ContactCenter ServicePacksCompatibility HotfixApplicabilityNovember2011AACC6X

Legacy Avaya NES Contact Center Portfolio Service Packs Compatibility and Security Hotfixes Applicabilit
No further Service Pack and Security Hotfix updates will be provided to legacy releases
Microsoft Service Packs Compatibility List
Service Pack
Server Avaya NES CCMS 6.0 Standalone (NCC) (MD)
Windows Server 2003 SP2
Yes (validated with SUS0304)
Avaya NES CCMS 6.0 Co-res (MD) Yes (validated with CCMS SUS0304, CCMA SU04, CCT SUS0402) (Must require ADAM SP1 installed prior applying SP2 if ADAM is already installed prior SP2)
Avaya NES CCMS 6.0 Replication (MD)
Avaya NES CCMA 6.0 (MD)
Avaya NES CCMM Avaya NES CCT 6.0 (MD) 6.0 (MD)
Yes (requires SU04) (Must require ADAM SP1 installed prior Yes (validated with applying SP2 if Yes (validated with Yes (validated with SUS0401/SUS040 SU01+PEP0101+PE ADAM is already P0102+PEP0103) 2 release) installed prior SP2) SU04/SUS0401)
Windows Server 2003 SP1
Yes (requires SU02 Yes (validated with for CCMS and Yes (requires SU02) SUS0201 for CCMA) GA release)
Yes (requires SUS0201)
Yes (validated with Yes (validated with current GA current GA release) release)
Windows 2000 Update Rollup 1 for SP4
Windows 2000 SP4
Windows 2000 SP3
Windows 2000 SP2
Windows XP SP2
Windows XP SP3
Windows Vista SP1
Microsoft Security Hotfixes Applicability List

Server
Hotfix Title
Hotfix ID
Severity Rating
Date
Avaya NES CCMS 6.0 Standalone (NCC) (MD)
Avaya NES CCMS Avaya NES CCMS 6.0 Replication 6.0 Co-res (MD) (MD)
Vulnerability in Microsoft .NET Framework Could Allow Tampering (981343)
MS10-041
Important
8-Jun-10
Applicable (.NET Framework 2.0 is installed as part of the SU07 installation)
Applicable (.NET Framework 2.0 is installed as part of the SU07 installation)
Applicable (there is no known direct dependency with the .NET Framework, but the affected component is an integral part of the OS distribution. Recommend to apply the hotfix)
Vulnerability in Internet Information Services Could Allow Remote Code Execution (982666) Vulnerability in Microsoft SharePoint Could Allow Elevation of Privileges (2028554)
MS10-040
Important
8-Jun-10
Not Applicable (IIS should not be installed on CCMS server)
Applicable
Not Applicable (IIS should not be installed on CCMS Replication server)
MS10-039
Important
8-Jun-10
Not Applicable
Not Applicable
Not Applicable Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (2027452)
MS10-038
Important
8-Jun-10
Not Applicable (Microsoft Office product should not be installed on CCMS server)
Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Elevation of Privileges MS10-037 (980218)
Important
8-Jun-10
Applicable (There is no known direct dependency with the CCF Driver, but the affected component is a distributed component of the OS. Recommend to apply the hotfix)
Applicable (There is no known direct dependency with the CCF Driver, but the affected component is a distributed component of the OS. Recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerability in COM validation in Microsoft Office Could Allow Remote Code Execution (983235) MS10-036
Important
8-Jun-10
Not Applicable (Microsoft Office product should not be installed on CCMS server) No Dependency (IE should not be run on CCMS server) (Must apply CCMS_6.0_SUS_07 03 or later SU before applying MS10-035)
Not Applicable (Microsoft Office product should not be installed on CCMS server) No Dependency (IE should not be run on CCMS server) (Must apply CCMS_6.0_SUS_0 703 or later SU before applying MS10-035)
Cumulative Security Update for Internet Explorer MS10-035 (982381)
Critical
8-Jun-10
No Dependency (IE should not be run on CCMS Replication server)
Cumulative Security Update of ActiveX Kill Bits (980195) MS10-034
Critical
8-Jun-10
Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix)
Vulnerabilities in Media Decompression Could Allow Remote Code Execution MS10-033 (979902)
Critical
8-Jun-10
Applicable (there is no known direct dependency with the affectd components, but the components are integral part of the OS. Recommend to apply the hotfix)
Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (979559)
MS10-032
Important
8-Jun-10
Applicable
Applicable
Applicable Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) No Dependency (Outlook Express should not be run on CCMS Replication server)
Vulnerability in Microsoft Visual Basice for Applications Could Allow Remote Code Execution (978213)
MS10-031
Critical
11-May-10
Vulnerability in Outlook Express and Windows Mail Could Allow Remote Code Execution (978542) Vulnerability in Windows ISATAP Component Could Allow Spoofing (978338)
MS10-030
Critical
11-May-10
No Dependency (Outlook Express should not be run on CCMS server)
MS10-029
Moderate
13-Apr-10
Applicable
Applicable
Applicable Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (980094)
MS10-028
Important
13-Apr-10
Vulnerability in Windows Media Player Could Allow Remote Code Execution (979402)
MS10-027
Critical
13-Apr-10
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Microsoft MPEG Layer-3 Codecs Could Allow Remote Code Execution (977816) Vulnerability in Microsoft's Windows Media Service Could Allow Remote Code Execution (980858)
MS10-026
Critical
13-Apr-10
Applicable (There is no known direct dependency with the MPEG Layer-3 Codecs, but the affected component is a distributed component of the OS. Recommend to apply the hotfix)
MS10-025
Critical
13-Apr-10
Not Applicable
Not Applicable
Not Applicable
Vulnerabilities in Microsoft Exchange and Windows SMTP Service Could Allow Denial of Service (981832)
MS10-024
Important
13-Apr-10
Not Applicable (Microsoft Exchange and SMTP Service should not be installed on CCMS Applicable server)
Not Applicable (Microsoft Exchange and SMTP Service should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerability in Microsoft Office Publisher Could Allow Remote Code Execution (981160) Vulnerability in VBScript Scripting Enginer Could Allow Remote Code Execution (981169) Vulnerabilities in Windows Kernel could allow Elevation of Privilege (979683) Vulnerabilities in SMB Client Could Allow Remote Code Execution (980232) Vulnerabilities in Windows Could Allow Remote Code Execution (981210)
MS10-023
Important
13-Apr-10
MS10-022
Important
13-Apr-10
Applicable
Applicable
Applicable
MS10-021
Important
13-Apr-10
Applicable
Applicable
Applicable
MS10-020
Critical
13-Apr-01
Applicable
Applicable
Applicable
MS10-019
Critical
13-Apr-10
Applicable
Applicable
Applicable
Cumulative Security Updates for Internet Explorer (980182) MS10-018
Critical
30-Mar-10
No Dependency (IE should not be run on CCMS server) (Must apply CCMS_6.0_SUS_07 03 or later SU before applying MS10-018)
No Dependency (IE should not be run on CCMS server) (Must apply CCMS_6.0_SUS_0 703 or later SU before applying MS10-018)
No Dependency (IE should not be run on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
MS10-017
Important
9-Mar-10
Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (975561) MS10-016 Vulnerabilities in Windows Kernel could allow Elevation MS10-015 of Privilege (977165)
Important
9-Mar-10
Not Applicable
Important
9-Feb-10
Not Applicable Applicable Applicable (replaced (replaced by MS10by MS10-021) 021)
Not Applicable Applicable (replaced by MS10021)
Vulnerability in Kerberos Could Allow Denial of Service (977290)
MS10-014
Important
9-Feb-10
Applicable (there is no known direct dependency with the Kerberos, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (977935) MS10-013 Vulnerabilities in SMB Server Could Allow Remote Code MS10-012 Execution (971468)
Critical
9-Feb-10
Applicable (there is no known direct dependency with the DirectShow, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Important
9-Feb-10
Applicable
Applicable
Applicable
Vulnerabilities in Windows Client/Server Run-time Subsystem (CSRSS) Could Allow Elevation of Privilege (978037) Vulnerability in Windows Hyper-V Could Allow Denial of Service (977894)
MS10-011
Important
9-Feb-10
Applicable
Applicable
Applicable
MS10-010
Important
9-Feb-10
Not Applicable
Not Applicable
Not Applicable
Vulnerabilities in Windows TCP/IP Could Allow Remote MS10-009 Code Execution (974145)
Critical
9-Feb-10
Not Applicable
Not Applicable
Not Applicable
Critical
9-Feb-10
Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS10034)
Vulnerability in Windows Shell Handler Could Allow Remote Code Execution MS10-007 (975713) Vulnerabilities in SMB Client Could Allow Remote Code MS10-006 Execution (978251)
Critical
9-Feb-10
Applicable
Applicable
Applicable
Critical
9-Feb-10
Applicable
Applicable
Applicable
Vulnerability in Microsoft Paint Could Allow Remote Code Execution (978706)
MS10-005
Moderate
9-Feb-10
No Dependency (Microsoft Paint should not be run on CCMS server)
No Dependency (Microsoft Paint should not be run on CCMS server)
No Dependency (Microsoft Paint should not be run on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerabilities in Microsoft Office PowerPoint could allow Remote Code Execution (975416)
MS10-004
Important
9-Feb-10
Vulnerability in Microsoft Office (MSO) Could Allow Remote Code Execution (978214)
MS10-003
Important
9-Feb-10
Not Applicable (Microsoft Office product should not be installed on CCMS server) No Dependency (IE should not be run on CCMS server) (Must apply CCMS_6.0_SUS_07 03 or later SU before applying MS10-002) (replaced by MS10018)
Not Applicable (Microsoft Office product should not be installed on CCMS server) No Dependency (IE should not be run on CCMS server) (Must apply CCMS_6.0_SUS_0 703 or later SU before applying MS10-002) (replaced by MS10018)
Critical
21-Jan-10
No Dependency (IE should not be run on CCMS Replication server)
Vulnerability in the Embedded OpenType Font Engine Could Allow Remote Code Execution (972270) MS10-001
Critical
12-Jan-10
Applicable (there is no known direct dependency with the Embedded OpenType Font Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (there is no known direct dependency with the Embedded OpenType Font Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (there is no known direct dependency with the Embedded OpenType Font Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerability in Microsoft Office Project Could Allow Remote Code Execution (967183)
MS09-074
Critical
12-Dec-09
Vulnerabilities in WordPad and Office Text Coverters Could Allow Remote Code Execution (975539)
MS09-073
Important
12-Dec-09
Applicable (there is no known direct dependency with WordPad or Office text converter, but the affected component is an integral part of the OS. Recommend to apply the hotfix) No Dependency (IE should not be run on CCMS server) (Must apply CCMS_6.0_SUS_07 03 or later SU before applying MS09-072) (replaced by MS10002)
Applicable (there is no known direct dependency with WordPad or Office text converter, but the affected component is an integral part of the OS. Recommend to apply the hotfix) No Dependency (IE should not be run on CCMS server) (Must apply CCMS_6.0_SUS_0 703 or later SU before applying MS09-072) (replaced by MS10002)
Applicable (there is no known direct dependency with WordPad or Office text converter, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Cumulative Security Update for Internet Explorer (976325) MS09-072
Critical
12-Dec-09
No Dependency (IE should not be run on CCMS Replication server) (replaced by MS10002)
Vulnerabilities in Internet Authentication Service Could Allow Remote Code Execution (974318) MS09-071
Critical
12-Dec-09
Applicable (there is no known direct dependency with the IAS or PEAP, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerabilities in Active Directory Federation Services Could Allow Remote Code Execution (971726)
MS09-070
Important
12-Dec-09
Not Applicable (Active Directory Federation Service should not be installed on CCMS server)
Not Applicable (Active Directory Federation Service should not be installed on CCMS server)
Not Applicable (Active Directory Federation Service should not be installed on CCMS Replication server)
Vulnerability in Local Security Subsystem Authority Service Could Allow Denial of Service (974392)
MS09-069
Important
12-Dec-09
Applicable (there is no known direct dependency with the LSSAS, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (there is no known direct dependency with the LSSAS, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerability in Microsoft Office Word Could Allow Remote Code Execution (976307)
MS09-068
Important
11-Nov-09
MS09-067
Important
11-Nov-09
Vulnerability in Active Directory Could Allow Denial MS09-066 of Service (973309) Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code MS09-065 Execution (969947) Vulnerability in License Logging Server Could Allow Remote Code Execution MS09-064 (974783)
Important
11-Nov-09
Not Applicable (Active Directory Service should not Applicable with be on CCMS server) ADAM
Not Applicable (Active Directory Service should not be on CCMS server)
Critical
11-Nov-09
Applicable Applicable Applicable (replaced (replaced by MS10- (replaced by MS10032) 032) by MS10-032)
Critical
11-Nov-09
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Web Service on Devices Could Allow Remote Code Execution MS09-063 (973565)
Critical
11-Nov-09
Not Applicable
Not Applicable
Not Applicable
Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488) MS09-062
Critical
13-Oct-09
Applicable (there is no known direct dependency with the GDI+, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerabilities in the Microsoft .NET Common Language Runtime Could Allow Remote Code Execution (974378)
MS09-061
Critical
13-Oct-09
Applicable (there is no known direct dependency with the .NET Framework, but the affected Applicable (.NET Applicable (.NET component is an Framework 2.0 is Framework 2.0 is integral part of the installed as part of installed as part of OS distribution. the SU07 the SU07 Recommend to installation) installation) apply the hotfix) (replaced by MS10- (replaced by MS10- (replaced by MS10041) 041) 041) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution MS09-060 (973965) Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service MS09-059 (975467) Vulnerabilities in Windows Kernel Could Allow Elevation MS09-058 of Privilege (971486)
Critical
13-Oct-09
Important
13-Oct-09
Applicable
Applicable
Applicable
Important
13-Oct-09
Applicable Applicable Applicable (replaced (replaced by MS10- (replaced by MS10by MS10-015) 015) 015)
Vulnerability in Indexing Service Could Allow Remote Code Execution (969059) MS09-057
Important
13-Oct-09
Applicable (there is no known direct dependency with the Indexing service, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerabilities in Windows CryptoAPI Could Allow Spoofing (974571)
MS09-056
Important
13-Oct-09
Applicable (there is no known direct dependency with the CryptoAPI functions, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Critical
13-Oct-09
Critical
13-Oct-09
Applicable (no Applicable (no Applicable (no known direct known direct known direct dependency on the dependency on the dependency on the affected ActiveX affected ActiveX affected ActiveX control, but it is a control, but it is a control, but it is a good security good security good security measure to block measure to block measure to block the the control. the control. control. Recommend Recommend to Recommend to to apply the hotfix) apply the hotfix) apply the hotfix) (replaced BY MS10- (replaced BY MS10- (replaced BY 008) 008) MS10-008) No Dependency (IE should not be run on CCMS server) (Must Applicable (Must apply apply CCMS_6.0_SUS_07 CCMS_6.0_SUS_0 No Dependency (IE should not be 703 or later SU 03 or later SU run on CCMS before applying before applying Replication server) MS09-054) MS09-054) No Dependency (FTP service should not be enabled on CCMS cores server. Recommend to apply the hotfix only if FTP service is enabled on IIS)
Vulnerabilities in FTP Service for Internet Information Services Could Allow Remote Code Execution (975254)
MS09-053
Important
13-Oct-09
MS09-052
Critical
13-Oct-09
No Dependency No Dependency (there is no known (there is no known direct dependency direct dependency with Windows with Windows Media Media Player. Player. Recommend Recommend to to apply the hotfix apply the hotfix only if Media Player only if Media Player 6.4 is installed) 6.4 is installed)
No Dependency (there is no known direct dependency with Windows Media Player. Recommend to apply the hotfix only if Media Player 6.4 is installed)
Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution (975682)
MS09-051
Critical
13-Oct-09
