KB935966 Not showing up

By marrone
in Software created by our members

 Share

Recommended Posts

Apprentice

marrone

Posted
Posted

Patch KB935966 is not showing up in autopatcher, and I cannot install it from the august Win2k3 core release.

Microsoft Security Bulletin MS07-029

Vulnerability in Windows DNS RPC Interface Could Allow Remote Code Execution (935966)

The patch is definitely in the release...it's stored under "Critical", but it's not showing up for me to select it.

DNS is running on the server...it's a domain controller.

I'm afraid to run it manually, in case there really is a reason Autopatcher isn't seeing it as important.

Can anyone help?

Thanks

-Mike

Link to comment
https://www.neowin.net/forum/topic/582939-kb935966-not-showing-up/
Share on other sites
Grand Master

+theblazingangel MVC

Posted
  • MVC
Posted

run the installer manually to get your system patched, thats the most important thing right now, don't be afraid, if it didn't apply to your system it would refuse to install. likewise you don't need to be afraid about installing an old update, it'll only replace existing files that are older than the ones it has.

the only thing you need to worry about is uninstalling patches, which is something i don't recommend! see here for why!

it won't be showing up because your system isn't matching the requirements for some reason...

the only requirements for this module are that: 1) system is English, 2) it's 2K3_SP1_X86 or 2K3_SP2_X86 and 3) system32:\dns.exe exists

'system32:' should be pointing to %system32%. lets try to test that...

1) grab the attached file (right click and save), rename the .txt extension to .apm

2) stick it in C:\Program Files\AutoPatcher\modules\

3) temporarily move all *.rti files in C:\Program Files\AutoPatcher\ elsewhere to speed up autopatcher's load time (will skip integrity checks)

4) run autopatcher, allow it to "install" the test module

5) open C:\autopatcher_testdir.txt and see what it contains, it should report that system32: points to C:\WINDOWS\System32. if it doesn't then we may have a bug in autopatcher.exe, if it is, you need to check that dns.exe exists where it's supposed to

test.txt

Apprentice

marrone

Posted
  • Author
Posted (edited)
run the installer manually to get your system patched, thats the most important thing right now, don't be afraid, if it didn't apply to your system it would refuse to install. likewise you don't need to be afraid about installing an old update, it'll only replace existing files that are older than the ones it has.

the only thing you need to worry about is uninstalling patches, which is something i don't recommend! see here for why!

it won't be showing up because your system isn't matching the requirements for some reason...

the only requirements for this module are that: 1) system is English, 2) it's 2K3_SP1_X86 or 2K3_SP2_X86 and 3) system32:\dns.exe exists

'system32:' should be pointing to %system32%. lets try to test that...

1) grab the attached file (right click and save), rename the .txt extension to .apm

2) stick it in C:\Program Files\AutoPatcher\modules\

3) temporarily move all *.rti files in C:\Program Files\AutoPatcher\ elsewhere to speed up autopatcher's load time (will skip integrity checks)

4) run autopatcher, allow it to "install" the test module

5) open C:\autopatcher_testdir.txt and see what it contains, it should report that system32: points to C:\WINDOWS\System32. if it doesn't then we may have a bug in autopatcher.exe, if it is, you need to check that dns.exe exists where it's supposed to

Ok, did all that. (And thanks for the testing here)

The output reads:

sys32 dir: C:\WINDOWS\system32\

And, looking in C:\WINDOWS\system32 shows dns.exe at 433KB, dated 2/17/2007 2:50AM, file version 5.2.3790.3959

I'll try manually putting it in now...but I figured if there is indeed a bug, it would be something you would want to know about. Though no-one else seems to be posting about the problem :(.

<edit> it seems to install manually correctly...so the patch itself felt it was necessary. So...who knows?

-Mike

Edited by marrone
Grand Master

+theblazingangel MVC

Posted
  • MVC
Posted

are you absolutely sure KB935966 does not appear in the critical section f the selection window :s

if so, try this test module, i just want to see if it appears in the selection window. if it doesn't, delete the following two lines, save, and try again

ComponentFile=system32:\dns.exe
ComponentVersion=ANY

don't forget to rename .txt to .apm!

KB935966_test.txt

Apprentice

marrone

Posted
  • Author
Posted
are you absolutely sure KB935966 does not appear in the critical section f the selection window :s

if so, try this test module, i just want to see if it appears in the selection window. if it doesn't, delete the following two lines, save, and try again

ComponentFile=system32:\dns.exe
ComponentVersion=ANY

don't forget to rename .txt to .apm!

Ok, let me first state that after running the patch manually on one of my servers (which seemed successful), and rebooting, it STILL did not appear in the Autopatcher listing. All patches there are blue (with one exception...for outlook express...which either doesn't want ot install, or isn't detecting it...but I'm not concerned with that right now). But 935966 does not appear...even though it's been installed manually.

So I ran your test.

The first time through, nothing showed up.

So I deleted the two lines (I'll assume that checks for dns.exe). Once I deleted your two lines and reran, the "test patch" showed up.

I guess it's not finding dns.exe.

Trust me. It's there. c:\windows\system32\dns.exe

And DNS seems to be working just fine.

Very perplexing!

