Windows 2003 Service Pack 2 Hotfixes compiled by the_guy (April '07 - Aug '08) and FDV (Sept '08 - forward)
Windows 2003 comes with version IE 6. Be careful not to mismatch IE version and hotfixes.
Windows 2003 Service Pack 2 Hotfixes compiled by the_guy (April '07 - Aug '08) and FDV (Sept '08 - forward)
Windows 2003 comes with version IE 6. Be careful not to mismatch IE version and hotfixes.
No, I'm not linking IE 7, IE 8, or whatever other train wrecks Microsoft is releasing. A server OS shouldn't even have a browser in it, never mind an HTML engine. It's a SERVER!
Start here:
Service Pack 2 for Windows Server 2003
April 2007:
925902: Vulnerabilities in GDI Could Allow Remote Code Execution
932168: Vulnerability in Microsoft Agent Could Allow Remote Code Execution
930178: Vulnerabilities in CSRSS Could Allow Remote Code Execution
931784: Vulnerability in Windows Kernel Could Allow Elevation of Privilege
June 2007:
924667: Vulnerability in Microsoft Foundation Classes could allow for remote code execution
935840: Vulnerability in the Windows Schannel Security Package Could Allow Remote Code Execution
929123: Cumulative Security Update for Outlook Express and Windows Mail
935839: Vulnerability in Win 32 API Could Allow Remote Code Execution
July 2007:
925398: Vulnerability in Windows Media Player 6.4 could allow remote code execution
933854: Description of the security update for the .NET Framework 1.1 for Windows Server 2003
936357: A microcode reliability update is available that improves the reliability of systems that use Intel processors
August 2007:
936227 - REMOVED. Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution
936782: Vulnerability in Windows Media Player Could Allow Remote Code Execution
October 2007:
933729: Vulnerability in RPC Could Allow Denial of Service
November 2007:
943460: Vulnerability in Windows URL Handling Could Allow Remote Code Execution
December 2007:
941569: Vulnerability in Windows Media file format could allow remote code execution
944275: Vulnerability in the Windows Media file format could allow remote code execution in Windows Server
944653: Vulnerability in Macrovision driver could allow local elevation of privilege
January 2008:
943485: Vulnerability in LSASS Could Allow Local Elevation of Privilege
February 2008:
942831: Vulnerability in Internet Information Services could allow elevation of privileges
942830: Vulnerability in Internet Information Services could allow remote code execution
946026: Vulnerability in WebDAV Mini-Redirector could allow remote code execution
947890: A vulnerability in OLE Automation could allow remote code execution
April 2008:
945553: Vulnerability in DNS Client Could Allow Spoofing
948590 - REMOVED. Vulnerabilities in GDI Could Allow Remote Code Execution
941693 - REMOVED. Vulnerability in Windows Kernel Could Allow Elevation of Privilege
June 2008:
951698: Vulnerabilities in DirectX Could Allow Remote Code Execution
948745: Vulnerability in WINS Could Allow Elevation of Privilege
953235: Vulnerability in Active Directory Could Allow Denial of Service
950762: Vulnerabilities in Pragmatic General Multicast (PGM) Could Allow Denial of Service
July 2008:
953230: Vulnerabilities in DNS Could Allow Spoofing.
August 2008:
952954: Vulnerability in Microsoft Windows Image Color Management System Could Allow Remote Code Execution
951066: Security Update for Outlook Express and Windows Mail
950974: Vulnerabilities in Event System Could Allow Remote Code Execution
953839 - REMOVED. Cumulative Security Update for ActiveX
938127: Vulnerability in Vector Markup Language Could Allow Remote Code Execution
September 2008:
943729: Group Policy Preference Client Side Extensions
954156: Security Update for Windows Media Encoder 9 Series for Windows Server 2003
938464: Attacker could remotely compromise Windows system that uses GDI+ and gain control over it
October 2008:
956391: Cumulative security update for ActiveX
956803: Vulnerability in the Microsoft Ancillary Function Driver Could Allow Elevation of Privilege
956841: Vulnerability in Virtual Address Descriptor Manipulation Could Allow Elevation of Privilege
957095: Vulnerability in SMB Could Allow Remote Code Execution
953155: Vulnerability in Windows Internet Printing Service Could Allow Remote Code Execution
954211: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (see also 959252 below in November 2008)
958644: Vulnerability in Server Service Could Allow Remote Code Execution
340178: Windows Server 2003 Service Pack 2 Administration x86 Tools Pack - update
November 2008:
956390 - REMOVED. Cumulative Security Update for Internet Explorer
957097: Vulnerability in SMB Could Allow Remote Code Execution
956390: Cumulative Security Update for Internet Explorer for Windows Server 2003
955218: Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution
958655: Update to resolve an issue in MSI Installer 4.5
959252: Update to resolve an issue in which you receive a 0x0000008e Stop error after installing 954211
December 2008:
955839: Time Zone Updates
956802: Vulnerabilities in GDI Could Allow Remote Code Execution.
954600,959807,952068,952069: Security fixes for Media Player
959807: Vulnerabilities in Windows Media Components Could Allow Remote Code Execution
958215: Cumulative Security Update for Internet Explorer
960714: Out of cycle Security Update for Internet Explorer
Internet Explorer 6
Roots Update direct download link last updated September 25 2007
Windows Script 5.7.0.16535 direct download link
MS Server 2003 link that changes hourly and will probably be a 404 before I even finish typing this
Please post any issues with this list here.
Last update:
12/25/08 at 23:04