Applicable (there is no known direct dependency with Windows Media Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerabilities in SMBv2 Could Allow Remote Code Execution (975517)
MS09-050
Critical
13-Oct-09
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Wireless LAN AutoConfig Service Could Allow Remote Code Execution (970710) MS09-049
Critical
9-Sep-09
Not Applicable
Not Applicable
Not Applicable
Vulnerabilities in Windows TCP/IP Could Allow Remote MS09-048 Code Execution (967723)
Critical
9-Sep-09
Applicable
Applicable
Applicable
Vulnerabilities in Windows Media Format Could Allow Remote Code Execution (973812)
MS09-047
Critical
8-Sep-09
Applicable (there is no known direct dependency with Windows Media Format Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerability in DHTML Editing Component ActiveX Control Allow Remote Code Execution (956844)
MS09-046
Critical
8-Sep-09
Applicable (there is no known direct dependency with the DHTML Editing Component ActiveX Control, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerability in Jscript Scripting Engine Could Allow Remote Code Execution (971961) MS09-045
Critical
8-Sep-09
Applicable (there is no known direct dependency with the Jscript Scripting Engine, but the affected component is an integral part of IE of the OS. Recommend to apply the hotfix)
Vulnerabilities in Remote Desktop Connection Could Allow Remote Code Execution (970927)
MS09-044
Critical
11-Aug-09
Applicable
Applicable
Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (957638)
MS09-043
Critical
11-Aug-09
Vulnerability in Telnet Could Allow Remote Code MS09-042 Execution (960859) Vulnerability in Workstation Service Could Allow Elevation of Privilege MS09-041 (971657)
Important
11-Aug-09
Applicable (there is no known direct dependency with the Telnet, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Important
11-Aug-09
Applicable
Applicable
Applicable
Vulnerability in Message Queuing Could Allow Elevation of Privilege (971032)
MS09-040
Important
11-Aug-09
Applicable (there is no known direct dependency with the MSMQ, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (there is no known direct dependency with the MSMQ, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable (WINS should not be installed on CCMS cores server)
Applicable (there is no known direct dependency with the MSMQ, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable (WINS should not be installed on CCMS Replication server)
Vulnerabilities in WINS Could Allow Remote Code Execution (969883)
MS09-039
Critical
11-Aug-09
Not Applicable (WINS should not be installed on CCMS server)
Vulnerabilities in Windows Media File Processing Could Allow Remote Code MS09-038 Execution (971557)
Critical
11-Aug-09
Applicable (there is no known direct dependency with the Media Processing, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS10013)
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution (973908)
MS09-037
Critical
11-Aug-09
Applicable (no known direct dependency on the affected ATL components and controls, but the affected components are the integral distribution of the OS. Recommend to apply the hotfix)
Vulnerability in ASP.NET in Microsoft Windows Could Allow Denial of Service (970957)
MS09-036
Important
11-Aug-09
Not Applicable (IIS 7.0 should not be running on Windows Server 2003)
Vulnerabilities in Visual Studio Active Template Library Could Allow Remote MS09-035 Code Execution (969706)
Moderate
28-Jul-09
Critical
28-Jul-09
Vulnerability in Virtual PC and Virtual Server could lead to Elevation of Privilege MS09-033 (969856)
Important
14-Jul-09
Not Applicable (Application using the affected ATL with Visual Studio should not be developed on Cotnact Center portfolio product) No Dependency (IE should not be run on CCMS server) (Compatibility issue identified between CCMS ASM service with MS09-034 for IE 7.0 and IE 8.0. Must apply CCMS_6.0_SUS_07 03 or later SU before applying MS09-034) Not Applicable (Contact Center product should not be installed on Virtual Server platform)
Not Applicable (Application using the affected ATL with Visual Studio should not be developed on Cotnact Center portfolio product)
Applicable (Compatibility issue identified between CCMS ASM service with MS09034 for IE 7.0 and IE 8.0. Must apply CCMS_6.0_SUS_0 703 or later SU before applying MS09_034) Not Applicable (Contact Center product should not be installed on Virtual Server platform)
No Dependency (IE should not be run on CCMS Replication server) Not Applicable (Contact Center product should not be installed on Virtual Server platform)
Cumulative Security Update of ActiveX Kill Bits (973346) MS09-032 Vulnerability in Microsoft ISA Server 2006 Could Cause Elevation of Privilege MS09-031 (970953)
Critical
14-Jul-09
Important
14-Jul-09
Not Applicable
Not Applicable
Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (969516)
MS09-030
Important
14-Jul-09
Vulnerability in the Embedded OpenType Font Engine Could Allow Remote MS09-029 Code Execution (961371)
Critical
14-Jul-09
Applicable (there is no known direct dependency with the Embedded OpenType Font Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS10001)
Vulnerabilities in Microsoft DirectShow Could Allow Remote Code Execution (971633)
MS09-028
Critical
14-Jul-09
Applicable (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (969514) Vulnerability in RPC Could Allow Elevation of Privilege (970238)
MS09-027
Critical
9-Jun-09
Not Applicable Not Applicable (Microsoft Office (Microsoft Office product should not product should not be installed on be installed on CCMS Replication CCMS server) server)
MS09-026
Important
9-Jun-09
Applicable
Applicable
Applicable
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (968537) MS09-025
Important
9-Jun-09
Applicable
Applicable
Vulnerability in Microsoft Works Converters Could Allow Remote Code Execution (957632)
MS09-024
Critical
9-Jun-09
Vulnerability in Windows Search Could Allow Information Disclosure (963093)
MS09-0023
Moderate
9-Jun-09
No Dependency (Windows Search is not preinstalled in Windows Server 2003)
Vulnerabilities in Windows Print Spooler Could Allow Remote Code Execution (961501)
MS09-022
Critical
9-Jun-09
Applicable (there is no known direct dependency with the Print Spooler, but the affected component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix)
Applicable (there is no known direct dependency with the Print Spooler, but the affected component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
MS09-021
Critical
9-Jun-09
Vulnerabilities in Internet Information Services (IIS) Could Allow Elevation of Privilege
MS09-020
Important
9-Jun-09
Not Applicable (Microsot IIS should not be installed on Applicable CCMS server)
Not Applicable (Microsoft IIS should not be installed on CCMS Replication server)
Critical
9-Jun-09
No Dependency (IE should not be run on CCMS server) (Compatibility issue identified between CCMS ASM service with MS09-019 for IE 8.0. Must install CCMS_6.0_SUS_07 03 or later SU before applying MS09-019) (replaced by MS09034)
Applicable (Compatibility issue identified between CCMS ASM service with MS09019 for IE 8.0. Must apply CCMS_6.0_SUS_0 703 or later SU before applying MS09-019) (replaced by MS09034)
Vulnerabilities in Active Directory Could Allow Remote Code Execution (971055)
MS09-018
Critical
9-Jun-09
Not Applicable (Microsoft Active Directory should not be installed on Applicable CCMS server)
Not Applicable (Microsoft Active Directory should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (967340)
MS09-017
Critical
12-May-09
Vulnerabilities in Microsoft ISA Server and Forefront Threat Management Gateway (Medium Business Edition) Could Cause Denial MS09-016 of Service (961759) Blended Threat Vulnerability in SearchPath Could Allow Elevation of Privilege MS09-015 (959426)
Important
14-Apr-09
Not Applicable
Not Applicable
Not Applicable
Moderate
14-Apr-09
Applicable
Critical
14-Apr-09
Applicable No Dependency (IE should not be No Dependency (IE run on CCMS should not be run on Replication server) Applicable CCMS server) (replaced by MS09- (replaced by MS09- (replaced by MS09019) 019) 019)
Applicable
Vulnerabilities in Windows HTTP Services Could Allow Remote Code Execution (960803) Vulnerabilities in Windows Could Allow Elevation of Privilege (959454)
MS09-013
Critical
14-Apr-09
Applicable (there is no known direct dependency with the WinHTTP, but the affected WinHTTP component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix)
MS09-012
Important
14-Apr-09
Applicable
Applicable
Applicable
Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (961373)
MS09-011
Critical
14-Apr-09
Applicable (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09028)
Vulnerabilities in WordPad and Office Text Converters Could Allow Remote Code Execution (960477)
MS09-010
Critical
14-Apr-09
Applicable (there is no known direct dependency with WordPad, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (there is no known direct dependency with WordPad, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerabilities in Microsoft Office Excel Could Cause Remote Code Execution (968557) Vulnerabilities in DNS and WINS Server Could Allow Spoofing (962238)
MS09-009
Critical
14-Apr-09
MS09-008
Important
11-Mar-09
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Schannel Could Allow Spoofing (960225) Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690)
MS09-007
Important
11-Mar-09
MS09-006
Critical
11-Mar-09
Applicable (there is no known direct dependency with Secure Channel Package, but the affected component is an integral part of the OS. Recommend to Applicable apply the hotfix) Applicable Applicable (replaced (replaced by MS09by MS09-025) 025)
Applicable (there is no known direct dependency with Secure Channel Package, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable (replaced by MS09025) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) No Dependency (Microsoft SQL Server version should normally not installed on CCMS Replication server)
Vulnerability in Microsoft Office Visio Could Allow Remote Code Execution (957634)
MS09-05
Important
11-Feb-09
Vulnerability in Microsoft SQL Server Could Allow Remote Code Execution (959420) Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (959239)
MS09-04
Important
11-Feb-09
No Dependency (Microsoft SQL Server version should normally not installed on CCMS server)
MS09-003
Critical
11-Feb-09
Not Applicable
Not Applicable
Not Applicable
Cumulative Security Update for Internet Explorer MS09-002 (961260) Vulnerability in SMB Could Allow Remote Code MS09-001 Execution (958687)
Critical
11-Feb-09
Critical
13-Jan-09
Security Update for Internet Explorer (960714) Vulnerability in Microsoft Office Sharepoint Server Could Cause Elevation of Privilege (957175)
MS08-078
Critical
17-Dec-08
No Dependency (IE should not be run on CCMS Replication server) Applicable (replaced by MS10012) No Dependency No Dependency (IE (IE should not be should not be run on run on CCMS Applicable CCMS server) Replication server) (replaced by MS09- (replaced by MS09- (replaced by MS09014) 014) 014) No Dependency (IE Applicable only if should not be run on IE 7.0 is installed CCMS server) on CCMS server Applicable Applicable (replaced (replaced by MS10by MS10-012) 012)
MS08-077
Important
9-Dec-08
Not Applicable
Not Applicable
Not Applicable
Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)
MS08-076
Important
9-Dec-08
Applicable (there is no known direct dependency with Windows Media Format Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09047)
Vulnerabilities in Windows Search Could Allow Remote MS08-075 Code Execution (959349)
Critical
9-Dec-08
Not Applicable
Not Applicable
Not Applicable
MS08-074
Critical
9-Dec-08
Critical
9-Dec-08
Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) No Dependency (IE should not be No Dependency (IE run on CCMS should not be run on Replication server) Applicable CCMS server) (replaced by MS09- (replaced by MS09- (replaced by MS09014) 014) 014) Not Applicable (Microsoft Office product should not be installed on CCMS server) Not Applicable (Microsoft Office product should not be installed on CCMS server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (957173)
MS08-072
Critical
9-Dec-08
Vulnerabilities in GDI Could Allow Remote Code Execution (956802)
MS08-071
Critical
9-Dec-08
Applicable (no known direct dependency on the affected GDI, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerabilities in Visual Basic 6.0 Runtime Extended Files (ActiveX Controls) Could Allow Remote Code Execution (932349) MS08-070
Critical
9-Dec-08
No Dependency (the affected Visual Basic 6.0 Runtime Extended Files is not installed by Windows or Contact Center product. It is recommended to apply this security hotfix if customer's supplied application install the affected component)
No Dependency (the affected No Dependency Visual Basic 6.0 (the affected Visual Runtime Extended Basic 6.0 Runtime Files is not Extended Files is installed by not installed by Windows or Windows or Contact Center Contact Center product. It is product. It is recommended to recommended to apply this security apply this security hotfix if customer's hotfix if customer's supplied supplied application application install install the affected the affected component) component)
Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution (955218) Vulnerability in SMB Could Allow Remote Code Execution (957097)
MS08-069
Critical
11-Nov-08
MS08-068
Important
11-Nov-08
Applicable (there is no known direct dependency with the XML Core Service, but it is part of the OS distribution. Recommend to apply the hotfix) Applicable Applicable Applicable (replaced (replaced by MS10by MS10-006) 006)
Applicable (there is no known direct dependency with the XML Core Service, but it is part of the OS distribution. Recommend to apply the hotfix) Applicable (replaced by MS10006)
Vulnerability in Server Service Could Allow Remote Code Execution (958644) MS08-067
Critical
23-Oct-08
Applicable
Applicable
Applicable
Vulnerability in the Microsoft Ancillary Function Driver Could Allow Elevation of MS08-066 Privilege (956803)
Important
14-Oct-08
Applicable
Applicable
Applicable
Vulnerability in Message Queuing Could Allow Remote Code Execution (951071)
MS08-065
Important
14-Oct-08
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Virtual Address Descriptor Manipulation Could Allow Elevation of Privilege (956841) Vulnerability in SMB Could Allow Remote Code Execution (957095)
MS08-064
Important
14-Oct-08
MS08-063
Important
14-Oct-08
Applicable Applicable (replaced (replaced by MS09by MS09-012) 012) Applicable Applicable (replaced (replaced by MS09by MS09-001) 001)
Applicable (replaced by MS09012) Applicable (replaced by MS09001)
Vulnerability in Windows Internet Printing Service Could Allow Remote Code Execution (953155)
MS08-062
Important
14-Oct-08
Applicable (there is no known direct dependency with the Windows Internet Printing Service, but the affected component is an integral part of the IIS implementation. Recommend to apply the hotfix)
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (954211) MS08-061 Vulnerability in Active Directory Could Allow Remote Code Execution MS08-060 (957280)
Important
14-Oct-08
Applicable
Applicable
Applicable
Critical
14-Oct-08
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Host Integration Server RPC Service Could Allow Remote Code Execution (956695) MS08-059
Critical
14-Oct-08
Not Applicable
Critical
14-Oct-08
Not Applicable No Dependency No Dependency (IE (IE should not be should not be run on run on CCMS Applicable CCMS server) Replication server) (replaced by MS08- (replaced by MS08- (replaced by MS08073) 073) 073) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Not Applicable
Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (956416)
MS08-057
Critical
14-Oct-08
Vulnerability in Microsoft Office Could Allow Information Disclosure (957699)
MS08-056
Moderate
14-Oct-08
Vulnerability in Microsoft Office Could Allow Remote MS08-055 Code Execution (955047) Vulnerability in Windows Media Player Could Allow Remote Execution (954154) MS08-054
Critical
9-Sep-08
Critical
9-Sep-08
Not Applicable
Not Applicable No Dependency (by default, Windows Media Encoder 9 series is not installed in Windows)
Vulnerability in Windows Media Encoder 9 Could Allow Remote Code Execution (954156)
MS08-053
Critical
9-Sep-08
No Dependency (by default, Windows Media Encoder 9 series is not installed in Windows)
Vulnerabilities in GDI+ Could Allow Remote Code MS08-052 Execution (954593)