-Mike

Grand Master

+theblazingangel MVC

Posted
  • MVC
Posted (edited)

what about if you just simply add the first of those two lines back in, does it work then?

i'm probably going to have to report it as a bug to raptor

update: email sent to raptor about it.

please can you confirm the version number of autopatcher.exe

Edited by theblazingangel
Apprentice

marrone

Posted
  • Author
Posted (edited)
what about if you just simply add the first of those two lines back in, does it work then?

i'm probably going to have to report it as a bug to raptor

update: email sent to raptor about it.

please can you confirm the version number of autopatcher.exe

Autopatcher file version: 5.6.0.81

Added only first line in. Test module shows up.

closed autopatcher.

Added 2nd line back in. reran autopatcher.

Test module not there.

Verified c:\windows\system32\dns.exe exists.

-Mike

Edited by marrone
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • LibreWolf 152.0-1

      By Copernic · Posted

      LibreWolf 152.0-1 by Razvan Serea LibreWolf is an independent “fork” of Firefox, with the primary goals of privacy security and user freedom. It is the community run successor to LibreFox. LibreWolf is designed to increase protection against tracking and fingerprinting techniques, while also including a few security improvements. This is achieved through our privacy and security oriented settings and patches. LibreWolf also aims to remove all the telemetry, data collection and annoyances, as well as disabling anti-freedom features like DRM. LibreWolf features: Latest Firefox — LibreWolf is compiled directly from the latest build of Firefox Stable. You will have the the latest features, and security updates. Independent Build — LibreWolf uses a build independent of Firefox and has its own settings, profile folder and installation path. As a result, it can be installed alongside Firefox or any other browser. No phoning home — Embedded server links and other calling home functions are removed. In other words, minimal background connections by default. User settings updates Extensions firewall: limit internet access for extensions. Multi-platform (Windows/Linux/Mac/and soon Android) Community-Driven Dark theme (classic and advanced) LibreWolf privacy features: Delete cookies and website data on close. Include only privacy respecting search engines like DuckDuckGo and Searx. Include uBlockOrigin with custom default filter lists, and Tracking Protection in strict mode, to block trackers and ads. Strip tracking elements from URLs, both natively and through uBO. Enable dFPI, also known as Total Cookie Protection. Enable RFP which is part of the Tor Uplift project. RFP is considered the best in class anti-fingerprinting solution, and its goal is to make users look the same and cover as many metrics as possible, in an effort to block fingerprinting techniques. Always display user language as en-US to websites, in order to protect the language used in the browser and in the OS. Disable WebGL, as it is a strong fingerprinting vector. Prevent access to the location services of the OS, and use Mozilla's location API instead of Google's API. Limit ICE candidates generation to a single interface when sharing video or audio during a videoconference. Force DNS and WebRTC inside the proxy, when one is being used. Trim cross-origin referrers, so that they don't include the full URI. Disable link prefetching and speculative connections. Disable disk cache and clear temporary files on close. Disable form autofill. Disable search and form history...and more. LibreWolf 152.0-1 changelog: Upstream release, see the Firefox 152.0 Release Notes Notable changes: The AppImages are now built on Codeberg along with the other releases We have decided to wait a bit longer to enable the settings redesign, due to use being aware of multiple upstream issues Download: LibreWolf 64-bit | Portable 64-bit | ~100.0 MB (Open Source) Download: ARM64 | Portable ARM64 Links: LibreWolf Home Page | Addons | Screenshot | Reddit Get alerted to all of our Software updates on Twitter at @NeowinSoftware
    • Epic Games says Unreal Engine 6 will help developers "build content faster" using AI models

      By +pmrd · Posted

      hahahahah wow hahahah you sure got me there hahahahahah, you know that bad performance is always due to poor optimization by the developers, right???
    • This is how much iPhone 18 Pro could cost after Apple's price hike confirmed

      By Snake Doc · Posted

      "I know for a fact I'll never own one of these." This is why choice is better than government regulation. Globaly Android has something like 72% of the smartphone market. Granted the vast majority of that is low end phones. Apple can and should charge whatever they want. The market will decide if it is too much.
    • Epic Games says Unreal Engine 6 will help developers "build content faster" using AI models

      By ExecutiveFunction404 · Posted

      I dont mind the AI stuff the time its released its going to be super mature. My hope is the AI can optimise or at least work out if things could be and the devs prompted. This would help offset sloppy copy/paste and asset flips resulting is rushed bloated games.
    • Rockstar confirms Grand Theft Auto VI pre-orders begin next week, unveils cover art

      By grik · Posted

      its an online game, the better part of it, piracy is not the problem. If that was so, it wouldnt release 1 year after for PCs, the piracy will be there Its probably some contract with the console brands

  • Recent Achievements

    • Week One Done
      Huge Trailer earned a badge
      Week One Done
    • Week One Done
      Classifyskilleducation earned a badge
      Week One Done
    • One Month Later
      eurospharma62 earned a badge
      One Month Later
    • Week One Done
      With What earned a badge
      Week One Done
    • Week One Done
      Harris Gilbert earned a badge
      Week One Done

  • Popular Contributors

    1. 1
      +primortal
      559
    2. 2
      +Edouard
      168
    3. 3
      PsYcHoKiLLa
      72
    4. 4
      Michael Scrip
      64
    5. 5
      ATLien_0
      64
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!