Main HTTP Download v2.001 (link updated): Click Here 
  eDonkey/Overnet Network: (CLICK HERE FOR THE FREE eDONKEY CLIENT) Click Here
   Gnutella Network:  (CLICK HERE FOR THE FREE SHAREAZA CLIENT) Click Here
  Main HTTP Download v3.0: Click Here 
  eDonkey/Overnet Network: (CLICK HERE FOR THE FREE eDONKEY CLIENT) Click Here
   Gnutella Network:  (CLICK HERE FOR THE FREE SHAREAZA CLIENT) Click Here

If you're able to do so please share the file with others. Bandwidth is limited and I would ask that you please share. Many thanks.


Keyser Soze's XP Security Pack 3.0 (December 2004) - Size: 59.72mb

Keyser Soze's XP Security Pack 3.0 is available for download above - via the website, the eDonkey/Overnet Network (eMule), or the Gnutella network (Shareaza etc). As ever, if you have any suggestions for new Hotfixes you'd like to see included in upcoming versions of the security pack, or you would like to host the security pack for download - please just click here to contact me.

__________________________________________


On November 15 2004 in an interview with Gary Schare, (Director of Windows Product Management at Microsoft), it was stated that no standalone release of Internet Explorer would be available until the release of Longhorn - the next version of Windows.

Exactly three months to the day on 15 February 2005, it was confirmed by Microsoft's Dean Hachamovitch, that Internet Explorer 7.0 will be released this Summer 2005 - well ahead of the release of Longhorn in 2006.

It has to be said that as a result of the statement made by Gary Schare, I changed to using Firefox as my browser of choice and see no reason to return to using Internet Explorer. I believe that IE7 will contain security fixes and enhancements but no new features such as tabbed browsing or plugins. Therefore I will not be looking at making a security pack for IE6.


Contents:
________

MSKB Q


  • Q305601 - CRT String Format Functions May Underwrite Buffer

  • Q305601 - CRT String Format Functions May Underwrite Buffer

  • Q309521 - Windows XP Update Package October 25 2001

  • Q311967 - Unchecked buffer in the Multiple UNC Provider Could Enable Code Execution

  • Q313450 - Malformed Data Transfer Request can Cause Windows SMTP Service to fail

  • Q314147 - Unchecked Buffer in SNMP Service Could Enable Arbitrary Code to be Run

  • Q314862 - Background Intelligent Transfer Service Update

  • Q315000 - Unchecked Buffer in Universal Plug and Play can Lead to System Compromise

  • Q315403 - Stop 0x000000ED Error Message When Volume on IDE Drive with Caching Enabled Is Mounted

  • Q317277 - System Recovery Error Appears After Every Reboot

  • Q318138 - Unchecked Buffer in Remote Access Service Phonebook Could Lead to Code Execution

  • Q319733 - April 2002 Cumulative Patch for Internet Information Services

  • Q319949 - Directory Corruption Disables XP Search Companion

  • Q323172 - Flaw in Certificate Enrollment Control Could Allow Deletion of Digital Certificates

  • Q323255 - Unchecked Buffer in Windows Help Facility Could Enable Code Execution

  • Q324096 - Request to SmartHTML Interpreter Could Monopolize Web Server CPU Resources

  • Q324380 - Cryptographic Flaw in RDP Protocol can Lead to Information Disclosure

  • Q326830 - Unchecked Buffer in Network Share Provider Can Lead to Denial of Service

  • Q327696 - Cumulative Patch for Internet Information Service

  • Q328310 - Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation

  • Q328940 - Flaw in Windows XP Help and Support Center Could Enable File Deletion

  • Q329115 - Certificate Validation Flaw Could Enable Identity Spoofing

  • Q329170 - Flaw in SMB Signing May Permit Group Policy to Be Modified

  • Q329256 - Inconsistent Gap Count Can Cause 1394 Devices to Not Enumerate

  • Q329390 - Unchecked Buffer in Windows Shell Could Enable System Compromise

  • Q329441 - You Cannot Create a Network Connection After You Restore Windows XP

  • Q329604 - PostScript Print Jobs Containing Type-1 Multiple Master Metrics Fonts Are Not Printed

  • Q329834 - Unchecked Buffer in PPTP Implementation Could Enable Denial of Service Attacks

  • Q331958 - Hard Disk May Become Corrupted When Entering Standby or Hibernation

  • Q810565 - Hyperlinks Open in Internet Explorer Instead of in Default Browser or Help and Support Center

  • Q810833 - Unchecked Buffer in Locator Service Could Lead to Code Execution

  • Q814078 - JScript 5.6 Security Patch for Windows XP

  • Q814995 - Some Program Compatibility Fixes Stop Working After You Install the 328310 Update

  • Q815021 - Unchecked Buffer in Windows Component May Cause Web Server Compromise

  • Q817606 - Buffer Overrun in Windows Could Lead to Data Corruption

  • KB823182 - Vulnerability in Authenticode Verification Could Allow Remote Code Execution

  • KB823559 - Buffer Overrun in the HTML Converter Could Allow Code Execution

  • KB824105 - Flaw in NetBIOS Could Lead to Information Disclosure

  • KB824151 - Vulnerability in WebDAV XML Message Handler Could Lead to a Denial of Service

  • KB825119 - Buffer Overrun in Windows Help and Support Center Could Lead to System Compromise

  • KB828035 - Buffer Overrun in Messenger Service Could Allow Code Execution

  • KB828741 - Security update replacement for Q331953, KB823980 and KB824146

  • KB835732 - ASN.1 Vulnerability Could Allow Code Execution

  • KB837001 - Vulnerability in the Microsoft Jet Database Engine Could Allow Code Execution

