Operating System Upgrade Service Release 2000.4.3aSR4 (win-OS-Upgrade-K9.2000-4-3a-sr4.exe)
Release date: 19 September 2006
Document Revision 1
Microsoft provides monthly releases of security hotfixes on the 2nd Tuesday of each month. Cisco’s monthly OS Service Release is scheduled to post on the 3rd Tuesday of each month.
Cisco will continue to test and release Microsoft hotfixes that meet our criteria for Critical hotfixes in 1 business day. Any applicable critical hotfix released by Microsoft will be added to the Cisco IP Telephony Operating System, SQL Server, Security Updates document with and explanation about whether or not it is critical for Cisco IP Telephony servers and when it will be released by Cisco.
Caution: Do not apply this service release with OS version 2000.4.2 or previous OS release trains. This service release is only compatible with the OS 2000.4.3 and 2000.4.3a release trains. You should apply this service release to all servers in your cluster. This installation causes call-processing interruptions and requires a reboot. Close all programs before proceeding including Internet Explorer to avoid conflicts with the software being installed and/or upgraded.
General
Note: If the following messages are displayed during the
installation, please click “OK” and continue. These will
not affect this upgrade. The causes for these messages are under
investigation:
* The
Instruction at "0X0cda00dd8" referenced memory at
"0X0cda00dd8". The memory could not be read. Click OK to
terminate the program (CSCeb31088)
* The Instruction at "0X000000000"
referenced memory at "0X000000000". The memory could not be
read. Click OK to terminate the program (CSCed45218)
* AddAnonymousWebUserAccess
failure during CallManager
installations (CSCed27066)
Naming Convention Change
For operating system, SQL Server, and Cisco IP telephony application software updates, Cisco has replaced the term, support patch, with the term, service release. Service releases provide the same functionality as support patches; that is, they provide bug fixes, etc.
Review the file naming convention before you apply the software update.
<software_name>-<software version>_<sr(x)>
<software name> equals the name of the application; <software version> equals the maintenance release; <sr(x)> equals the version of the service release
For example, review the following file name:
win-OS-Upgrade-K9.2000-4-2sr2.exe
win-OS-Upgrade indicates that this file is an operating system upgrade file; K9 indicates that you download the file from the Cisco cryptographic website; 2000-4-2 indicates the operating system maintenance release version, and sr2 indicates that this file is the first version of the operating system upgrade service release.
Contents
This document contains information on the following topics. Click the hyperlink to go directly to the section.
This section provides information about how to receive email notifications when new updates post to Cisco Connection Online.
· Information about This Service Release
This section provides general information and specifies the affected Cisco IP telephony applications, supported servers, and hotfixes that are automatically installed with this software update.
· Installing the Service Release
This section provides procedures for installing this service release on supported servers.
· Verifying Hotfixes By Using Microsoft Baseline Security Analyzer and QFEcheck
This section provides a list of hotfixes that Microsoft Baseline Security Analyzer and QFEcheck verify. See this section if you want to verify which hotfixes exist on your server.
This section provides information about how to uninstall the Microsoft hotfixes.
Cisco CallManager Notification Tool: Cisco has replaced the current Cisco CallManager notification tool with a new, more robust notification tool that is based on your Cisco.com profiles. This new tool delivers email notifications for individual Cisco voice products that you select. Follow the steps below to sign up for the Cisco Voice Technology Group Subscription Tool:
· Login with your Cisco.com account information at this link: http://www.cisco.com/cgi-bin/Software/Newsbuilder/Builder/VOICE.cgi
· Select "CallManager Cryptographic Software including OS updates" to receive notification when new operating system updates are posted.
· Select any other products updates that you wish to receive.
· Click update at the bottom of the page.
· Confirm your selections.
You may see this message at the bottom of the page: "Your Profile Currently Indicates that you do not wish to receive email from Cisco.”
To be able to receive information updates, you must update your email preferences. Click on the link to update your email preferences (located in the Other Information section). Click submit when you are done.
If you have enabled email notification, you may exit now. If you have not enabled email notification, then you will need to repeat the steps above.
