Patches and Service Packs

Windows XP SP1/SP1a Patches

You should consider installing Service Pack 2 as soon as possible

On August 9, 2004, Microsoft released SP2 for Windows XP. SP2 is the latest collection of updates for Windows XP.

Download Windows XP SP2 Network Installation (266mb)

See the Windows 2000/XP SP Slipstreaming page for info on how to integrate SP2 into your existing media.

Required Patches

Windows XP Home or Professional with Service Pack 1 or Service Pack 1a requires the following security-related patches (If you don’t know about SP1a or if you want to read about it go to my Windows XP SP1a Info page):

Sponsored Content

Passwords Haven’t Disappeared Yet

123456. Qwerty. Iloveyou. No, these are not exercises for people who are brand new to typing. Shockingly, they are among the most common passwords that end users choose in 2021. Research has found that the average business user must manually type out, or copy/paste, the credentials to 154 websites per month. We repeatedly got one question that surprised us: “Why would I ever trust a third party with control of my network?

Make sure you read Internet Explorer 6.0 SP1 Patches and IIS 5.1 Patches before you go on.

October 2005

MS05-051 : Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400)

MS05-050 : Vulnerability in DirectShow Could Allow Remote Code Execution (904706)

MS05-049 : Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725)

MS05-048 : Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245)

MS05-047 : Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749)

MS05-046 : Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589)

MS05-045 : Vulnerability in Network Connection Manager Could Allow Denial of Service (905414)

MS05-044 : Vulnerability in the Windows FTP Client Could Allow File Transfer Location Tampering (905495)

August 2005

MS05-043 : Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423)

MS05-042 : Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587)

MS05-041 : Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591)

MS05-040 : Vulnerability in Telephony Service Could Allow Remote Code Execution (893756)

July 2005

MS05-036 : Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214)

June 2005

MS05-033 : Vulnerability in Telnet Client Could Allow Information Disclosure (896428)

MS05-032 : Vulnerability in Microsoft Agent Could Allow Spoofing (890046)

MS05-031 : Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (898458)

MS05-030 : Cumulative Security Update in Outlook Express (897715)

MS05-028 : Vulnerability in Web Client Service Could Allow Remote Code Execution (896426)

MS05-027 : Vulnerability in Server Message Block Could Allow Remote Code Execution (896422)

MS05-026 : Vulnerability in HTML Help Could Allow Remote Code Execution (896358)

April 2005

MS05-019 : Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066)

MS05-018 : Vulnerability in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859)

MS05-017 : Vulnerability in Message Queuing Could Allow Code Execution (892944)

MS05-016 : Vulnerability in Windows Shell that Could Allow Remote Code Execution (893086)

February 2005

MS05-015 : Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113)

MS05-013 : Vulnerability in the DHTML Editing ActiveX Control could allow code execution (891781)

MS05-012 : Vulnerability in OLE and COM Could Allow Remote Code Execution (873333)

MS05-011 : Vulnerability in Server Message Block Could Allow Remote Code Execution (885250)

MS05-010 : Vulnerability in the License Logging Service Could Allow Code Execution (885834)

MS05-009 : Vulnerability in PNG Processing Could Lead to Buffer Overrun (890261)

MS05-006 : Vulnerability in Windows Could Allow Information Disclosure (888302)

MS05-004 : ASP. NET Path Validation Vulnerability (887219)

January 2005

MS05-003 : Vulnerability in the Indexing Service Could Allow Remote Code Execution (871250)

MS05-002 : Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (891711)

MS05-001 : Vulnerability in HTML Help Could Allow Code Execution (890175)

December 2004

MS04-045 : Vulnerability in WINS Could Allow Remote Code Execution (870763)

MS04-044 : Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege (885835)

MS04-043 : Vulnerability in HyperTerminal Could Allow Code Execution (873339)

MS04-041 : Vulnerability in WordPad Could Allow Code Execution (885836)

October 2004

MS04-037 : Vulnerability in Windows Shell Could Allow Remote Code Execution (841356)

MS04-034 : Vulnerability in Compressed (zipped) Folders Could Allow Code Execution (873376)

MS04-032 : Security Update for Microsoft Windows (840987)

MS04-031 : Vulnerability in NetDDE Could Allow Remote Code Execution (841533)

MS04-030 : Vulnerability in WebDav XML Message Handler Could Lead to a Denial of Service (824151)

MS04-028 : Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (873374)

July 2004

MS04-024 : Vulnerability in Windows Shell Could Allow Remote Code Execution (839645)

MS04-023 : Vulnerability in HTML Help Could Allow Code Execution (840315)

MS04-022 : Vulnerability in Task Scheduler Could Allow Code Execution (841873)

June 2004

MS04-016 : Vulnerability in DirectPlay Could Allow Denial of Service (839643)

May 2004

MS04-015 : Vulnerability in Help and Support Center Could Allow Remote Code Execution (840374)

April 2004

MS04-014 : Vulnerability in the Microsoft Jet Database Engine Could Allow Code Execution (837001)

MS04-012 : Cumulative Update for Microsoft RPC/DCOM (828741)

MS04-011 : Security Update for Microsoft Windows (835732)

February 2004

MS04-007 : ASN .1 Vulnerability Could Allow Code Execution (828028)