Microsoft KB Archive/927978

= MS06-071: Security update for Microsoft XML Core Services 4.0 =

Article ID: 927978

Article Last Modified on 10/4/2007

-

APPLIES TO


 * Microsoft XML Core Services 4.0

-



INTRODUCTION
Microsoft has released security bulletin MS06-071. The security bulletin contains all the relevant information about the security update. This information includes file manifest information and deployment options. To view the complete security bulletin, visit one of the following Microsoft Web sites:  Home users:

http://www.microsoft.com/athome/security/update/bulletins/200611.mspx

 IT professionals:

http://www.microsoft.com/technet/security/bulletin/MS06-071.mspx





Known issues with this security update
 You are repeatedly offered this update.

Different versions of MSXML are included with various Microsoft products, such as Windows, Internet Explorer, Microsoft Office, and Microsoft SQL Server, as well as some third-party products. You may be offered this update again if you install a new product or if you update a product that includes a different version of MSXML than the one that you already have. For more information about the different MSXML versions that are available or included with various Microsoft products or software updates, click the following article number to view the article in the Microsoft Knowledge Base:

269238 List of Microsoft XML Parser (MSXML) versions

 Security update 927978 for MSXML 4.0, for MSXML 4.0 SP1, and for MSXML 4.0 SP2 does not support the complete removal of MSXML 4.0 because this version of MSXML is installed in side-by-side mode. To work around this issue, follow these steps:  Remove security update 927978 by using the Add or Remove Programs item in Control Panel. Delete the MSXML4.dll file from the %SystemRoot%\System32 folder.</li> Repair the previous installation of MSXML 4.0 by using the Add or Remove Programs item in Control Panel.</li></ol>

The earlier versions of the Msxml4.dll and Msxml4r.dll files are restored to both the side-by-side folder and the %SystemRoot%\System32 folder.</li> You may receive the following error message when you install this security update from Windows Update:

Could not register type library for file c:\Windows\system32\msxml4.dll. Contact your support personnel.

When this error occurs, you may also note information that resembles the following in the log file:

Error 1911. Could not register type library for file c:\Windows\system32\msxml4.dll. Contact your support personnel.

MSI (s) (20:18) [17:52:31:612]: Product: MSXML 4.0 SP2 (KB927978) -- Error 1911. Could not register type library for file c:\Windows\system32\msxml4.dll. Contact your support personnel.

Logging stopped: 11/10/2006 17:53:07
MSI (c) (34:20) [17:53:07:252]: Note: 1: 1708

MSI (c) (34:20) [17:53:07:260]: Product: MSXML 4.0 SP2 (KB927978) -- Installation failed.

MSI (c) (34:20) [17:53:07:267]: Windows Installer installed the product. Product Name: MSXML 4.0 SP2 (KB927978). Product Version: 4.20.9839.0. Product Language: 1033. Installation success or error status: 1603.

MSI (c) (34:20) [17:53:07:313]: Grabbed execution mutex.

MSI (c) (34:20) [17:53:07:319]: Cleaning up uninstalled install packages, if any exist

MSI (c) (34:20) [17:53:07:331]: MainEngineThread is returning 1603

Verbose logging stopped: 11/10/2006 17:53:07
To work around this problem, manually install the security update from the Microsoft Download Center, and then click Ignore when the error message is displayed. To confirm that the installation was successul, verify that the Msxml4.dll file in %systemroot%\System32 is version 4.20.9841.0.</li> Security update package 927978 may create a log file. The package names the log file KB927978.log. The package saves the log file inside a folder. The folder has a system generated name. The folder is in the root of a system drive. The path resembles the following:

C:\ \KB927978.log.

Note In this example, C is system drive.

Although it is optional, you can remove the log file and the folder.</li></ul>

More information about this security update
 Security update package 927978 for MSXML 4.0 is a complete installation package. You can use this package to install MSXML 4.0 Service Pack 2 (SP2) on a computer that has no earlier versions of MSXML 4.0 installed. You can also use this package to update an existing installation of MSXML 4.0, of MSXML 4.0 Service Pack 1 (SP1), or of MSXML 4.0 SP2.</li> Windows Update and Microsoft Update only offer security update package 927978 if an earlier version of MSXML 4.0, of MSXML 4.0 SP1, or of MSXML 4.0 SP2 is already installed on the computer.</li> MSXML 4.0 does not include a 64-bit parser and is only supported in WoW mode on 64-bit operating systems. Therefore, 64-bit MSXML 4.0 packages are not available for this security update. To update the 32-bit MSXML 4.0 parser in WoW mode on a 64-bit operating system, install the 32-bit MSXML 4.0 package. For example, to update a 64-bit English language operating system, install the Msxml4-KB927978-enu.exe package.</li> The file that security update package 927978 for MSXML 4.0 installs is listed in the following table.

Note This security update is installed in both side-by-side mode and in the %systemroot%\System32 folder.</li> To install this security update in quiet mode together with verbose logging and without restarting the computer, use a command that resembles the following:

msxml4-kb927978-enu.exe /q reboot=reallysuppress /l*v c:\kb927978.log

A detailed log of the installation process will be located in the file that you specify in the command. In this example, the file is C:\KB927978.log.</li> If the Msxml4.dll file is locked, the file may not be updated when you apply security update MS06-071 for MSXML 4.0, for MSXML 4.0 SP1, and for MSXML 4.0 SP2. To work around this issue, use the following commands to uninstall Msxml4.dll:   MsiExec.exe /uninstall {37477865-A3F1-4772-AD43-AAFC6BCFF99F} /passive </li>  Del %windir%\system32\msxml4.dll </li></ul> </li></ul>

Additional query words: update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE WinNT Win2000 KB927892 927892 KB928088 928088

Keywords: kbresolve kbexpertisebeginner kbqfe KB927978

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.