Critical
9-Sep-08
Applicable (there is no known direct dependency with the GDI+, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09062)
Applicable (there is no known direct dependency with the GDI+, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09062)
Applicable (there is no known direct dependency with the GDI+, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09062) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerabilities in Microsoft Powerpoint Could Allow Remote Code Execution (949785)
MS08-051
Critical
12-Aug-08
Vulnerability in Windows Messenger Could Allow Information Disclosure (955702)
MS08-050
Important
12-Aug-08
Applicable (there is no known direct dependency with the Messenger, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerability in Event System Could Allow Remote MS08-049 Code Execution (950974)
Important
12-Aug-08
Applicable
Applicable
Applicable No Dependency (Outlook Express should not be run on CCMS Replication server)
Security Update for Outlook Express and Windows Mail (951066)
MS08-048
Critical
12-Aug-08
Vulnerability in IPSec Policy Processing Could Allow Information Disclosure MS08-047 (953733)
Important
12-Aug-08
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Microsoft Windows Image Color Management System Control Could Allow Remote Code MS08-046 Execution (952954)
Critical
12-Aug-08
Applicable (there is no known direct dependency with the ICM, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Critical
12-Aug-08
Applicable (there is no known direct dependency with the ICM, but the affected component is an integral part of the OS. Recommend to apply the hotfix) No Dependency No Dependency (IE (IE should not be should not be run on run on CCMS Applicable CCMS server) Replication server) (replaced by MS08- (replaced by MS08- (replaced by MS08058) 058) 058) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Applicable (there is no known direct dependency with the ICM, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerabilities in Microsoft Office Filters Could Allow Remote Code Execution (924090)
MS08-044
Critical
12-Aug-08
MS08-043
Critical
12-Aug-08
Vulnerability in Microsoft Word Could Allow Remote Code Execution (MS08-042) MS08-042
Important
12-Aug-08
Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) No Dependency (Microsoft SQL Server version should normally not installed on CCMS Replication server)
Vulnerability in the ActiveX Control for the Snapshot Viewer for Microsoft Access Could Allow Remote Code Execution (955617)
MS08-041
Critical
12-Aug-08
Vulnerabilities in Microsoft SQL Server Could Allow Elevation of Privilege (941203)
MS08-040
Important
8-Jul-08
Vulnerabilities in Outlook Web Access for Exchange Server Could Allow Elevation MS08-039 of Privilege (953747)
Important
8-Jul-08
Not Applicable (Microsoft Exchange Server should not be installed on CCMS server)
Not Applicable (Microsoft Exchange Server should not be installed on CCMS server)
Not Applicable (Microsoft Exchange Server should not be installed on CCMS Replication server)
Vulnerability in Windows Explorer Could Allow Remote Code Execution (950582)
MS08-038
Important
8-Jul-08
Not Applicable
Not Applicable
Not Applicable
Vulnerabilities in DNS Could MS08-037 Allow Spoofing (953230)
Important
8-Jul-08
Applicable (there is no known direct dependency with the DNS, but the affected DNS client component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix)
Vulnerabilities in Pragmatic General Multicast (PGM) Could Allow Denial of Service (950762)
MS08-036
Important
10-Jun-08
Applicable (there is no known direct dependency with the PGM, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerability in Active Directory Could Allow Denial MS08-035 of Service (953235)
Important
10-Jun-08
Not Applicable (Microsoft Active Directory should not be installed on Applicable CCMS server) (replaced by MS09- (replaced by MS09018) 018)
Not Applicable (Microsoft Active Directory should not be installed on CCMS Replication server) (replaced by MS09-018) Not Applicable (WINS should not be installed on CCMS Replication server)
Vulnerability in WINS Could Allow Remote Code Execution (948745)
MS08-034
Important
10-Jun-08
Vulnerabilities in DirectX Could Allow Remote Code Execution (951698)
MS08-033
Critical
10-Jun-08
Cumulative Security Update for ActiveX Kill Bits (950760) MS08-032
Moderate
10-Jun-08
Cumulative Security Update for Internet Explorer MS08-031 (950759) Vulnerability in Bluetooth Stack Could Allow Remote MS08-030 Code Execution (951376)
Critical
10-Jun-08
Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS09032) No Dependency No Dependency (IE (IE should not be should not be run on run on CCMS CCMS server) Applicable Replication server) (replaced by MS08- (replaced by MS-08- (replaced by MS045) 045) 08-045) Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS09032)
Critical
10-Jun-08
Not Applicable
Not Applicable
Not Applicable
Vulnerabilities in Microsoft Malware Protection Enginer Could Allow Denial of Service (952044)
MS08-029
Moderate
13-May-08
Not Applicable (the affected Microsoft products should not be installed on CCMS server)
Not Applicable (the affected Microsoft products should not be installed on CCMS server)
Not Applicable (the affected Microsoft products should not be installed on CCMS Replication server)
Vulnerability in Microsoft Jet Database Engine Could Allow Remote Code MS08-028 Execution (950749)
Critical
13-May-08
Applicable with Windows Server Applicable with 2003 with SP1 (no Windows Server 2003 with SP1 (no known direct dependency on the known direct dependency on the Jet Database Engine, but the Jet Database affected Engine, but the affected component component is an is an integral part of integral part of the the OS distribution. OS distribution. Recommend to Recommend to apply the hotfix) apply the hotfix) Not Applicable with Not Applicable with Windows Server Windows Server 2003 with SP2 2003 with SP2
Applicable with Windows Server 2003 with SP1 (no known direct dependency on the Jet Database Engine, but the affected component is an integral part of the OS distribution. Recommend to apply the hotfix) Not Applicable with Windows Server 2003 with SP2
Vulnerability in Microsoft Publisher Could Allow Remote Code Execurtion (951208)
MS08-027
Critical
13-May-08
Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (951207)
MS08-026
Critical
13-May-08
Vulnerability in Windows Kernel Could Allow Elevation MS08-025 of Privilege (941693)
Important
8-Apr-08
Critical
8-Apr-08
Applicable Applicable Applicable (replaced (replaced by MS08- (replaced by MS08by MS08-061) 061) 061) No Dependency No Dependency (IE (IE should not be should not be run on run on CCMS CCMS server) Applicable Replication server) (replaced by MS08- (replaced by MS08- (replaced by MS08031) 031) 031)
Security Uupdate of ActiveX MS08-023 Kill Bits (948881)
Critical
8-Apr-08
Vulnerability in VBScript and Jscript Scripting Engines Could Allow Remote Code Execution (944338) MS08-022
Critical
8-Apr-08
Applicable (no known direct dependency on the affected script engines, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
MS08-021
Critical
8-Apr-08
Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08071)
Vulnerability in DNS Client Could Allow Spoofing (945553)
MS08-020
Important
8-Apr-08
Applicable (no direct dependency with DNS Client, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
MS08-019
Important
8-Apr-08
Not Applicable Not Applicable (Microsoft Office (Microsoft Office product should not product should not be installed on be installed on CCMS Replication CCMS server) server) Not Applicable Not Applicable (Microsoft Project (Microsoft Project product should not product should not be installed on be installed on CCMS Replication CCMS server) server) Not Applicable Not Applicable (Microsoft Office (Microsoft Office product should not product should not be installed on be installed on CCMS Replication CCMS server) server) Not Applicable (Microsoft Office Not Applicable product should not (Microsoft Office product should not be installed on CCMS Replication be installed on server) CCMS server) Not Applicable Not Applicable (Microsoft Office (Microsoft Office product should not product should not be installed on be installed on CCMS Replication CCMS server) server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerability in Microsoft Project Could Allow Remote MS08-018 Code Execution (950183)
Critical
8-Apr-08
Not Applicable (Microsoft Project product should not be installed on CCMS server)
Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (933103)
MS08-017
Critical
11-Mar-08
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (949030)
MS08-016
Critical
11-Mar-08
Vulnerability in Microsoft Outlook Could Allow Remote MS08-015 Code Execution (949031)
Critical
11-Mar-08
MS08-014
Critical
11-Mar-08
Vulnerability in Microsoft Office Could Allow Remote Code Execution (947108)
MS08-013
Critical
12-Feb-08
Vulnerabilities in Microsoft Office Publisher Could Allow Remote Code Execution MS08-012 (947085)
Critical
12-Feb-08
Vulnerabilities in Microsoft Works File Converter Could Allow Remote Code Execution (947081)
MS08-011
Important
12-Feb-08
Critical
12-Feb-08
No Dependency (IE should not be run on CCMS server) Applicable (replaced by MS08- (replaced by MS08024) 024)
No Dependency (IE should not be run on CCMS Replication server) (replaced by MS08024) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerability in Microsoft Word Could Allow Remote Code Execution (947077)
MS08-009
Critical
12-Feb-08
Vulnerability in OLE Automation Could Allow Remote Code Execution (947890)
MS08-008
Critical
12-Feb-08
Applicable (no direct dependency with OLE, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerability in WebDAV Mini-Redirector Could Allow Remote Code Execution (946026)
MS08-007
Critical
12-Feb-08
No Dependency (WebClient service is disabled as default by Windows 2003)
Vulnerability in Internet Information Services Could Allow Remote Code Execution (942830)
MS08-006
Important
12-Feb-08
Applicable
Vulnerability in Internet Information Services Could Allow Elevation of Privilege (942831)
MS08-005
Important
12-Feb-08
Applicable
Vulnerability in Windows TCP/IP Could Allow Denial of Service (946456)
MS08-004
Important
12-Feb-08
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Active Directory Could Allow Denial MS08-003 of Service (946538)
Important
12-Feb-08
Not Applicable (Microsoft Active Directory should not Applicable (replaced by MS08be installed on 035) CCMS server)
Not Applicable (Microsoft Active Directory should not be installed on CCMS Replication server)
Vulnerability in LSASS Could Allow Local Elevation of Privilege (943485) MS08-002 Vulnerabilities in Windows TCP/IP Could Allow Remote MS08-001 Code Execution (941644)
Important
8-Jan-08
Critical
8-Jan-08
Applicable
Applicable
Applicable
Cummulative Security Update for Internet Explorer (942615)
MS07-069
Critical
12-Dec-07
No Dependency (IE should not be run on CCMS server) Applicable (replaced by MS08- (replaced by MS08010) 010)
Vulnerability in Windows Media File Format Could Allow Remote Code Execution (941569 and 944275)
MS07-068
Critical
12-Dec-07
Vulnerability in Macrovision Driver Could Allow Local Elevation of Privilege (944653)
MS07-067
Important
12-Dec-07
No Dependency (Macrovision SafeDisc games should not be run on CCMS server. There is no known direct dependency with the Macrovision driver, but the affected component is part of the OS distribution. Recommend to apply the hotfix)
Important
12-Dec-07
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Message Queuing Could Allow Remote Code Execution (937894)
MS07-065
Important
12-Dec-07
Not Applicable
Not Applicable
Not Applicable
Vulnerabilities in DirectX Could Allow Remote Code Execution (941568)
MS07-064
Critical
12-Dec-07
Vulnerability in SMBv2 Could Allow Remote Code MS07-063 Execution (942624)
Important
12-Dec-07
Not Applicable
Not Applicable
Not Applicable Not Applicable (DNS Server should not be run on CCMS Replication server)
Vulnerability in DNS Could Allow Spoofing (941672)
MS07-062
Important
13-Nov-07
Not Applicable (DNS Server should not be run on CCMS server)
Vulnerability in Windows URI Handling Could Allow Remote Code Execution MS07-061 (943460)
Critical
13-Nov-07
Applicable (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on CCMS server) (replaced by MS08009)
Applicable (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on CCMS server) (replaced by MS08009)
Applicable (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) (replaced by MS08-009)
MS07-060
Critical
9-Oct-07
Vulnerability in Windows SharePoint Service 3.0 and Office SharePoint Server 2007 Could Result in Elevation of Privilege Within the SharePoint Site (942017) MS07-059 Vulnerability in RPC Could Allow Denial of Service MS07-058 (933729)
Important
9-Oct-07
Not Applicable (SharePoint is not installed by default on Windows Server 2003)
Important
9-Oct-07
Not Applicable (SharePoint is not installed by default on Windows Server 2003) Applicable Applicable (replaced (replaced by MS09by MS09-026) 026)
Not Applicable (SharePoint is not installed by default on Windows Server 2003) Applicable (replaced by MS09026)
Critical
9-Oct-07
No Dependency No Dependency (IE Applicable (IE should not be should not be run on (replaced by MS07- run on CCMS CCMS server) 069) Replication server) No Dependency (Outlook Express should not be run on CCMS server) (replaced by MS08048) No Dependency (Outlook Express should not be run on CCMS server) (replaced by MS08048) No Dependency (Outlook Express should not be run on CCMS server) (replaced by MS08048)
Security Update for Outlook Express and Windows Mail (941202)
MS07-056
Critical
9-Oct-07
Vulnerability in Kodak Image Viewer Could Allow Remote MS07-055 Code Execution (923810)
Critical
9-Oct-07
Not Applicable (Windows should not be upgraded from Windows 2000 on CCMS server)
Not Applicable (Windows should not be upgraded from Windows 2000 on CCMS Replication server)
Vulnerability in MSN Messenger and Windows Live Messenger Could Allow Remote Code Execution MS07-054 (942099)
Important
11-Sep-07
No Dependency (MSN Messenger and Windows Live Messeneger should not be installed on CCMS server)
No Dependency (MSN Messenger and Windows Live Messeneger should not be installed on CCMS server)
No Dependency (MSN Messenger and Windows Live Messeneger should not be installed on CCMS Replication server)
Vulnerability in Windows Services for UNIX Could Allow Elevation of Privilege (939778)
MS07-053
Important
11-Sep-07
No Dependency No Dependency No Dependency (Windows (Windows Services (Windows Services Services for UNIX for UNIX should not for UNIX should not should not be be installed on be installed on installed on CCMS CCMS server) CCMS server) Replication server)
Vulnerability in Crystal Reports for Visual Studio Could Allow Remote Code Execution (941522)
MS07-052
Important
11-Sep-07
Not Applicable (Visual Studio should not be installed on CCMS server)
Not Applicable (Visual Studio should not be installed on CCMS Replication server)
Vulnerability in Microsoft Agent Could Allow Remote Code Execution (938827)
MS07-051
Critical
11-Sep-07
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Vector Markup Language Could Allow Remote Code Execution (938127)
MS07-050
Critical
14-Aug-07
Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerability in Virtual PC and Virtual Server Could Allow Remote Elevation of Privilege (937986)
MS07-049
Important
14-Aug-07
No Dependecny (Virtual PC and Virtual Server should not be installed on CCMS server)
No Dependecny (Virtual PC and Virtual Server should not be installed on CCMS server)
No Dependecny (Virtual PC and Virtual Server should not be installed on CCMS Replication server)
Vulnerabilities in Windows Gadgets Could Allow Remote Code Execution (938123)
MS07-048
Important
14-Aug-07
Not Applicable No Dependency (Microsoft Media Player should not be run on CCMS server)
Not Applicable No Dependency (Microsoft Media Player should not be run on CCMS server)
Not Applicable No Dependency (Microsoft Media Player should not be run on CCMS Replication server)
Vulnerabilities in Windows Media Player Could Allow Remote Code Execution (936782)
MS07-047
Important
14-Aug-07
Vulnerability in GDI Could Allow Remote Code Execution (938829)
MS07-046
Critical
14-Aug-07
Critical
14-Aug-07
No Dependency No Dependency (IE Applicable (IE should not be should not be run on (replaced by MS07- run on CCMS CCMS server) 057) Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerability in Microsoft Excel Could Allow Remote Code Execution (940965)
