.20.exe

    Note: Sometimes Microsoft's guys make bulletins mix-up on when Bulletin Summary gets published, it means that Bulletin 15 would published as Bulletin 1 and so its link pointing out to /MS11-037.mspx

    :hello:

  6. http://www.adobe.com/support/security/bulletins/apsb11-13.html

    http://www.adobe.com/support/security/bulletins/apsb11-13.html

    An important vulnerability has been identified in Adobe Flash Player 10.3.181.16 and earlier versions for Windows, Macintosh, Linux and Solaris, and Adobe Flash Player 10.3.185.22 and earlier versions for Android. This universal cross-site scripting vulnerability (CVE-2011-2107) could be used to take actions on a user's behalf on any website or webmail provider, if the user visits a malicious website. There are reports that this vulnerability is being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious link delivered in an email message.

    Adobe recommends users of Adobe Flash Player 10.3.181.16 and earlier versions for Windows, Macintosh, Linux and Solaris update to Adobe Flash Player 10.3.181.22 (10.3.181.23 for ActiveX). Adobe expects to make available an update for Flash Player 10.3.185.22 for Android during the week of June 6, 2011.

    Adobe is still investigating the impact to the Authplay.dll component that ships with Adobe Reader and Acrobat X (10.0.2) and earlier 10.x and 9.x versions of Adobe Reader and Acrobat for Windows and Macintosh operating systems. Adobe is not aware of any attacks targeting Adobe Reader or Acrobat in the wild.

  7. IE8-WindowsXP-KB2497640-x86-ENU.exe exists but NOT WindowsXP-KB2497640-x86-ENU.exe
    the shdocvw.dll from WindowsXP-KB2510581-x86-XXX.exe fixes Empty dialog when opening “Organize Favorites” from Windows Explorer 8

    As an alternative you can extract the shdocvw.dll from WindowsXP-KB2510581-x86-XXX.exe (SP3GDR), compress it with makecab.exe to shdocvw.dl_ and place it to REPLACE\I386.

    Optional, if you do not use favorites or add to favorites, is not necessary in windows internet explorer 8. If you surf the internet with any other browser, is not needed.

    the optional KB973686 replaces the high-priority KB973687
  8. how can you know beforehand? Got an insider? :rolleyes:

    That is easier than what you think, i konw two, one of them quoted by -X- :hello:

    You get on the mailing list or just check the news a many technology sites.

    The other way, i used to know about security bulletins, is going to bulletin advance notifications 5 days before (first thursday before) release of the security bulletins:

    http://www.microsoft.com/technet/security/bulletin/ms11-may.mspx

    Microsoft Security Bulletin Summary for May 2011

    Published: May 10, 2011

    Version: 1.0

    This bulletin summary lists security bulletins released for May 2011.

    With the release of the security bulletins for May 2011, this bulletin summary replaces the bulletin advance notification originally issued May 5, 2011. For more information about the bulletin advance notification service, see Microsoft Security Bulletin Advance Notification.

    You are going to be able to open thes links 5 days before security bulletins are issued:

    June
    http://www.microsoft.com/technet/security/bulletin/ms11-jun.mspx
    July
    http://www.microsoft.com/technet/security/bulletin/ms11-jul.mspx
    August
    http://www.microsoft.com/technet/security/bulletin/ms11-aug.mspx
    September
    http://www.microsoft.com/technet/security/bulletin/ms11-sep.mspx
    October
    http://www.microsoft.com/technet/security/bulletin/ms11-oct.mspx
    November
    http://www.microsoft.com/technet/security/bulletin/ms11-nov.mspx
    December
    http://www.microsoft.com/technet/security/bulletin/ms11-dec.mspx

    Every link changes the month's first three characters.

  9. As we can see here:

    iJ0Sx.png

    eN5m3.png

    There is no remark for KB2492386 replacing KB955759:

    A small notice to KB2492386: KB2492386 replaces KB955759.

    To let others know that KB955759 is not needed when KB2492386 exists in HF folder.

    I do not use filechecker, is it right and shows no problems when KB955759 doesn't exists?

  10. Thx Maxfutur!

    A small notice to KB2492386: KB2492386 replaces KB955759.

    This causes the following correction: KB955759 KB2492386 + KB979687 + KB2259922 replace KB923561

    --- EDIT ---

    MSRT 3.18 was also re-released. Can anybody check if the current download of MSRT 3.18 is different to the original download of MSRT 3.18? I don't have any downloads of MSRT but if both versions (with the number 3.18) are different I have to modify my algorithm in the file-checker.

    NP

    Thanks for the info

    I wonder if it is as follows: KB2492386 replaces KB955759.

    "This causes the following correction: KB2492386 + KB979687 + KB2259922 replace KB923561"

    HFSLIP Changelog shows: KB2485663 (MS11-033: WordPad Text Converters) replaces KB2259922 (MS10-067: WordPad Text Converters)

    Should be:

    "This causes the following correction: KB2492386 + KB979687 + KB2485663 replace KB923561"

    HFSLIP Update List needs correction at MS09-2010, make sure tu add the same (fixed) note when adding KB2492386.

    A small notice to KB2492386: KB2492386 replaces KB955759.

    And 2388210, at least on Server2003, but I think also on XP. Sure looks like a more direct replacement to me.

    *Edit: yes, there is a Update replacement information section in the article that needs to be clicked on. :yes:

    GL

    I think that your pointing out, is for XP x64 only.

    As i'm not very sure, can you make sure about it?

  11. PD: For some reason, my cabs are slightly bigger than the ones created by others...not sure why. Don't know how to make them smaller.

    There is a thread used for

    For smaller cab, i use two files:

    swflash.ddf for settings

    swflash.cmd for calling swf.ddf (double clck)

    Contents:

    swflash.ddf:

    .Set Cabinet=on
    .Set Compress=on
    .Set CompressionType=LZX
    .Set CompressionMemory=21
    .Set FolderSizeThreshold=5000000
    .Set MaxDiskSize=CDROM
    .Set CabinetNameTemplate=SWFLASH.CAB
    .Set DiskDirectory1=
    Flash10p.ocx
    FlashUtil10p_ActiveX.dll
    FlashUtil10p_ActiveX.exe
    swflash.inf

    swflash.cmd content:

    makecab /f swflash.ddf

    Make sure to change the letter version id (in this case, p has replaced o):

    10p

  12. what's with the spanish talk, guys?

    I'm the only that speaks spanish here (but I use english in the forum)

    Nada malo

    No lo creas, habemos cientos, incluido PuntoMX (Super Moderador), usamos inglés por ser el idioma usado en el foro. :thumbup

    Translation

    Nothing wrong

    Don't believe so, we are hundreds who writes in english because of the forums, there is PuntoMX (who is a Super Moderator). :thumbup

    BTW Thanks for the link



×
×
  • Create New...