  • KB840315 - Vulnerability in HTML Help Could Allow Code Execution

  • KB840374 - Vulnerability in Help and Support Center Could Allow Remote Code Execution

  • KB840987 - Security update replacement for Q811493 and KB824141

  • KB841356 - Security update replacement for Q821557 and KB839645

  • KB841533 - Vulnerability in NetDDE Could Allow Remote Code Execution

  • KB841873 - Vulnerability in Task Scheduler Could Allow Code Execution

  • KB873339 - Vulnerability in HyperTerminal Could Allow Code Execution

  • KB873376 - Unchecked Buffer in File Decompression Functions Could Lead to Code Execution

  • KB885835 - Security update replacement for Q810577 and Q811493

  • KB885836 - Vulnerability in WordPad Could Allow Code Execution

  • Windows Media Player 8 Codecs, for Windows Media Players 7/8/9 - (released 28 June 2002)

  • Windows Media Player 9 Codecs, for Windows Media Players 7/8/9 - (released 19 December 2002)

  • Windows Media Player 9 Codecs [updated], for Windows Media Players 7/8/9 - (released 08 February 2003)


    •


    RELEASE NOTES:


    This program is Freeware. The distribution of this software is permitted
    and desired. This program comes to you as is, without any warranty. The
    manufacturer does not assume any responsibility for material, financial,
    mental, social, or any other damages which result from the use of this
    program.


    Welcome to Keyser Soze's XP Security Pack 2.001

    Before proceeding with the installation please read the following:

    - You must close all currently open programs.
    - You must choose a Custom Installation if the Official
    Microsoft Windows XP SP1 or SP1a is already installed.

    * The following are NOT included in this Security Pack
    installation - MSN Messenger updates, Windows Media
    Player updates, Movie Maker updates, Internet Explorer
    Updates, Java Virtual Machine updates or Media Center
    Edition updates.

    Windows must be rebooted after installation in order for all
    security updates to be applied successfully.

    You can find detailed information on each Hotfix by choosing
    a Custom Installation and clicking on the individual update. You
    will find information relating to the name of the file, a link to
    the relevant Microsoft KB article and a description of why the
    Hotfix is needed.

    If you have Windows XP SP1 or SP1a already installed, it is
    recommended that you choose a Custom Installation and deselect
    all files containing 'WXP_SP1_X86_ENU'.


    Keyser Soze's XP Security Pack 2.001 has been developed and
    brought to you by Keyser Soze - 05 April 2004.



    Windows Hotfix Installer
    Copyright © 2003-2004 Uwe Stoppel
    http://divine.hanau.net


    Version History
    ____________


    v3.0 - 16 December 2004
    - Added KB824151, KB837001, KB840315, KB840374, KB841533, KB841873,
    KB873339, KB885836
    - KB828741 replaces Q331953, KB823980 and KB824146
    - KB835732 replaces KB828028
    - KB840987 replaces Q811493 and KB824141
    - KB841356 replaces Q821557 and KB839645
    - KB873376 replaces Q329048
    - KB885835 replaces Q810577 and Q811493
    - Removed Q328145 (supersceded by Q329115)
    - Removed KB810217

    v2.001 - 05 April 2004
    - Added KB810217, Q810565, Q811493, Q821557, KB823182, KB824105, KB824141,
    KB824146, KB825119, KB828028, KB828035, Q832483.
    - Reintroduced Q329170.
    - Replaced Q823980 with KB824146.
    - Removed Q318089, Q331320, Q811630, Q816868.
    - Accurately renamed Q814078_JS56NEN.exe to js56nen.exe
    - Accurately renamed Q823559_WXP_SP2_X86_ENU.exe to
    WindowsXP-KB823559-x86-ENU.exe
    - Further simplified the name to Keyser Soze's XP Security Pack.
    - Added a Warranty of Disclaimer to the Setup Wizard.
    - Updated the FAQs, a few cosmetic changes & minor spelling corrections etc.
    *On a personal note, I would like to express my thanks to Jordan Russell
    for implementing Igor Pavlovs 7-Zip LZMA compression in Inno Setup. This
    has increased the overall compression of the security pack enormously.

    v1.002 - 25 July 2003
    - Added Q318089, Q319949, Q814995, Q816868, Q817606, Q821557, Q823559 &
    Q823980.
    - Ammended & updated the information relating to Q815021.
    - Added further details to the documentation included in the Q811493 rar
    file.
    - Added more detailed information to the readme (which includes updated
    details with regards to Q318202 & Q318203).
    - Added an FAQs text file for all the people who kept asking me questions.
    - Added the url address for the new Keyser Project forum.
    - Removed Q329170 as this was causing some users a few problems during
    setup. Im not sure whether the problem is fixable and Im not inclined to
    look into it any further. If you need this update, please get it from
    Windows Update.
    - Updated the installation text on the Setup Assistant & updated the
    graphics to give it more of an XP feel.
    - Simplified the name further to Keyser Soze's Unofficial XP Security Pack.

    v1.001 - 08 June 2003
    - Removed Q318202 & Q318203 due to unecessary install conflicts. These may
    be added in a future build.
    - Changed the title from Keyser_Soze's UNOFFICIAL Windows XP Pre-SP2 Update
    Pack [Security Version] to Keyser Soze's UNOFFICIAL Windows XP pre-SP2
    Security Pack.
    - Updated the readme & settings and added Version History.

    v1.0 - 04 June 2003
    - This was the first semi-publicly available build. Nothing much to report.



    Please report any bugs to: airesXPuk@hotmail.com