MS07-044
Critical
14-Aug-07
Vulnerability in OLE Automation Could Allow Remote Code Execution (921503)
MS07-043
Critical
14-Aug-07
Applicable (no direct dependency with OLE, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08008)
Vulnerability in Microsot XML Core Service Could Allow Remote Code Execution (936227) MS07-042
Critical
14-Aug-07
Applicable (no direct dependency with XML Core Service, but the affected component is an integral part of the OS. Recommend to Applicable apply the hotfix)
Applicable (no direct dependency with XML Core Service, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerability in Microsoft Internet Information Services Could Allow Remote Code MS07-041 Execution (939373)
Important
10-Jul-07
Not Applicable
Not Applicable
Not Applicable
Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212)
MS07-040
Critical
10-Jul-07
Applicable (no direct dependency with .NET Framework, but the affected component is an integral part of the OS. Recommend to Applicable apply the hotfix) Not Applicable (Microsoft Active Directory should not be installed on CCMS server) (replaced by MS08003) Not Applicable (Microsoft Active Directory should not be installed on CCMS server) (replaced by MS08003)
Applicable (no direct dependency with .NET Framework, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable (Microsoft Active Directory should not be installed on CCMS server) (replaced by MS08003)
Vulnerability in Windows Active Directory Could Allow Remote Code Execution MS07-039 (926122)
Critical
10-Jul-07
Vulnerability in Windows Vista Firewall Could Allow Information Disclosure (935807)
MS07-038
Moderate
10-Jul-07
Not Applicable
Not Applicable
Not Applicable Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerability in Microsoft Office Publisher 2007 Could Allow Remote Code MS07-037 Execution (936548)
Important
10-Jul-07
MS07-036
Critical
10-Jul-07
Vulnerability in Win 32 API Could Allow Remove Code Execution (935839)
MS07-035
Critical
12-Jun-07
Applicable Applicable Applicable (replaced (replaced by MS09- (replaced by MS09by MS09-015) 015) 015) No Dependency (Outlook Express should not be run on CCMS Replication server) No Dependency No Dependency (IE (IE should not be should not be run on run on CCMS Applicable CCMS server) Replication server) (replaced by MS07- (replaced by MS07- (replaced by MS07045) 045) 045) No Dependency (Outlook Express should not be run on CCMS server) No Dependency (Outlook Express should not be run on CCMS server)
Cumulative Security Update for Outlook Express and MS07-034 Windows Mail (929123)
Critical
12-Jun-07
Critical
12-Jun-07
Vulnerability in Windows Vista Could Allow Information Disclosure (931213)
MS07-032
Moderate
12-Jun-07
Not Applicable
Not Applicable
Not Applicable
Vulnerability in the Windows Schannel Security Package Could Allow Remote Code Execution (935840) MS07-031
Critical
12-Jun-07
Applicable (no direct dependency with Schannel, but the affected component is an integral part of the OS, recommend to apply the hotfix) Applicable Not Applicable (Microsoft Office product should not be installed on CCMS server) (replaced by MS08019) Not Applicable (Microsoft Office product should not be installed on CCMS server) (replaced by MS08019)
Applicable (no direct dependency with Schannel, but the affected component is an integral part of the OS, recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) (replaced by MS08-019) Not Applicable (DNS Server should not be run on CCMS Replication server)
MS07-030
Important
12-Jun-07
Vulnerability in Windows DNS RPC Interface Could Allow Remote Code Execution (935966)
MS07-029
Critical
8-May-07
Vulnerability in CAPICOM Could Allow Remote Code Execution (931906)
MS07-028
Critical
8-May-07
Not Applicable (CAPICOM is not part of the Windows OS and not installed by CCMS application)
Critical
8-May-07
Not Applicable (CAPICOM is not part of the Windows OS and not installed by CCMS application) No Dependency No Dependency (IE (IE should not be should not be run on run on CCMS Applicable CCMS server) Replication server) (replaced by MS07- (replaced by MS07- (replaced by MS07033) 033) 033) Not Applicable (Microsoft Exchange should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) (replaced by MS07-036)
Not Applicable (CAPICOM is not part of the Windows OS and not installed by CCMS application)
Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (931832)
MS07-026
Critical
8-May-07
Not Applicable (Microsoft Exchange should not be installed on CCMS server)
MS07-025
Critical
8-May-07
MS07-024
Critical
8-May-07
Not Applicable (Microsoft Office product should not be installed on CCMS server) Not Applicable (Microsoft Office product should not be installed on CCMS server) (replaced by MS07036)
Not Applicable (Microsoft Office product should not be installed on CCMS server) Not Applicable (Microsoft Office product should not be installed on CCMS server) (replaced by MS07036)
MS07-023
Critical
8-May-07
Vulnerability in Windows Kernel Could Allow Elevation MS07-022 Privilege (931784) Vulnerabilities in CSRSS Could Allow Remote Code Execution (930178) MS07-021
Important
10-Apr-07
Applicable Applicable Applicable (replaced (replaced by MS09- (replaced by MS09by MS09-012) 012) 012)
Critical
10-Apr-07
Applicable
Applicable
Applicable
MS07-020
Critical
10-Apr-07
Applicable (no direct dependency with Microsoft Agent, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Vulnerability in Universal Plug and Play Could Allow Remote Code Execution (931261)
MS07-019
Critical
10-Apr-07
Not Applicable
Not Applicable
Not Applicable
Vulnerabilities in Microsoft Content Management Server Could Allow Remote Code Execution (925939) MS07-018
Critical
10-Apr-07
Not Applicable (Microsoft Content Management Server should not be installed on CCMS server)
Not Applicable (Microsoft Content Management Server should not be installed on CCMS server)
Not Applicable (Microsoft Content Management Server should not be installed on CCMS Replication server)
MS07-017
Critical
3-Apr-07
Applicable (no direct dependency with Graphics Rendering Engine, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Critical
13-Feb-07
No Dependency (IE should not be run on Applicable CCMS server) (Superceded by (Superceded by SP2) SP2)
No Dependency (IE should not be run on CCMS Replication server) (Superceded by SP2) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
MS07-015
Critical
13-Feb-07
MS07-014
Critical
13-Feb-07
Vulnerability in Microsoft RichEdit Could Allow Remote Code Execution (918118)
MS07-013
Important
13-Feb-07
Applicable (no direct dependency with RichEdit, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in Microsoft MFC Could Allow Remote Code Execution (924667)
MS07-012
Important
13-Feb-07
Applicable
Applicable
Applicable
Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution (926436)
MS07-011
Important
13-Feb-07
Applicable (no direct dependency with OLE Dialog, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in Microsoft Malware Protection Engine Could Allow Remote Code Execution (932135)
MS07-010
Critical
13-Feb-07
No Dependency (normally Microsoft Malware Protection Engine is not installed)
Vulnerability in Microsoft Data Access Components Could Allow Remote Code Execution (927779)
MS07-009
Critical
13-Feb-07
Not Applicable to Windows Server 2003 SP1 and Windows Server 2003 R2. Applicable only to Windows Server 2003 without SP1 (Superceded by SP2)
Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution MS07-008 (928843)
Critical
13-Feb-07
Applicable (no direct dependency with HTML Help, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in Windows Image Acquistion Service Could Allow Elevation of Privilege (927802)
MS07-007
Important
13-Feb-07
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Windows Shell Cound Allow Elevation of Privilege (928255) MS07-006
Important
13-Feb-07
Applicable (there Applicable (there is Applicable (there is is no known direct no known direct no known direct dependency with dependency with the dependency with the Windows Windows Shell, but the Windows Shell, Shell, but the the affected but the affected affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend to OS. Recommend OS. Recommend apply the hotfix) to apply the hotfix) to apply the hotfix) (Superceded by (Superceded by (Superceded by SP2) SP2) SP2) Not Applicable (Step-by-Step Interactive Training should not be installed on CCMS Replication server)
Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code MS07-005 Execution (923723)
Important
13-Feb-07
Not Applicable Not Applicable (Step- (Step-by-Step by-Step Interactive Interactive Training Training should not should not be be installed on installed on CCMS CCMS server) server)
Vulnerability in Vector Markup Language Could Allow Remote Execution (929969)
MS07-004
Critical
9-Jan-2007
Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
Vulnerabilties in Microsoft Outlook Could Allow Remote MS07-003 Code Execution (925938)
Critical
9-Jan-2007
Not Applicable Not Applicable (Microsoft Office (Microsoft Office product should not product should not be installed on be installed on CCMS Replication CCMS server) server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
MS07-002
Critical
9-Jan-2007
Vulnerability in Microsoft Office 2003 Brazilian Portuguese Grammar Checker Could Allow Remote Code Execution (921585) MS07-001
Important
9-Jan-2007
Vulnerability in Windows Media Format Could Allow Remote Code Execution (923689)
MS06-078
Critical
12-Dec-2006
Applicable (there is no known direct dependency with the Windows Media Format Runtime, but the affect component is an integral part of the OS. Recommend to apply the hotfix)
Vulnerability in Remote Installation Service Could Allow Remote Code Execution (926121)
MS06-077
Important
12-Dec-2006
Not Applicable
Not Applicable
Not Applicable
Cumulative Security Update for Outlook Express (923694) MS06-076
Important
12-Dec-2006
No Dependency (Outlook Express should not be run on CCMS server) (Superceded by SP2)
No Dependency (Outlook Express should not be run on CCMS server) (Superceded by SP2)
No Dependency (Outlook Express should not be run on CCMS Replication server) (Superceded by SP2)
Vulnerability in Windows Could Allow Remote Elevation of Privilege (926255)
MS06-075
Important
12-Dec-2006
Vulnerability in SNMP Could Allow Remote Code MS06-074 Execution (926247)
Important
12-Dec-2006
Applicable (Superceded by SP2)
Vulnerability in Visual Studio 2005 Could Allow Remote MS06-073 Code Execution (925674)
Critical
12-Dec-2006
Not Applicable (Visual Studio should not be installed on CCMS Replication server)
Critical
12-Dec-2006
No Dependency (IE should not be run on CCMS server) Applicable (Superceded by (Superceded by SP2) SP2)
No Dependency (IE should not be run on CCMS Replication server) (Superceded by SP2)
Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (928088)
MS06-071
Critical
14-Nov-2006
No Dependency (the affected XML Core version is not installed by default with Windows Applicable Server 2003)
No Dependency (the affected XML Core version is not installed by default with Windows Server 2003)
Vulnerability in Workstation Service Could Allow Remote MS06-070 Code Execution (924270) Vulnerabilities in Macromedia Flash Player from Adobe Could Allow Remote Code Execution MS06-069 (923789)
Critical
14-Nov-2006
Not Applicable
Not Applicable
Not Applicable
Critical
14-Nov-2006
Not Applicable
Not Applicable
Not Applicable
MS06-068
Critical
14-Nov-2006
Not Applicable (Microsoft Agent should not be installed on CCMS server) (Superceded by SP2)
Critical
14-Nov-2006
No Dependency (IE should not be run on Applicable CCMS server) (Superceded by (Superceded by SP2) SP2))
Vulnerabilities in Client Service for NetWare Could Allow Remote Code Execution (923980)
MS06-066
Important
14-Nov-2006
No Dependency (Client Service for NetWare is not installed by default in Windows Server 2003) (Superceded by SP2)
Vulnerability in Windows Object Packager Could Allow Remote Execution (924496) MS06-065
Moderate
10-Oct-2006
Applicable (there is no known direct dependency with the Object Packager, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
Vulnerabilities in TCP/IP IPv6 Could Allow Denial of Service (922819)
MS06-064
Low
10-Oct-2006
Applicable (there is no known direct dependency with the IPv6, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in Server Service Could Allow Denial of Service and Remote Code Execution (923414) MS06-063
Important
10-Oct-2006
Applicable (Superceded by SP2) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
MS06-062
Critical
10-Oct-2006
Vulnerabilities in Micrsoft XML Core Services Could Allow Remote Code Execution (924191)
MS06-061
Critical
10-Oct-2006
Applicable (there is no known direct dependency with the MSXML, but the affect component is an integral part of the OS. Recommend to Applicable apply the hotfix) (Superceded by (Superceded by SP2)) SP2)
Applicable (there is no known direct dependency with the MSXML, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
MS06-060
Critical
10-Oct-2006
MS06-059
Critical
10-Oct-2006
Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (924163)
MS06-058
Critical
10-Oct-2006
Vulnerability in Windows Explorer Could Allow Remote Execution (923191) MS06-057
Critical
10-Oct-2006
Applicable (there Applicable (there is Applicable (there is is no known direct no known direct no known direct dependency with dependency with the dependency with the Windows Windows Shell, but the Windows Shell, Shell, but the the affect but the affect affect component component is an component is an is an integral part integral part of the integral part of the of the OS. OS. Recommend to OS. Recommend Recommend to apply the hotfix) to apply the hotfix) apply the hotfix) (Superceded by (Superceded by (Superceded by SP2) SP2) SP2)
Vulnerability in ASP.NET 2.0 Could Allow Information MS06-056 Disclosure (922770)
Moderate
10-Oct-2006
Applicable only if ,NET Framework 2.0 is installed Not Applicable for No Dependency default Windows (.NET 2.0 should not Server 2003 with be installed on .NET Framework CCMS server) 1.1
No Dependency (.NET 2.0 should not be installed on CCMS Replication server)
Vulnerability in Vector Markup Language Could Allow Remote Code Execution (925486)
MS06-055
Critical
26-Sep-2006
Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (910729)
MS06-054
Critical
12-Sep-2006
Vulnerability in Indexing Service Could Allow CrossSite Scripting (920685) Vulnerability in Pragmatic General Multicast (PGM) Could Allow Remote Code Execution (919007) Vulnerability in Windows Kernel Could Result in Remote Code Execution (917422)
MS06-053
Moderate
12-Sep-2006
Applicable (there is no known direct dependency with the Indexing Service, but the affected Component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
MS06-052
Important
12-Sep-2006
Not Applicable
Not Applicable
Not Applicable
MS06-051
Critical
8-Aug-2006
Vulnerability in Microsoft Windows Hyperlink Object Library Could Allow Remote MS06-050 Code Execution (920670)
Important
8-Aug-2006
Applicable (there is no known direct dependency with the Hyperlink Library, but the affected Component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958)
MS06-049
Important
8-Aug-2006
Not Applicable
Not Applicable
MS06-048
Critical
8-Aug-2006
Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution (921645) MS06-047
Critical
8-Aug-2006
Not Applicable (Microsoft Office product or VBA SDK should not be installed on CCMS server)
Not Applicable (Microsoft Office product or VBA SDK should not be installed on CCMS server)
Not Applicable (Microsoft Office product or VBA SDK should not be installed on CCMS Replication server)
Vulnerability in HTML Help Could Allow Remote Code Execution (922616)
MS06-046
Critical
8-Aug-2006
MS06-045
Important
8-Aug-2006
Applicable (no direct dependency with Windows Explorer, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in Microsoft Management Console Could Allow Remote Code Execution (917008) MS06-044
Critical
8-Aug-2006
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Microsoft Windows Could Allow Remote Code Execution (920214)
MS06-043
Critical
8-Aug-2006
Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 (there is no known direct dependency with Outlook Express, but the affected component is part of the OS distribution. Recommend to apply the hotfix) (Superceded by SP2)) Not Applicable with Windows Server 2003 without SP1
Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 (there is no known direct dependency with Outlook Express, but the affected component is part of the OS distribution. Recommend to apply the hotfix) (Superceded by SP2)) Not Applicable with Windows Server 2003 without SP1
Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 (there is no known direct dependency with Outlook Express, but the affected component is part of the OS distribution. Recommend to apply the hotfix) (Superceded by SP2) Not Applicable with Windows Server 2003 without SP1
Cumulative Security Update for Internet Explorer (918899) MS06-042 Vulnerability in DNS Resolution Could Allow Remote Code Execution (920683)
Critical
8-Aug-2006
Applicable (need CCMA DP020310 or SUS0204 to be No Dependency (IE installed for full should not be run on CCMA compatibility) CCMS server) (Superceded by (Superceded by SP2) SP2)
MS06-041
Critical
8-Aug-2006
Vulnerability in Server Service Could Allow Remote MS06-040 Code Execution (921883)
Critical
8-Aug-2006
Applicable (Superceded by SP2) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerabilities in Microsoft Office Filters Could Allow remote Code Execution (915384)
MS06-039
Critical
11-Jul-2006
MS06-038
Critical
11-Jul-2006
Vulnerability in Microsoft Excel Could Allow Remote Code Execution (917285)
MS06-037
Critical
11-Jul-2006
Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerability in DHCP Client Service Could Allow Remote MS06-036 Code Execution (914388)
Critical
11-Jul-2006
Applicable (DHCP Applicable (DHCP Applicable (DHCP Client should not Client should not be Client should not be used by CCMS used by CCMS be used by CCMS server, but DHCP server, but DHCP server, but DHCP Client Service is Client Service is an Client Service is an an integral part of integral part of the integral part of the the OS. OS. Recommend to OS. Recommend Recommend to apply the hotfix) to apply the hotfix) apply the hotfix) (Superceded by (Superceded by (Superceded by SP2) SP2) SP2)
Vulnerability in Server Service Could Allow Remote MS06-035 Code Execution (917159)
Critical
11-Jul-2006
Vulnerability in Microsoft Internet Information Services using Active Server Pages Could Allow Remote Code MS06-034 Execution (917537)
Important
11-Jul-2006
Not Applicable (IIS should not be installed on CCMS Applicable server) (Superceded (Superceded by SP2) by SP2)
Not Applicable (IIS should not be installed on CCMS Replication server) (Superceded by SP2)
Vulnerability in ASP.NET Could Allow Information Disclosure (917283)
MS06-033
Important
11-Jul-2006
Applicable only if ,NET Framework 2.0 is installed Not Applicable for default Windows No Dependency (.NET 2.0 should not Server 2003 with .NET Framework be installed on 1.1 CCMS server)
No Dependency (.NET 2.0 should not be installed on CCMS Replication server)
Vulnerability in TCP/IP Could Allow Remote Code MS06-032 Execution (917953)
Important
13-Jun-2006
Vulnerability in RPC Mutual Authentication Could Allow Spoofing (917736) Vulnerability in Server Message Block Could Allow Remote Elevation of Provilege (914389) Vulnerability in Microsoft Exchange Server Running Outlook Web Access Could Allow Script Injection (912442)
MS06-031
Moderate
13-Jun-2006
Not Applicable
Not Applicable
Not Applicable
MS06-030
Important
13-Jun-2006
MS06-029
Important
13-Jun-2006
Not Applicable
Not Applicable
Not Applicable Not Applicable (Microsoft Office product should not be installed on CCMS Replication server) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerability in Microsoft PowerPoint Could Allow Remote Code Execution (916768)
MS06-028
Critical
13-Jun-2006
MS06-027
Critical
13-Jun-2006
Vulnerability in Graphic Rendering Engine Could Allow Remote Code Execution (918547)
MS06-026
Critical
13-Jun-2006
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Routing and Remote Access Could Allow Remote Code Execution MS06-025 (911280)
Critical
13-Jun-2006
MS06-024
Critical
13-Jun-2006
Applicable (there is no known direct dpendency with Windows Media Player, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in Microsoft JScript Could Allow Remote MS06-023 Code Execution (917344)
Critical
13-Jun-2006
No Dependency (IE should not be run on CCMS server) (Superceded by SP2)
No Dependency Applicable (it is a (IE should not be companion update run on CCMS together with MS06- server) 021) (Superceded (Superceded by by SP2) SP2)
Vulnerability in ART Image Rendering Could Allow Remote Code Execution (918439)
MS06-022
Critical
13-Jun-2006
No Dependency (IE should not be used to connect other No Dependency (IE web site outside should not be run on CCMS co-res CCMS server) server) (Superceded by (Superceded by SP2) SP2)
No Dependency (IE should not be run on CCMS server) (Superceded by SP2)
Cumulative Security Update for Internet Explolrer MS06-021 (916281) Vulnerability in Macromedia Flash Player from Adobe Could Allow Remote Code MS06-020 Execution (913433)
Critical
13-Jun-2006
Applicable (Superceded by SP2) (need CCMA No Dependency (IE DP020310 or should not be run on SUS0204 to be CCMS server) installed for full (Superceded by CCMA SP2) compatibility)
Critical
9-May-2006
Not Applicable
Not Applicable
Not Applicable Not Applicable (Microsoft Exchange should not be installed on CCMS Replication server)
Vulnerability in Microsoft Exchange Could Allow Remote Code Execution (916803)
MS06-019
Critical
9-May-2006
Vulnerability in Microsoft Distributed Transaction Coordinator Could Allow Denial of Service (913580)
MS06-018
Moderate
9-May-2006
Applicable with Windows Server 2003 without SP1 only (no direct dependency with MSDTC, but the affected component is an integral part of the OS, recommended to install hotfix or SP1)
Vulnerability in Microsoft FrontPage Server Extensions Could Allow Cross-Site Scripting (917627)
MS06-017
Moderate
11-Apr-2006
No Dependency
Important
11-Apr-2006
No Dependency No Dependency No Dependency No Dependency (Outlook Express (Outlook Express (Outlook Express should not be run should not be run on should not be run on CCMS CCMS server) on CCMS server) Replication server) (replaced by MS07- (replaced by MS07- (replaced by MS07034) 034) 034)
No Dependency
MS06-015
Critical
11-Apr-2006
Vulnerability in the Microsoft Data Access Component (MDAC) Function Could Allow Code Execution MS06-014 (911562)
Critical
11-Apr-2006
Critical
11-Apr-2006
No Dependency (IE should not be run on CCMS Replication server) (Superceded by SP2) Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vunerabilities in Microsoft Office Could Allow Remote Code Execution (905413)
MS06-012
Critical
14-Mar-2006
Permissive Windows Services DACLs Could Allow Elevation of Privilege MS06-011 (914798)
Important
14-Mar-2006
Applicable with Windows Server 2003 without SP1 only. Not Applicable with Windows Server 2003 with SP1 and Windows Server 2003 R2
Applicable with Windows Server 2003 without SP1 only. Not Applicable with Windows Server 2003 with SP1 and Windows Server 2003 R2
Applicable with Windows Server 2003 without SP1 only. Not Applicable with Windows Server 2003 with SP1 and Windows Server 2003 R2 Not Applicable (Microsoft Office product should not be installed on CCMS Replication server)
Vulnerability in PowerPoint 2000 Could Allow Information Disclosure (880167)
MS06-010
Important
14-Feb-2006
Vulnerability in the Korean Input Method Editor Could Allow Elevation of Privilege (901190)
MS06-009
Important
14-Feb-2006
No Dependency (applicable only if Korean language IME is enabled) (Superceded by SP2)
Vulnerability in Web Client Service Could Allow Remote MS06-008 Code Execution (911927)
Important
14-Feb-2006
No Dependency (By default Web No Dependency (By Client Service is default Web Client disabled in Service is disabled Windows Server in Windows Server 2003. No known 2003. No known direct dependency direct dependency with Web Client with Web Client Service, but the Service, but the affected affected component component is part is part of the OS of the OS distribution, distribution, recommend to apply recommend to the hotfix) apply the hotfix) (Superceded by (Superceded by SP2) SP2)
No Dependency (By default Web Client Service is disabled in Windows Server 2003. No known direct dependency with Web Client Service, but the affected component is part of the OS distribution, recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in TCP/IP Could Allow Denial of Service MS06-007 (913446)
Important
14-Feb-2006
Applicable (Superceded by SP2) No Dependency (Non-Microsoft Internet Browser should not be installed and run on CCMS Replication server) Applicable with Media Player 9 on Windows Server 2003 (replaced by MS06-024)
Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browser Could Allow Remote MS06-006 Code Execution (911564)
Important
14-Feb-2006
No Dependency (Non-Microsoft Internet Browser should not be installed and run on CCMS server) Applicable with Media Player 9 on Windows Server 2003 (replaced by MS06-024)
No Dependency (Non-Microsoft Internet Browser should not be installed and run on CCMS server) Applicable with Media Player 9 on Windows Server 2003 (replaced by MS06-024)
MS06-005
Critical
14-Feb-2006
Critical
14-Feb-2006
Not Applicable (Superceded by SP2)
Vulnerability in TNEF Decoding in Microsoft Outlook and Microsoft Exchange Could Allow Remote Code Execution (902412)
MS06-003
Critical
10-Jan-2006
Not Applicable (Microsoft Outlook and Exchange should not be installed on CCMS server)
Not Applicable (Microsoft Outlook and Exchange should not be installed on CCMS server)
Not Applicable (Microsoft Outlook and Exchange should not be installed on CCMS Replication server)
Vulnerability in Embedded Web Fonts Could Allow Remote Code Execution (908519)
MS06-002
Critical
10-Jan-2006
Applicable (no known direct dependency on the affected web font component, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in Graphic Rendering Engine Could Allow Remote Code Execution (912919)
MS06-001
Critical
5-Jan-2006
Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
Important
13-Dec-2005
Not Applicable
Critical
13-Dec-2005
No Dependency (IE should not be run on Applicable CCMS server) (Superceded by (Superceded by SP2) SP2)
Vulnerability in Graphics Rendering Engine Could Allow Code Execution (896424)
MS05-053
Critical
8-Nov-2005
Critical
11-Oct-2005
Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400)
MS05-051
Critical
11-Oct-2005
Applicable (no known direct dependency on COM+/MSDTC, but the affected compoenent is an integral part of the OS, recommend to Applicable apply the hotfix) (Superceded by (Superceded by SP2) SP2)
Applicable (no known direct dependency on COM+/MSDTC, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in DirectShow Could Allow Remote Code Execution (904706)
MS05-050
Critical
11-Oct-2005
Applicable (no known direct dependency on DirectShow, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725)
MS05-049
Important
11-Oct-2005
No Dependency (no known direct dependency on Shell, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in the Microsoft Collaboration Objects Could Allow Remote Code Execution (907245) MS05-048
Important
11-Oct-2005
No Dependency (no known direct dependency on Windows CDO, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege MS05-047 (905749)
Important
11-Oct-2005
Not Applicable
Not Applicable
Not Applicable
Vulnerability in the Client Services for Netware Could Allow Remote Code Execution (899589)
MS05-046
Important
11-Oct-2005
No Dependency (no known direct dependency with Netware Client Service, but the affected component is part of the OS distribution, recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in Network Connection Manager Could Allow Denial of Service (905414)
MS05-045
Moderate
11-Oct-2005
No Dependency (no known direct dependency on Netman, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in the Windows FTP Client Could Allow File Transfer Location and MS05-044 Tampering (905495)
Moderate
11-Oct-2005
No Dependency for Windows 2003 without SP1. Not Applicable to Windows 2003 with SP1 and Windows Server 2003 R2
Vulnerability in Print Spooler Service Could Allow Remote MS05-043 Code Execution (896423)
Critical
9-Aug-2005
Applicable Windows 2003 without SP1 (no known direct dependency with the affected component, but the affected component is part of the OS distribution, recommend to apply hotfix) Not Applicable to Windows 20003 with SP1 and Windows Server 2003 R2
Applicable Windows 2003 without SP1 (no known direct dependency with the affected component, but the affected component is part Applicable to of the OS Windows Server distribution, 2003 without SP1 recommend to only. apply hotfix) Not Applicable to Not Applicable to Windows Server Windows 20003 2003 with SP1 and with SP1 and Windows Server Windows Server 2003 R2 2003
Vulnerability in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587)
MS05-042
Moderate
9-Aug-2005
No Dependency (no known direct dependecy with Kerberos, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591)
MS05-041
Moderate
9-Aug-2005
Applicable (Remote Desktop Connection can be used as remote support connection tool for CCMS server running on Windows Server 2003, and the affected component is an integral part of the OS. Recommend to apply the hotifx) (Superceded by SP2)
Vulnerability in Telephony Service Could Allow Remote MS05-040 Code Execution (893756)
Important
9-Aug-2005
No Dependency (no known direct dependecy with TAPI, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Applicable with CCMS co-res with CCT. No Dependency with CCMS co-res without CCT (no known direct dependency with TAPI for CCMS cores without CCT, but the affected component is an integral part of the OS, recommend to apply the hotfix) (SUperceded by SP2)
No Dependency (no known direct dependecy with TAPI, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Vulnerability in Plug and Play Could Allow Remote Code Execution and Elevation of MS05-039 Privilege (899588)
Critical
9-Aug-2005
Applicable (no Applicable (no known direct known direct dependency with dependency with the the affected affected component, component, but the but the affected affected component is an component is an integral part of the integral part of the OS, recommend to OS, recommend to apply hotfix) apply hotfix) (Superceded by (Superceded by SP2) SP2)
Applicable (no known direct dependency with the affected component, but the affected component is an integral part of the OS, recommend to apply hotfix) (Superceded by SP2)
Critical
9-Aug-2005
No dependency (IE should not be run on Applicable CCMS server) (Superceded by (Superceded by SP2) SP2)
No dependency (IE should not be run on CCMS Replication server) (Superceded by SP2)
Vulnerability in Jview Profiler Could Allow Remote Code MS05-037 Execution (903235)
Critical
12-Jul-2005
No Dependency (MS Java Virtual Applicable Machine and IE should not be run on (replaced by MS05052) CCMS server)
No Dependency (MS Java Virtual Machine and IE should not be run on CCMS Replication server)
Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214)
MS05-036
Critical
12-Jul-2005
Applicable (no known direct dependency with the affected component, but the affected component is part of the OS distribution, recommend to apply hotfix) (Superceded by SP2)
Vulnerability in Microsoft Word Could Allow Remote MS05-035 Code Execution (903672) Cumulative Security Updates for ISA Server 2000 MS05-034 (899753)
Critical
12-Jul-2005
Not Applicable Not Applicable (MS Not Applicable (MS (MS Office should Office should not co- Office should not not co-reside with reside with CCMS co-reside with CCMS Replication server) CCMS server) server)
Moderate
14-Jun-2005
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Telnet Client Could Allow Information MS05-033 Disclosure (896428)
Moderate
14-Jun-2005
No Dependency (Telnet Client should not be run on CCMS server) (Superceded by SP2)
No Dependency (Telnet Client should not be run on CCMS server) (Superceded by SP2)
No Dependency (Telnet Client should not be run on CCMS Replication server) (Superceded by SP2)
Vulnerability in Microsoft Agent Could Allow Spoofing MS05-032 (890046)
Moderate
14-Jun-2005
Not Applicable Not Applicable (Microsoft Agent (Microsoft Agent should not be should not be installed on CCMS installed on CCMS server) server) (Superceded (Superceded by by SP2) SP2)
Not Applicable (Microsoft Agent should not be installed on CCMS Replication server) (Superceded by SP2) Not Applicable (Step-by-Step Interactive Training should not be installed on CCMS Replication server) (replaced by MS07-005)
Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code MS05-031 Execution (898458)
Important
14-Jun-2005
Not Applicable (Step- Not Applicable by-Step Interactive (Step-by-Step Training should not Interactive Training be installed on should not be CCMS server) installed on CCMS (replaced by MS07- server) (replaced 005) by MS07-005)
Cumulative Security Update in Outlook Express (897715) MS05-030 Vulnerability in Outlook Web Access for Exchange Server 5.5 Could Allow Cross-Site MS05-029 Scripting Attacks (895179)
Important
14-Jun-2005
No Dependency with Windows 2003 without SP1 (Outlook Express should not be run on CCMS server). Not aplicable with Windows 2003 with SP1 and Windows Server 2003 R2
Important
14-Jun-2005
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Web Client Service Could Allow Remote MS05-028 Code Execution (896426)
Important
14-Jun-2005
No Dependency with Windows Server 2003 without SP1 (Web Client service is disabled as default in Windows Server 2003, and CCMS has no known direct dependency with Web Client service, but Web Client Service is part of the OS distribution. Recommend to apply hotfix if Web Client service is enabled). Not Applicable to Windows 2003 with SP1 and Windows Server 2003 R2
Vulnerability in Server Message Block Could Allow Remote Code Execution (896422)
MS05-027
Critical
14-Jun-2005
Vulnerability in HTML Help Could Allow Remote Code Execution (896358)
MS05-026
Critical
14-Jun-2005
Applicable (no known direct dependency with HTML Help, but HTML Help is part of the OS distribution. Recommend to apply hotfix) (Superceded by SP2)
Critical
14-Jun-2005
No Dependency (Superceded by SP2)
Vulnerability in Web View Could Allow Remote Code Execution (894320)
MS05-024
Important
10-May-2005
Not Applicable
Not Applicable
Not Applicable
Vulnerabilities in Microsoft Word May Lead to Remote Code Execution (890169)
MS05-023
Critical
12-Apr-2005
Not Applicable (Microsoft Word should not be installed on CCMS server)
Not Applicable (Microsoft Word should not be installed on CCMS server)
Not Applicable (Microsoft Word should not be installed on CCMS Replication server)
Vulnerability in MSN Messenger Could Lead to Remote Code Execution (896597) Vulnerability in Exchange Server Could Allow Remote Code Execution (894549)
MS05-022
Critical
12-Apr-2005
Not Applicable (MSN Messenger should not be installed on CCMS server)
Not Applicable (MSN Messenger should not be installed on CCMS server)
Not Applicable (MSN Messenger should not be installed on CCMS Replication server)
MS05-021
Critical
12-Apr-2005
Not Applicable
Not Applicable
Not Applicable
Critical
12-Apr-2005
Vulnerability in TCP/IP Could Allow Remote Code Execution and Denial of MS05-019 Service (893066)
Critical
12-Apr-2005
Applicable with Windows Server 2003 without SP1 (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Vulnerability in Windows Kernel Could Allow Elevation of Privilege and Denial of MS05-018 Service (890859)
Important
12-Apr-2005
Vulnerability in Message Queuing Could Allow Code Execution (892944)
MS05-017
Important
12-Apr-2005
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Windows Shell that Could Allow Remote Code Execution (893086)
MS05-016
Important
12-Apr-2005
Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113)
MS05-015
Critical
8-Feb-2005
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Critical
8-Feb-2005
No Dependency (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Vulnerability in the DHTML Editing Component ActiveX Control Could Allow Remote MS05-013 Code Execution (891781)
Critical
8-Feb-2005
Vulnerability in OLE and COM Could Allow Remote Code Execution (873333)
MS05-012
Critical
8-Feb-2005
Vulnerability in Server Message Block Could Allow Remote Code Execution (885250)
MS05-011
Critical
8-Feb-2005
Vulnerability in the License Logging Service Could Allow MS05-010 Code Execution (885834)
Critical
8-Feb-2005
Vulnerability in PNG Processing Could Allow Remote Code Execution
MS05-009
Critical
8-Feb-2005
Vulnerability in Windows Shell Could Allow Remote Code Execution (890047)
MS05-008
Important
8-Feb-2005
Vulnerability in Windows Could Allow Information Disclosure (888302) Vulnerability in Windows SharePint Services and SharePoint Team Services Could Allow Cross-Site Scripting and Spoofing Attacks (887981) Vulnerability in Microsoft Office XP could allow Remote Code Execution (873352)
MS05-007
Important
8-Feb-2005
Not Applicable Not Applicable (SharePoint is not installed by default on Windows Server 2003)
MS05-006
Moderate
8-Feb-2005
MS05-005
Critical
8-Feb-2005
Not Applicable
Not Applicable
Not Applicable
ASP.NET Path Validation Vulnerability (887219)
MS05-004
Important
8-Feb-2005
No Dependency No Dependency (Superceded by (Superceded by SP1) (no known SP1) (no known dependency with Applicable dependency with .NET by CCMS (Superceded by .NET by CCMS Replication server) server) (replaced by SP1) (replaced by (replaced by MS07MS07-040) MS07-040) 040) Not Applicable with Not Applicable with Not Applicable Windows Server Windows Server with Windows 2003 SP1 and 2003 SP1 and Server 2003 SP1 Windows Server Windows Server and Windows 2003 R2 2003 R2 Server 2003 R2
Vulnerability in the Indexing Service Could Allow Remtoe MS05-003 Code Execution (871250)
Important
11-Jan-2005
Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (891711) MS05-02
Critical
11-Jan-2005
Applicable (Superceded by SP1) (replaced by MS07-017) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Vulnerability in HTML Help Could Allow Code Execution MS05-001 (890175)
Critical
11-Jan-2005
Vulnerability in WINS Could Allow Remote Code Execution (870763)
MS04-045
Important
14-Dec-2004
Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege (885835)
MS04-044
Important
14-Dec-2004
Vulnerability in HyperTerminal Could Allow MS04-043 Code Execution (873339) Vulnerability in DHCP Could Allow Remote Code Execution and Denial of MS04-042 Service (885249)
Important
14-Dec-2004
Important
14-Dec-2004
Not Applicable
Not Applicable
Not Applicable
Vulnerability in WordPad Could Allow Code Execution MS04-041 (885836)
Important
14-Dec-2004
Cumulative Security Update for Internet Explorer MS04-040 (889293) Vulnerability in ISA Server 2000 and Proxcy Server 2.0 Could Allow Internet Content MS04-039 Spoofing (888258)
Critical
14-Dec-2004
Not Applicable
Not Applicable
Not Applicable
Important
9-Nov-2004
Not Applicable
Not Applicable
Not Applicable
Critical
12-Oct-2004
MS04-037
Critical
12-Oct-2004
Vulnerability in NNTP Could Allow Code Execution MS04-036 (883935)
Critical
12-Oct-2004
Not Applicable (Superceded by SP1))
Not Applicable (Superceded by SP1))
Vulnerability in SMTP Could Allow Remote Code Execution (885881) MS04-035
Critical
12-Oct-2004
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Not Applicable Windows Server (Superceded by 2003 R2 SP1)
Vulnerability in Compressed (zipped) Folders Could Allow MS04-034 Code Execution (873376)
Critical
12-Oct-2004
Vulnerability in Microsoft Excel Could Allow Code Execution (886836)
MS04-033
Critical
12-Oct-2004
Not Applicable (No Microsoft Office product should be installed on CCMS)
Not Applicable (No Microsoft Office product should be installed on CCMS Co-res server)
Not Applicable (No Microsoft Office product should be installed on CCMS)
Security Update for Microsoft MS04-032 Windows (840987)
Critical
12-Oct-2004
Vulnerability in NetDDE Could Allow Remote Code Execution (841533)
MS04-031
Important
12-Oct-2004
Vulnerability in WebDav XML Message Handler Could Lead to a Denial of Service MS04-030 (824151) Vulnerability in RPC Runtime Library Could Allow Information Disclosure and MS04-029 Denial of Service (873350)
Important
12-Oct-2004
Not Applicable (Superceded by SP1) (IIS should not be installed on CCMS server)
No dependency (Superceded by SP1) (WebDav is not installed by default for Windows 2003)
Not Applicable (Superceded by SP1) (IIS should not be installed on CCMS Replicaton server)
Important
12-Oct-2004
Not Applicable
Not Applicable
Not Applicable
Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution MS04-028 (833987) Vulnerability in Wordperfect Converter Could Allow Code MS04-027 Execution (884933) Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow CrossSite Scripting and Spoofing MS04-026 Attacks (842436)
Critical
14-Sep-2004
Important
14-Sep-2004
Not Applicable
Not Applicable
Not Applicable
Moderate
10-Aug-2004
Not Applicable
Not Applicable
Not Applicable
Critical
30-Jul-2004
MS04-024
Important
13-Jul-2004
Vulnerability in HTML Help Could Allow Code Execution MS04-023 (840315)
Critical
13-Jul-2004
Vulnerability in Task Scheduler Could Allow Code MS04-022 Execution (841873)
Critical
13-Jul-2004
Not Applicable
Not Applicable
Not Applicable
Security Update for IIS 4.0 (841373)
MS04-021
Important
13-Jul-2004
Not Applicable
Not Applicable
Not Applicable
Vulnerability in POSIX Could Allow Code Execution MS04-020 (841872)
Important
13-Jul-2004
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Utility Manager Could Allow Code Execution (842526)
MS04-019
Important
13-Jul-2004
Not Applicable
Not Applicable
Not Applicable
Cumulative Security Update for Outlook Express (823353) MS04-018 Vulnerability in Crystal Reports Web Viewer Could Allow Information Disclosure and Denial of Service MS04-017 (842689)
Moderate
13-Jul-2004
Moderate
8-Jun-2004
Not Applicable
No Dependency (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Not Applicable (all affected MS products should not be installed on CCMS Co-res server)
Not Applicable
Vulnerability in DirectPlay Could Allow Denial of Service (839643)
MS04-016
Moderate
8-Jun-2004
Vulnerability in Help and Support Center Could Allow Remote Code Execution (840374)
MS04-015
Important
11-May-2004
Vulnerability in the Microsoft Jet Database Engine Could Allow Code Execution MS04-014 (837001)
Important
13-Apr-2004
Critical
13-Apr-2004
Cumulative Update for Microsoft RPC/DCOM (828741)
MS04-012
Critical
13-Apr-2004
Security Update for Microsoft MS04-011 Windows (835732) Vulnerability in MSN Messenger Could Allow Information Disclosure MS04-010 (838512)
Critical
13-Apr-2004
Moderate
9-Mar-2004
Not Applicable Not Applicable Not Applicable (MSN should not be (MSN should not be (MSN should not installed) installed) be installed)
Vulnerability in Microsoft Outlook Could Allow Code Execution (828040)
MS04-009
Critical
9-Mar-2004
Not Applicable Not Applicable Not Applicable (Outlook should not (Outlook should not (Outlook should be installed) be installed) not be installed) No Dependency (Windows Media Services should not be installed) No Dependency (Windows Media Services should not be installed) No Dependency (Windows Media Services should not be installed)
Vulnerability in Windows Media Services Could Allow a Denial of Service (832359) MS04-008
Moderate
9-Mar-2004
ASN.1 Vulnerability Could Allow Code Execution (828028)
MS04-007
Critical
10-Feb-2004
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Not Applicable (Superceded by SP1) (WINS should not be installed on Replication server)
Vulnerability in Windows Internet Naming Service (WINS) Could Allow Code MS04-006 Execution (830352) Vulnerability in Virtual PC for MAC could lead to privilege MS04-005 elevation (835150)
Important
10-Feb-2004
Not Applicable (Superceded by SP1) (WINS should not be installed on CCMS server)
Not Applicable (Superceded by SP1) (WINS should not be installed on CCMS server)
Important
10-Feb-2004
Not Applicable
Not Applicable
Not Applicable
Critical
2-Feb-2004
Buffer Overrun in MDAC Function Could Allow Code Execution (832483) Vulnerability in Exchange Server 2003 Could Lead to Privilege Escalation (832759) Vulnerability in Microsoft Internet Security and Acceleration Server 2003 H.323 Filter Could Allow Remote Code Execution (816458) Buffer Overrun in Microsoft FrontPage Server Extension Could Allow Code Execution (813360) Vulnerability in Microsoft Word and Microsoft Excel Could Allow Arbitary Code to run (831527)
MS04-03
Important
13-Jan-2004
MS04-02
Moderate
13-Jan-2004
Not Applicable
Not Applicable
Not Applicable
MS04-01
Critical
13-Jan-2004
Not Applicable
Not Applicable
Not Applicable
MS03-051
Critical
11-Nov-2003
No Dependency
No Dependency
No Dependency
MS03-050
Important
11-Nov-2003
Not Applicable
Not Applicable
Not Applicable
Buffer Overrun in the Workstation Service Could Allow Code Execution (828749)
MS03-049
Critical
11-Nov-2003
Not Applicable
Not Applicable
Not Applicable
Cumulative Security Update for Internet Explorer MS03-048 (824145) Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow CrossSite Scripting Attack (828489) MS03-047 Vulnerability in Exchange Server Could Allow Arbitrary MS03-046 Code Execution (822363)
Critical
11-Nov-2003
Moderate
15-Oct-2003
Not Applicable
Not Applicable
Not Applicable
Critical
15-Oct-2003
Not Applicable
Not Applicable
Not Applicable
Buffer Overrun in the ListBox and in the ComboBox Control Could Allow Code Execution (824141) MS03-045
Low/Important
15-Oct-2003
Buffer Overrun in Windows Help and Support Center Could Lead to System Compromise (825119)
MS03-044
Low
15-Oct-2003
Buffer Overrun in Messenger Service Could Allow Code MS03-043 Execution (828035) Buffer Overflow in Windows Troubleshooter ActiveX Control Could Allow Code Execution (826232)
Critical
15-Oct-2003
MS03-042
Critical
15-Oct-2003
Not Applicable
Not Applicable
Not Applicable
Vulnerability in Authenticode Verification Could Allow Remote Code Execution MS03-041 (823182)
Critical
15-Oct-2003
Cumulative Patch for Internet Explorer (828750)
MS03-040
Critical
3-Oct-2003
Buffer Overrun in RPCSS Service Could Allow Code Execution (824146) Unchecked buffer in Microsoft Access Snapshot Viewer Could Allow Code Execution (827104) Flaw in Visual Basic for Application Could Allow Arbitrary Code Execution (822715) Buffer Overrun in WordPerfect Converter Could Allow Code Execution (827103) Flaw in Microsoft Word Could Enable Macros to Run Automatically (827653)
MS03-039
Critical
10-Sep-2003
MS03-038
Moderate
3-Sep-2003
Not Applicable
Not Applicable
Not Applicable
MS03-037
Critical
3-Sep-2003
Not Applicable
Not Applicable
Not Applicable
MS03-036
Important
3-Sep-2003
Not Applicable
Not Applicable
Not Applicable
MS03-035
Important
3-Sep-2003
Not Applicable
Not Applicable
Not Applicable
Flaw in NetBIOS Could Lead to Information Disclosure MS03-034 (824105) Uncheck Buffer in MDAC Function Could Enable System Compromise MS03-033 (823718)
Low
3-Sep-2003
Important
20-Aug-2003
Cumulative Patch for Internet Explorer (822925)
MS03-032
Critical
20-Aug-2003
Cumulative Patch for Microsoft SQL Server (815495)
MS03-031
Important
23-Jul-2003
Not Applicable
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable with CCMS co-res with CCT. Not Applicable with CCMS co-res without CCT
Not Applicable
Unchecked Buffer in DirectX Could Enable System Compromise (819696) Flaw in Windows Function Could Allow Denial of Service (823803) Flaw in ISA Server Error Pages Could Allow CrossSite Scripting Attack (816456) Uncheck Buffer in Windows Shell Could Enable System Compromise (821557)
MS03-030
Critical
23-Jul-2003
MS03-029
Moderate
23-Jul-2003
Not Applicable
Not Applicable
Not Applicable
MS03-028
Important
16-Jul-2003
Not Applicable
Not Applicable
Not Applicable
MS03-027
Critical
16-Jul-2003
Not Applicable
Not Applicable
Not Applicable
Buffer Overrun in RPC Interface Could allow Code Execution (823980)
MS03-026
Critical
16-Jul-2003
Flaw in Windows Message Handling through Utility Manager Could Enable Privilege Elevation (822679) MS03-025 Buffer Overrun in Windows Could Lead to Data Corruption (817606)
Important
9-Jul-2003
Not Applicable
Not Applicable
Not Applicable
MS03-024
Important
9-Jul-2003
Not Applicable
Not Applicable
Not Applicable
Buffer Overrun in HTML Converter Could Allow Code Execution (823559) MS03-023
Critical
9-Jul-2003
Cumulative Patch for Internet Explorer (818529) Cumulative Patch for Internet Information Service (811114) Cumulative Patch for Internet Explorer (813489) Cumulative Patch for Outlook Express (330994)
MS03-020
Critical
4-Jun-2003
MS03-018
Important
28-May-2003
MS03-015 MS03-014
Critical Critical
28-May-2003 23-Apr-2003
Buffer Overrun in Windows Kernel Message Handling could Lead to Elevated MS03-013 Priviliges (811493) Flaw in Microsoft VM Could Enable System Compromise MS03-011 (816093)) Flaw in RPC Endpoint Mapper Could Allow Denial of Service Attacks (331953) MS03-010
Important
16-Apr-2003
Critical
9-Apr-2003
Important
26-Mar-2003
