TechNet Home > TechNet Security > Security Advisories

Microsoft Security Advisory (909444)

Various Issues After Installing Microsoft Security Bulletin MS05-051 on Systems That Have Non-default File Permissions

Published: October 14, 2005

Microsoft is aware of reports of isolated issues after deployment with Microsoft Security Bulletin MS05-051. We are working with a limited number of affected customers to help resolve these issues.

Systems that do not have the default Access Control List (ACL) settings in the %Windir%\Registration folder may experience various problems after installing MS05-051. The update helps protect against attacks seeking to exploit MS05-051, however this isolated set of issues might impact systems after installation of the update.

Based on feedback from those customers, Microsoft has published Microsoft Knowledge Base Article 909444, which addresses the issue.

We continue to urge customers to deploy MS05-051 and all recent security updates. For additional information about security updates, please visit the following Web site.

Customers who experience installation issues should contact Microsoft Product Support Services. Product Support Services in North America can be contacted for help with security update issues or viruses at no charge by using the PC Safety line (1-866-PCSAFETY). For more information about available support options, see the Microsoft Help and Support Web site.

General Information

Overview

Purpose of Advisory: Notification of a potential issue that could be encountered after installing MS05-051.

Advisory Status: Advisory published. Because this issue is already addressed as part of the MS05-051 security bulletin, no additional update is required.

Recommendation: Install the MS05-051 security update. If needed, review the suggested workarounds and configure as appropriate.

ReferencesIdentification

Microsoft Knowledge Base Article

909444

Security Bulletin

MS05-051

This advisory discusses the following software.

Related Software

Microsoft Windows 2000 Service Pack 4

Microsoft Windows XP Service Pack 1

Microsoft Windows XP Service Pack 2

Microsoft Windows XP Professional x64 Edition

Microsoft Windows Server 2003

Microsoft Windows Server 2003 for Itanium-based Systems

Microsoft Windows Server 2003 Service Pack 1

Microsoft Windows Server 2003 with SP1 for Itanium-based Systems

Microsoft Windows Server 2003 x64 Edition

Top of sectionTop of section

Frequently Asked Questions

What is the scope of the advisory?
This advisory addresses a concern about a potential issue that may be encountered after installing the MS05-051 security update on a system on which the default Access Control List (ACL) has been modified. This issue could result in unexpected behavior by applications that utilize COM objects.

What causes this issue?
This issue is caused by the modification of default Access Control List settings on the %Windir%/Registration folder. After installing the MS05-051 security update, some services and applications cannot access required system files in the %Windir%/Registration folder.

Top of sectionTop of section

Suggested Actions

Review the Microsoft Knowledge Base Article that is associated with this advisory

Customers who are interested in learning more about this issue should review Microsoft Knowledge Base Article 909444.

Keep Windows updated

All Windows users should apply the latest Microsoft security updates to help make sure that their computers are as protected as possible. If you are not sure whether your software is up to date, visit the Windows Update Web site, scan your computer for available updates, and install any high-priority updates that are offered to you. If you have Automatic Updates enabled, the updates are delivered to you when they are released. However, you have to make sure that you install them.

Workarounds

Workarounds for this issue are available in Microsoft Knowledge Base Article 909444.

Top of sectionTop of section
Top of sectionTop of section

Resources:

You can provide feedback by completing the form by visiting the following Web site.

Customers in the U.S. and Canada can receive technical support from Microsoft Product Support Services. For more information about available support options, see the Microsoft Help and Support Web site.

International customers can receive support from their local Microsoft subsidiaries. For more information about how to contact Microsoft for international support issues, visit the International Support Web site.

The Microsoft TechNet Security Web site provides additional information about security in Microsoft products.

Disclaimer:

The information provided in this advisory is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

Revisions:

October 14, 2005: Advisory published


Top of pageTop of page