This new software notification tool requires a valid Cisco.com login. If you do not currently have a Cisco.com password, please register with Cisco.com at: http://tools.cisco.com/RPF/register/register.do
Cisco PSIRT Advisory Notification Tool: This email service provides automatic notification of all Cisco Security Advisories that are released by the Cisco Product Security Incident Response Team (PSIRT). Security Advisories, which describe security issues that directly impact Cisco products, provide a set of required actions to repair these products. To subscribe, click the following URL and perform the tasks as directed on the web page: http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html#SecurityInfo
Information about This Service Release
Review the following information before you install the service release:
Cumulative Severity: Critical
Description: OS Upgrade 2000.4.3a Service Release 4
· Minimum OS requirements: Any OS version upgraded with win-OS-Upgrade-K9.2000-4-3a.exe or Fresh install of OS 2000.4.3 or 2000.4.3a
· Affected Cisco IP Telephony Applications: All versions of Cisco CallManager and all compatible versions of Cisco IP Interactive Voice Response (IP IVR), Cisco IP Call Center Express (IPCC Express), Cisco Personal Assistant (PA), Cisco Emergency Responder (CER), Cisco Conference Connection (CCC), Cisco Customer Voice Portal (CVP), Cisco IP Queue Manager and Cisco MeetingPlace.
· As of March 31, 2005 the Integrated Communications System (ICS-7750) is not supported by this and future OS service releases and is blocked from installing them.
· Supported Servers: All of the following Cisco Media Convergence Servers (MCS) and Cisco-approved, customer-provided Compaq/HP and IBM servers:
IBM Servers:
· IBM X340 Pentium III 1000MHz
· IBM X342 Pentium III 1266MHz
· IBM X330 Pentium III 800, 866, 933, 1000MHz
· IBM X330 Pentium III 1266MHz
HP Servers:
See the End-of-Life Policy for more details.
· New HotFixes/Resolutions in this release: CSCsf26883, CSCsf10966, CSCsf25340, CSCsg01904, CSCsg01902, CSCsg01899, CSCsg01895, CSCsf17895, MS06-042 KB918899v3, MS06-053 KB920685
· Install time: < 15 Minutes per server
· Reboot required: Yes
· Replaces previously posted files: 2000.4.3aSR1, 2000.4.3aSR2, 2000.4.3aSR3
· Log File Location: C:\Program Files\Common Files\Cisco\Logs\OS
· Known Caveats: Please refer to the ‘Known Caveats’ section below.
Note: Apply this service release to all servers in your cluster.
Caution: This installation causes call-processing interruptions and requires a reboot. Close all programs before proceeding including Internet Explorer.
This service release includes the following hotfixes:
|
Bulletin |
Knowledge Base Article or Cisco Defect |
Description |
1st Released in Support Patch/Service Release: |
Uninstallation Supported
|
|
MS04-003 |
Q832483 |
Buffer Overrun in MDAC Function Could Allow Code Execution |
2000-2-5sr6 |
No |
|
MS04-028 |
KB833989 |
Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution |
2000.2.6sr4 |
Yes |
|
MS05-009 |
KB885492 KB890261 KB887472 |
Vulnerability in PNG Processing Could Allow Remote Code Execution |
2000.2.7sr2 |
Yes |
|
MS05-026 |
KB896358 |
Vulnerability in HTML Help Could allow Remote Code Execution |
2000.2.7sr5 |
Yes |
|
MS05-027 |
KB896422 |
Vulnerability in Server Message Block Could Allow Remote Code Execution |
2000.2.7sr5 |
Yes |
|
MS05-030 |
KB897715 |
Cumulative Security Update in Outlook Express |
2000.2.7sr5 |
Yes |
|
MS05-032 |
KB890046 |