Flaw in Windows Script Engine Could Allow Code Execution (814078) MS03-008 Unchecked Buffer in Windows Component Could Cause Web Server MS03-007 Compromise (815021) Cumulative Patch for Internet Explorer (810847) MS03-004 Unchecked Buffer in Locator Service Could Lead to Code MS03-001 Execution (810833) Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation (328310) MS02-071
Critical
19-Mar-2003
Critical Critical
17-Mar-2003 5-Feb-2003
Critical
20-Jan-2003
Important
11-Dec-2002
Flaw in SMB Signing Could Enable Group Policy to be Modified (329170) Flaw in Microsoft VM Could Enable System Compromise (810030) Cumulative Patch for Internet Explorer (Q324929) Cumulative Patch for Internet Explorer (Q328970) Buffer Overrun in Microsoft Data Access Components Could Lead to Code Execution (Q329414) Windows 2000 Default Permission Could Allow Trojan Horse Program (Q327522) Unchecked Buffer in PPTP Implementation Could Enable Denial of Service Attacks (Q329834) Cumulative Patch for Internet Information Service (Q327696) Unchecked Buffer in Windows Help Facility Could Enable Code Execution (Q323255) Buffer Overflow in SmartHTML Interpreter Could Allow Code Execution (Q324096) Flaw in Java VM JDBC Classes Could Allow Code Execution (Q329077) Crytographic Flaw in RDP Protocol can Lead to Information Disclosure (Q324380)
MS02-070
Moderate
11-Dec-2002
MS02-069 MS02-068 MS02-066
Critical Critical Critical
11-Dec-2002 4-Dec-2002 20-Nov-2002
MS02-065
Critical
19-Nov-2002
MS02-064
Moderate
30-Oct-2002
MS02-063
Critical
30-Oct-2002
MS02-062
Moderate
30-Oct-2002
MS02-055
Critical
2-Oct-2002
MS02-053
Critical
24-Sep-2002
MS02-052
Critical
18-Sep-2002
MS02-051
Moderate
18-Sep-2002
Cumulative Patch for Internet Explorer (Q323759) MS02-047 Unchecked Buffer in Network Share Provider can lead to Denial of Service (Q326830) Flaw in Network Connection Manager Could Enable Privilege Elevation (Q326886) Cumulative Patches for Excel and Word for Windows (Q324458) Unchecked Buffer in Remote Access Service Phonebook Could Lead to Code Execution (Q318138) Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise (Q321599)
Critical
21-Aug-2002
MS02-045
Moderate
21-Aug-2002
MS02-042
Critical
15-Aug-2002
MS02-031
Moderate
19-Jun-2002
MS02-029
Critical
11-Jun-2002
MS02-028
Critical
11-Jun-2002
Unchecked Buffer in Gopher Protocol Handler Can Run Code of attackers's Choice (Q323889) MS02-027 Authentication Flaw in Windows Debugger can Lead to Elevated Privileges (Q320206) MS02-024 Cumulative Patch for Internet Explorer (Q321232) MS02-023 Cumulative Patch Internet Information Services (Q319733)
Critical
11-Jun-2002
Critical Critical
22-May-2002 15-May-2002
MS02-018
Critical
10-Apr-2002
Unchecked buffer in the Multiple UNC Provided Could Enable Execution (Q318593) Cumulative Patch for Internet Explorer
MS02-016 MS02-015
Moderate Critical
4-Apr-2002 28-Mar-2002
Unchecked Buffer in Windows Shell Could lead to Code Execution MS02-014 Malformed Data Transfer Request can cause Windows SMTP Service to Fail MS02-012 Uncheck Buffer in SNMP Service Could Enable Arbitary Code to run (Q314147) MS02-006
Moderate
7-Mar-2002
Low
27-Feb-2002
Moderate
12-Feb-2002
Windows 2000 Security Rollup Package 1
Win2000 SRP1
Not rated
Avaya NES CCT 5.0 (EOL)
SCCS 4.2 (EOL) (NCC)
SCCS 5.0 Standalone (EOL) (NCC)
SCCS 5.0 Cores (EOL)
SWC 4.0 (EOL) SWC 4.5 (EOL) SCCS 4.2 (EOL) TAPI 3.0 (EOL)
Yes (validated with SUS0401/SUS040 Not Applicable 2)
Yes (validated with SU07)
Yes (validated with N_CCT_5.0_SUS_ Not Applicable 0201)
Yes (requires SUS0505) Yes (validated with SU06 and SUS0601)
Yes (validated with SU07. Must require ADAM SP1 installed prior applying Not Applicable SP2) Yes (requires SUS0505 for SCCS 5.0, and SUS0601v1 for Not Applicable SWC 4.5)
SWC 4.5 in MD Status (validated with SU07. Must have ADAM SP1 installed prior applying SP2)
Yes (requires SUS0601v1) Yes (validated with SU06 and SU0601)
Not Applicable
Yes (validated with TAPISP3.0.0.8i) Product retired no testing planned
To Be Confirmed
Not Applicable
To Be Confirmed
Yes (validated with SU09S, and Yes (validated must required SU08S or higher) with SU01S) Applicable (validated up to SU08S, and must required SU08S) Applicable (validated up to SU07S)
Not Applicable
Yes (validated with SWC 4.5 GA release)
Product retired no testing planned Yes (validated with SU09S, and must required Yes (validated SU08S or with GA release) higher)
Yes (validated with TAPISP3.0.0.6)
Applicable (validated up to Beta base release Not Applicable with no SU)
Not Applicable
Not Applicable
Applicable (validated with SU08) Applicable (validated up to SU07)
Not Applicable (replaced by SP4) Not Applicable (replaced by SP4)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Avaya NES CCMA Avaya NES 6.0 (MD) CCMM 6.0 (MD)
Avaya NES CCT Avaya NES 6.0 (MD) CCT 5.0 (EOL)
SCCS 4.2 (Manufacture Discontinued) (NCC)
SCCS 5.0 Standalone (Manufacturer Discontinued) (NCC)
SCCS 5.0 Cores (Manufacturer Discontinued)
SCCS 4.2 (EOL)
Applicable (there is no known direct dependency with the .NET Framework, but the affected component is an integral part of the OS distribution. Recommend to Applicable apply the hotfix)
Applicable
Applicable
Applicable
Applicable
Not Applicable (IIS should not be installed on CCT server)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable (Microsoft Office product should not be installed on CCMA server)
Not Applicable (Microsoft Office product should not be installed on CCMM server)
Not Applicable (Microsoft Office product should not be installed on CCT server)
Not Applicable (Microsoft Office product should not be installed on CCT server) Applicable (There is no known direct dependency with the CCF Driver, but the affected component is a distributed component of the OS. Recommend to apply the hotfix)
Applicable
Applicable
No Dependency (IE should not be run on CCT server)
Applicable (no Applicable (no known direct known direct dependency on dependency on the the affected affected ActiveX ActiveX control, control, but it is a but it is a good good security security measure measure to block to block the the control. control. Recommend to Recommend to apply the hotfix) apply the hotfix)
No Dependency (IE should not be run on CCT server) Applicable (no Applicable (no known direct known direct dependency on dependency on the affected the affected ActiveX control, ActiveX control, but it is a good but it is a good security security measure measure to to block the block the control. control. Recommend to Recommend to apply the hotfix) apply the hotfix) Applicable (there is no known direct dependency with the affectd components, but the components are integral part of the OS. Recommend to apply the hotfix)
Applicable
Applicable
Applicable
Applicable
Not Applicable (Microsoft Office product should not be installed on CCT server) No Dependency (Outlook Express should not be run on CCT server)
No Dependency (Outlook Express should not be run on CCMA server)
No Dependency (Outlook Express should not be run on CCMM server)
No Dependency (Outlook Express should not be run on CCT server)
Applicable
Applicable
Applicable
Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable Applicable (There is no known direct dependency with the MPEG Layer3 Codecs, but the affected component is a distributed component of the OS. Recommend to apply the hotfix)
Applicable (There is no known direct dependency with the MPEG Layer3 Codecs, but the affected component is a distributed component of the OS. Recommend to apply the hotfix)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable
Not Applicable (Microsoft Exchange and SMTP Service should not be installed on CCMM server)
Not Applicable (Microsoft Exchange and SMTP Service should not be installed on CCT server)
Not Applicable (Microsoft Exchange and SMTP Service should not be installed on CCT server)
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Not Applicable Not Applicable Applicable Applicable (replaced by MS10- (replaced by 021) MS10-021)
Not Applicable Applicable (replaced by MS10-021)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the Kerberos, but the Kerberos, but the Kerberos, but the affected the affected the affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Applicable (there is no known direct dependency with the Kerberos, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable (there is no known direct dependency with the DirectShow, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the DirectShow, the DirectShow, the DirectShow, but the affected but the affected but the affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (no known direct Applicable (no dependency on known direct dependency on the the affected ActiveX control, affected ActiveX control, but it is a but it is a good security measure good security measure to block to block the control. the control. Recommend to Recommend to apply the hotfix) apply the hotfix) (replaced by MS10- (replaced by MS10-034) 034)
Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS10-034)
Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS10-034)
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
No Dependency (Microsoft Paint should not be run on CCMA server)
No Dependency (Microsoft Paint should not be run on CCMM server)
No Dependency (Microsoft Paint should not be run on CCT server)
No Dependency (Microsoft Paint should not be run on CCT server)
Applicable Applicable (replaced by MS10- (replaced by 018) MS10-018)
No Dependency (IE should not be run on CCT server) (replaced by MS10-018)
No Dependency (IE should not be run on CCT server) (replaced by MS10-018) Applicable (there is no known direct dependency with the Embedded OpenType Font Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the Embedded the Embedded the Embedded OpenType Font OpenType Font OpenType Font Engine, but the Engine, but the Engine, but the affected affected affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Applicable Applicable (repalced by MS10- (replaced by 002) MS10-002)
No Dependency (IE should not be run on CCT server) (replaced by MS10-002) Applicable (there is no known direct dependency with the IAS or PEAP, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Not Applicable (Active Directory Federation Service should not be installed on CCMA server)
Not Applicable (Active Directory Federation Service should not be installed on CCMM server)
Not Applicable (Active Directory Federation Service should not be installed on CCT server)
Not Applicable (Active Directory Federation Service should not be installed on CCT server)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the LSSAS, but the LSSAS, but the the LSSAS, but the affected affected the affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Applicable with ADAM
Not Applicable (Active Directory Service should not be on CCMM server)
Not Applicable (Active Directory Service should not be on CCT server) Applicable (replaced by MS10-032)
Not Applicable (Active Directory Service should not be on CCT server) Applicable (replaced by MS10-032)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable Applicable with Windows Server 2003(there is no known direct dependency with the GDI+, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows 2000
Applicable (there is no known direct dependency with the .NET Framework, but the affected component is an integral part of the OS distribution. Recommend to Applicable apply the hotfix) (replaced by MS10- (replaced by MS10-041) 041)
Applicable (replaced by MS10-041)
Applicable
Applicable
Applicable Applicable (replaced by MS10-015)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the Indexing the Indexing the Indexing service, but the service, but the service, but the affected affected affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the CryptoAPI the CryptoAPI the CryptoAPI functions, but the functions, but the functions, but the affected affected affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix) Applicable (no known direct Applicable (no dependency on known direct dependency on the the affected ActiveX control, affected ActiveX control, but it is a but it is a good security measure good security measure to block to block the control. the control. Recommend to Recommend to apply the hotfix) apply the hotfix) (replaced BY MS10-(replaced BY MS10-008) 008)
Applicable (there is no known direct dependency with the CryptoAPI functions, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable (no Applicable (no known direct known direct dependency on dependency on the affected the affected ActiveX control, ActiveX control, but it is a good but it is a good security security measure measure to to block the block the control. control. Recommend to Recommend to apply the hotfix) apply the hotfix) (replaced BY (replaced BY MS10-008) MS10-008)
Applicable Applicable (replaced by MS09- (replaced by 072) MS09-072) No Dependency (FTP service should not be enabled on CCMA server. Recommend to apply the hotfix only if FTP service is enabled on IIS) No Dependency (FTP service should not be enabled on CCMM server. Recommend to apply the hotfix only if FTP service is enabled on IIS)
No Dependency No Dependency (there is no known (there is no direct known direct dependency with dependency with Windows Media Windows Media Player. Player. Recommend to Recommend to apply the hotfix apply the hotfix only if Media only if Media Player 6.4 is Player 6.4 is installed) installed)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with Windows Media Runtime, but the Windows Media Windows Media Runtime, but the Runtime, but the affected component is an affected affected component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable
Applicable
Applicable
Applicable Applicable (there is no known direct dependency with Windows Media Format Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (there Applicable (there is no known direct Applicable (there is is no known direct dependency with no known direct dependency with the DHTML dependency with the DHTML Editing the DHTML Editing Editing Component Component Component ActiveX Control, ActiveX Control, ActiveX Control, but the affected but the affected but the affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Applicable (there is no known direct dependency with the DHTML Editing Component ActiveX Control, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable (there is no known direct dependency with the Jscript Scripting Engine, but the affected component is an integral part of IE of the OS. Recommend to apply the hotfix)
Applicable
Applicable
Applicable
Applicable
Not Applicable (Microsoft Office product should not be installed on CCT server) Applicable (there is no known direct dependency with the Telnet, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Not Applicable (Microsoft Office product should not be installed on CCT server) Applicable (there is no known direct dependency with the Telnet, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable
Applicable
Applicable
Applicable Applicable (there is no known direct dependency with the MSMQ, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the MSMQ, but the MSMQ, but the the MSMQ, but the affected affected the affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Not Applicable (WINS should not be installed on CCMA server)
Not Applicable (WINS should not be installed on CCMM server)
Not Applicable (WINS should not be installed on CCT server)
Applicable (there is Applicable (there no known direct is no known direct dependency with dependency with the Media the Media Processing, but the Processing, but affected the affected component is an component is an integral part of the integral part of the OS. Recommend OS. Recommend to apply the hotfix) to apply the hotfix) (replaced by MS10- (replaced by 013) MS10-013)
Applicable (there is no known direct dependency with the Media Processing, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS10-013) Applicable (no known direct dependency on the affected ATL components and controls, but the affected components are the integral distribution of the OS. Recommend to apply the hotfix)
Not Applicable (WINS should not be installed on CCT server) Applicable (there is no known direct dependency with the Media Processing, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS10-013) Applicable (no known direct dependency on the affected ATL components and controls, but the affected components are the integral distribution of the OS. Recommend to apply the hotfix)