Vulnerability in Microsoft Agent Could Allow Spoofing |
2000.2.7sr5 |
Yes |
|
MS05-036 |
KB901214 |
Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution |
2000.2.7sr6 |
Yes |
|
MS05-040 |
KB893756 |
Vulnerability in Telephony Service Could Allow Remote Code Execution |
2000.2.7sr7 |
Yes |
|
MS05-041 |
KB899591 |
Vulnerability in Remote Desktop Protocol Could Allow Denial of Service |
2000.2.7sr7 |
Yes |
|
MS05-042 |
KB899587 |
Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing |
2000.2.7sr7 |
Yes |
|
MS05-043 |
KB896423 |
Vulnerability in Print Spooler Service Could Allow Remote Code Execution |
2000.2.7sr7 |
Yes |
|
MS05-044 |
KB905495 |
Vulnerability in Windows FTP Client Could Allow File Transfer Location Tampering |
2000.2.7sr8 |
Yes |
|
MS05-045 |
KB905414 |
Vulnerability in Network Connection Management Could Allow Denial of Service |
2000.2.7sr8 |
Yes |
|
MS05-046 |
KB899589 |
Vulnerability in Client Services for Netware Could Allow Remote Code Execution |
2000.2.7sr8 |
Yes |
|
MS05-047 |
KB905749 |
Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege |
2000.2.7sr8 |
Yes |
|
MS05-048 |
KB901017 |
Vulnerability in Microsoft Collaboration Objects Could Allow Remote Control Execution |
2000.2.7sr8 |
Yes |
|
MS05-049 |
KB900725 |
Vulnerability in Windows Shell Could Allow Remote Control Execution |
2000.2.7sr8 |
Yes |
|
MS05-050 |
KB904706 |
Vulnerability in DirectShow Could Allow Remote Code Execution |
2000.2.7sr8 |
Yes |
|
MS05-053 |
KB896424 |
Vulnerabilities in Graphics Rendering Engine Could Allow Code Execution |
2000.4.2sr1 |
Yes |
|
MS05-054 |
KB905915 |
Cumulative Security Update for Internet Explorer |
2000.4.2sr2 |
Yes |
|
MS05-055 |
KB908523 |
Vulnerability in Windows Kernel Could Allow Elevation of Privilege |
2000.4.2sr2 |
Yes |
|
N/A |
KB831577 |
IIS Memory Leak when HTTP Compression Used |
2000.4.2sr2 |
Yes |
|
N/A |
KB834010 |
DeadLock Occurs when Program Uses Certain WMI Calls |
2000.4.2sr2 |
Yes |
|
MS06-001 |
KB912919 |
Vulnerabilities in Graphics Rendering Engine Could Allow Code Execution |
2000.4.2sr3 |
Yes |
|
MS06-002 |
KB908519 |
Vulnerability in Embedded Web Fonts Could Allow Remote Code Execution |
2000.4.2sr3 |
Yes |
|
N/A |
CSCsd14924 KB823818 |
MPWeb IIS stop responding due to ASP buffering leading to out of memory |
2000.4.2sr4 |
Yes
|
|
MS06-005 |
KB911565 |
Vulnerability in Windows Media Player Could Allow Remote Code Execution |
2000.4.2sr4 |
Yes |
|
MS06-006 |
KB911564 |
Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution |
2000.4.2sr4 |
Yes |
|
N/A |
CSCsd18255 |
SQL remains in Starting State or CCM fails to start after OS2000.4.2 upg |
2000.4.2sr5a |
No |
|
|
CSCsd45211 |
Need to uninstall CScsd11211 after end of CommonWealth Games |
2000.4.2sr6 |
No |
|
MS06-013 |
KB912812 |
Cumulative Security Update for Internet Explorer (912812) (Replaces MS05-054) |
2000.4.2sr6 |
Yes |
|
MS06-014 |
KB911562 |
Vulnerability in the Microsoft Data Access Components (MDAC) Function Could Allow Code Execution (911562) |
2000.4.2sr6 |
Yes |
|
MS06-015 |
KB908531 |
Vulnerability in Windows Explorer Could Allow Remote Code Execution (908531) |
2000.4.2sr6 |
Yes |
|
MS06-016 |
KB911567 |
Cumulative Security Update for Outlook Express (911567) (Replaces MS05-030) |
2000.4.2sr6 |
Yes |
|
|
CSCsd96901 |
KB911562 not identified after installation |
2000.4.2sr6 |
N/A |
|
MS06-018 |
KB913580 |
Vulnerability in Microsoft Distributed Transaction Coordinator Could Allow Denial of Service (replaces MS05-051 KB902400) |
2000.4.2sr7 |
Yes |
|
|
KB822720 |
The computer stops responding (hangs) on boot in Windows 2000 Server, or you receive a "Stop 0x00000080" error message when you add or remove a hot swap drive |
2000.4.2sr7 |
Yes |
|
|
CSCse04719 |
With 2 g RAM or more installed Memory.dmp file will be incomplete |
2000.4.2sr7 |
No |
|
|
CSCsd53918 |
MCS server rebooted with bugcheck |
2000.4.2sr7 |
No |
|
|
CSCsd95726 |
CD ROM icon missing after SR upgrade |
2000.4.2sr7 |
No |
|
|
CSCse47327 |
high cpu utilization by ccm.exe after upgrade to 2000.4.2sr7 Reverses out CSCsc55016 added in 2000.4.2sr7. |
2000.4.2sr7a |
No |
|
MS06-021 |
KB916281 |
Cumulative Security Update for Internet Explorer (replaces MS06-013 KB912812) |
2000.4.2sr8 |
Yes |
|
MS06-023 |
KB917344 |
Vulnerability in Microsoft JScript Could Allow Remote Code Execution |
2000.4.2sr8 |
No |
|
MS06-024 |
KB917344 |
Vulnerability in Windows Media Player Could Allow Remote Code Execution |
2000.4.2sr8 |
Yes |
|
MS06-025 |
KB911280 |
Vulnerability in Routing and Remote Access Could Allow Remote Code Execution |
2000.4.2sr8 |
Yes |
|
|
CSCse32811 |
RealVNC allows remote access to Win2k server console without password |
2000.4.2sr8 |
Yes |
|
MS06-030 |
KB914389 |
Vulnerability in Server Message Block Could Allow Elevation of Privilege |
2000.4.2sr8 |
Yes |
|
MS06-031 |
KB917736 |
Vulnerability in RPC Mutual Authentication Could Allow Spoofing |
2000.4.2sr8 |
Yes |
|
MS06-032 |
KB917953 |
Vulnerability in TCP/IP Could Allow Remote Code Execution |
2000.4.2sr8 |
Yes |
|
|
CSCse54942 |
Undefined device on 7815I2 with OS 2000.4.3
|
2000.4.3aSR1 |
No |
|
MS06-025 |
KB911280 v2 |
Vulnerability in Routing and Remote Access Could Allow Remote Code Execution |
2000.4.3aSR2 |
Yes |
|
|
CSCse61586 |
OS 2000.4.2 and 2000.4.3 missing drivers for USB DAT72 drive |
2000.4.3aSR2 |
No |
|
MS06-034 |
KB917537 |
Vulnerability in Microsoft Internet Information Services using Active Server Pages Could Allow Remote Code Execution (917537) |
2000.4.3aSR2 |
Yes |
|
MS06-035 |
KB917344 |
Vulnerability in Server Service Could Allow Remote Code Execution (917159) |
2000.4.3aSR2 |
Yes |
|
MS06-036 |
KB917344 |
Vulnerability in DHCP Client Service Could Allow Remote Code Execution (914388) |
2000.4.3aSR2 |
Yes |
|
|
CSCse79354 |
Remove fix for CSCsd62235 in 2000.4.3aSR2 |
2000.4.3aSR2 |
No |
|
MS06-040 |
KB921883 |
Vulnerability in Server Service Could Allow Remote Code Execution (921883) |
2000.4.3aSR3 |
Yes |
|
MS06-041 |
KB920683 |
Vulnerability in DNS Resolution Could Allow Remote Code Execution (920683) |
2000.4.3aSR3 |
Yes |
|
MS06-042 |
KB918899 |
Cumulative Security Update for Internet Explorer (918899) |
2000.4.3aSR3 |
Yes |
|
MS06-044 |
KB917008 |
Vulnerability in Microsoft Management Console Could Allow Remote Code Execution (917008) |
2000.4.3aSR3 |
Yes |
|
MS06-046 |
KB922616 |
Vulnerability in HTML Help Could Allow Remote Code Execution (922616) |
2000.4.3aSR3 |
Yes |
|
MS06-051 |
KB917422 |
Vulnerability in Windows Kernel Could Result in Remote Code Execution (917422) |
2000.4.3aSR3 |
Yes |
|
MS06-045 |
KB921398 |
Vulnerability in Windows Explorer Could Allow Remote Code Execution (921398) |
2000.4.3aSR3 |
Yes |
|
MS06-049 |
KB920958 |
Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958) |
2000.4.3aSR3 |
Yes |
|
MS06-050 |
KB920670 |
Vulnerabilities in Microsoft Windows Hyperlink Object Library Could Allow Remote Code Execution (920670) |
2000.4.3aSR3 |
Yes |
|
|
CSCse08287 |
MCS OS SR needs to check for and report back errors |
2000.4.3aSR3 |
|