Not Applicable (Application using the Not Applicable Not Applicable affected ATL (Application using (Application using with Visual the affected ATL the affected ATL Studio should with Visual Studio with Visual Studio not be should not be should not be developed on developed on developed on Cotnact Center Cotnact Center Cotnact Center portfolio portfolio product) portfolio product) product)
No Dependency (IE should not be Applicable Applicable run on CCT (replaced by MS09- (replaced by server) (replaced 054) MS09-054) by MS09-054) Not Applicable Not Applicable Not Applicable (Contact Center (Contact Center (Contact Center product should not product should not product should be installed on be installed on not be installed on Virtual Server Virtual Server Virtual Server platform) platform) platform) Applicable (no Applicable (no known direct known direct dependency on dependency on the the affected affected ActiveX ActiveX control, control, but it is a but it is a good good security security measure measure to block to block the the control. control. Recommend to Recommend to apply the hotfix) apply the hotfix) (replaced by MS09- (replaced by 055) MS09-055)
No Dependency (IE should not be run on CCT server) (replaced by MS09-054) Not Applicable (Contact Center product should not be installed on Virtual Server platform) Applicable (no Applicable (no known direct known direct dependency on dependency on the affected the affected ActiveX control, ActiveX control, but it is a good but it is a good security security measure measure to to block the block the control. control. Recommend to Recommend to apply the hotfix) apply the hotfix) (replaced by (replaced by MS09-055) MS09-055)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable (Microsoft Office product should not be installed on CCT server) Applicable (there is no known direct dependency with the Embedded OpenType Font Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS10-001)
Applicable (there is Applicable (there no known direct is no known direct dependency with dependency with the Embedded the Embedded OpenType Font OpenType Font Engine, but the Engine, but the affected affected component is an component is an integral part of the integral part of the OS. Recommend OS. Recommend to apply the hotfix) to apply the hotfix) (replaced by MS10- (replaced by 001) MS10-001)
Applicable (there is no known direct dependency with the Embedded OpenType Font Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS10-001)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the DirectX, but the DirectX, but the the DirectX, but the affected affected the affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Not Applicable (Microsoft Office product should not be installed on CCT server) No Dependency (Windows Search is not preinstalled in Windows Server 2003) Applicable (there is no known direct dependency with the Print Spooler, but the affected component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix)
Applicable
Applicable
Not Applicable (Microsoft Office product should not be installed on CCT server) Not Applicabe (Microsoft IIS should not be installed on CCT server) Applicable if CCAD Voice Only Toolbar is installed
Not Applicable (Microsoft IIS should not be installed on CCT server)
Applicable
Not Applicable (Microsoft Active Directory should not be installed on CCMM server)
Not Applicable (Microsoft Active Directory should not be installed on CCT server)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable
Applicable
Applicable
Applicable No Dependency No Dependency (IE should not (IE should not be be run on CCT server) run on CCT server) (replaced (replaced by MS09-019) by MS09-019) Applicable (there is no known direct dependency with the WinHTTP, but the affected WinHTTP component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix)
Applicable
Applicable
Applicable
Applicable
Applicable (there is Applicable (there no known direct is no known direct dependency with dependency with the DirectX, but the the DirectX, but affected the affected component is an component is an integral part of the integral part of the OS. Recommend OS. Recommend to apply the hotfix) to apply the hotfix) (replaced by MS09- (replaced by 028) MS09-028)
Applicable (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-028)
Not Applicable
Not Applicable
Not Applicable
Not Applicable Applicable (there is no known direct dependency with Secure Channel Package, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable (replaced by MS09-025)
Applicable (there Applicable (there is no known direct is no known direct dependency with dependency with Secure Channel Secure Channel Package, but the Package, but the affected affected component is an component is an integral part of the integral part of the OS. Recommend OS. Recommend to apply the Applicable to apply the hotfix) hotfix) Applicable Applicable Applicable (replaced by MS09- (replaced by (replaced by 025) MS09-025) MS09-025)
No Dependency (Microsoft SQL Server version should normally not installed on CCMA server)
No Dependency (Microsoft SQL Server version should normally not installed on CCMM server)
Not Applicable (Microsoft Office product should not be installed on CCT server) Not Applicable with the MSDE version on CCT (Microsoft SQL Server version should normally not installed on CCT server)
Not Applicable
Not Applicable
Not Applicable No Dependency (IE should not be run on CCT server) Applicable (replaced by MS10-012)
Not Applicable
Applicable only if Applicable only if IE 7.0 is installed IE 7.0 is installed on CCMA server on CCMM server Applicable Applicable (replaced by MS10- (replaced by 012) MS10-012)
No Dependency (IE should not be run on CCT server) Applicable (replaced by MS10-012) No Dependency No Dependency (IE should not (IE should not be be run on CCT run on CCT server) server) (replaced (replaced by by MS09-014) MS09-014)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (there is Applicable (there no known direct is no known direct dependency with dependency with Windows Media Windows Media Format Runtime, Format Runtime, but the affected but the affected component is an component is an integral part of the integral part of the OS. Recommend OS. Recommend to apply the hotfix) to apply the hotfix) (replaced by MS09- (replaced by 047) MS09-047)
Applicable (there is no known direct dependency with Windows Media Format Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-047)
Applicable (there is no known direct dependency with Windows Media Format Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-047)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable (Microsoft Office product should not be installed on CCT server) No Dependency No Dependency (IE should not (IE should not be be run on CCT server) run on CCT server) (replaced (replaced by MS09-014) by MS09-014)
Not Applicable (Microsoft Office product should not be installed on CCT server) Applicable (no known direct dependency on the affected GDI, but the affected component is an integral part of the OS. Recommend to apply the hotfix) No Dependency (the affected Visual Basic 6.0 Runtime Extended Files is not installed by Windows or Contact Center product. It is recommended to apply this security hotfix if customer's supplied application install the affected component)
No Dependency No Dependency (the affected (the affected Visual Visual Basic 6.0 Basic 6.0 Runtime Runtime Extended Extended Files is Files is not not installed by installed by Windows or Windows or Contact Center Contact Center product. It is product. It is recommended to recommended to apply this security apply this security hotfix if customer's hotfix if customer's supplied supplied application install application install the affected the affected component) component)
Not Applicable (Microsoft Office product should not be installed on CCT server) Applicable (no known direct dependency on the affected GDI, but the affected component is an integral part of the OS. Recommend to apply the hotfix) No Dependency (the affected Visual Basic 6.0 Runtime Extended Files is not installed by Windows or Contact Center product. It is recommended to apply this security hotfix if customer's supplied application install the affected component)
Applicable Applicable Applicable Applicable (replaced by MS10- (replaced by 006) MS10-006)
Applicable with Windows Server 2003 (no direct dependency with XML Core Service, but the affected component is Applicable (no part of the OS direct dependency with distribution. Recommend to XML Core apply the hotfix) Service, but the Applicable with affected component is part Windows 2000 if XML Core of the OS Server 3.0 or distribution.. higher is Recommend to apply the hotfix) installed. Applicable Applicable (replaced by (replaced by MS10-006) MS10-006)
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable Applicable with Windows Server 2003 Not Applicable with Windows 2000 Not Applicable with Windows Server 2003 Applicable with Windows 2000 (there is no known direct depedency with the MSMQ, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable Applicable (replaced by MS09- (replaced by 012) MS09-012) Applicable Applicable (replaced by MS09- (replaced by 001) MS09-001) Applicable (there is no known direct dependency with the Windows Internet Printing Service, but the affected component is an integral part of the IIS implementation. Recommend to apply the hotfix)
Applicable (replaced by MS09-012) Applicable (replaced by MS09-001)
Applicable (replaced by MS09-012) Applicable (replaced by MS09-001)
Applicable (there is no known direct dependency with the Windows Internet Printing Service, but the affected component is an integral part of the IIS implementation. Recommend to apply the hotfix)
Applicable
Applicable
Applicable
Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable No Dependency No Dependency (IE should not (IE should not be be run on CCT run on CCT server) server) (replaced (replaced by by MS08-073) MS08-073)
Not Applicable No Dependency (by default, Windows Media Encoder 9 series is not installed in Windows) Applicable with Windows Server 2003(there is no known direct dependency with the GDI+, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-062) Not Applicable with Windows 2000
Applicable (there is Applicable (there no known direct is no known direct dependency with dependency with the GDI+, but the the GDI+, but the affected affected component is an component is an integral part of the integral part of the OS. Recommend OS. Recommend to apply the hotfix) to apply the hotfix) (replaced by MS09- (replaced by 062) MS09-062)
Applicable (there is no known direct dependency with the GDI+, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-062)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the Messenger, the Messenger, but the Messenger, but the affected the affected but the affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Applicable
Applicable
Applicable
Applicable No Dependency (Outlook Express should not be run on CCT server)
No Dependency (Outlook Express should not be run on CCT server)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the ICM, but the the ICM, but the the ICM, but the affected affected affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Applicable (there is no known direct dependency with the ICM, but the affected component is an integral part of the OS. Recommend to apply the hotfix) No Dependency No Dependency (IE should not (IE should not be be run on CCT run on CCT server) server) (replaced (replaced by by MS08-058) MS08-058)
No Dependency (Microsoft SQL Server version should normally not installed on CCMA server)
No Dependency (Microsoft SQL Server version should normally not installed on CCMM server)
Not Applicable (Microsoft Exchange Server should not be installed on CCMA server)
Not Applicable (Microsoft Exchange Server should not be installed on CCMM server)
Not Applicable (Microsoft Exchange Server should not be installed on CCT server)
Not Applicable (Microsoft Exchange Server should not be installed on CCT server)
Not Applicable
Not Applicable
Not Applicable
Not Applicable Applicable (there is no known direct dependency with the DNS, but the affected DNS client component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the PGM, but the the PGM, but the the PGM, but the affected component is an affected affected component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Not Applicable (Microsoft Active Directory should not be installed on Applicable CCMM server) (replaced by MS09- (replaced by 018) MS09-018)
Not Applicable (Microsoft Active Directory should not be installed on CCT server) (replaced by MS09-018)
Not Applicable (Microsoft Active Directory should not be installed on CCT server) (replaced by MS09-018)
Not Applicable (WINS should not be installed on CCMA server)
Not Applicable (WINS should not be installed on CCMM server)
Not Applicable (WINS should not be installed on CCT server)
Not Applicable (WINS should not be installed on CCT server) Applicable (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-011) Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS09-032) No Dependency (IE should not be run on CCT server) (replaced by MS08-045)
Applicable (there is Applicable (there no known direct is no known direct dependency with dependency with the DirectX, but the the DirectX, but affected the affected component is an component is an integral part of the integral part of the OS. Recommend OS. Recommend to apply the hotfix) to apply the hotfix) (replaced by MS09- (replaced by 011) MS09-011) Applicable (no Applicable (no known direct known direct dependency on dependency on the the affected affected ActiveX ActiveX control, control, but it is a but it is a good good security security measure measure to block to block the the control. control. Recommend to Recommend to apply the hotfix) apply the hotfix) (replaced by MS09- (replaced by 032) MS09-032)
Applicable (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-011) Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS09-032) No Dependency (IE should not be run on CCT server) (replaced by MS08-045)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable Not Applicable (the (the affected affected Microsoft Microsoft products products should not should not be be installed on installed on CCMA server) CCMM server)
Not Applicable (the affected Microsoft products should not be installed on CCT server)
Not Applicable (the affected Microsoft products should not be installed on CCT server)
Applicable with Windows Server 2003 with SP1 and Windows 2000 (no known Applicable with Applicable with Windows Server Windows Server direct dependency on 2003 with SP1 (no 2003 with SP1 known direct (no known direct the Jet Database dependency on dependency on the Jet Database the Jet Database Engine, but the affected Engine, but the Engine, but the component is an affected affected component is an component is an integral part of integral part of the integral part of the the OS distribution. OS distribution. OS distribution. Recommend to Applicable with Recommend to Recommend to Windows Server apply the hotfix) apply the hotfix) apply the hotfix) Not Applicable 2003 with SP1 Not Applicable Not Applicable with Windows Not Applicable with with Windows with Windows Windows Server Server 2003 with Server 2003 with Server 2003 with SP2 2003 with SP2 SP2 SP2
Not Applicable (Microsoft Office product should not be installed on CCT server) Applicable (replaced by MS08-061)
Applicable Applicable (replaced by MS08- (replaced by 031) MS08-031) Applicable (no known direct Applicable (no dependency on known direct dependency on the the affected ActiveX control, affected ActiveX control, but it is a but it is a good security measure good security measure to block to block the control. the control. Recommend to Recommend to apply the hotfix) apply the hotfix) (replaced by MS08- (replaced by MS08-032) 032)
Applicable (replaced by MS08-061) No Dependency No Dependency (IE should not (IE should not be be run on CCT run on CCT server) server) (replaced (replaced by by MS08-031) MS08-031) Applicable (no Applicable (no known direct known direct dependency on dependency on the affected the affected ActiveX control, ActiveX control, but it is a good but it is a good security security measure measure to to block the block the control. control. Recommend to Recommend to apply the hotfix) apply the hotfix) (replaced by (replaced by MS08-032) MS08-032)
Applicable (no known direct dependency on the affected script engines, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable (no Applicable (no known direct Applicable (no known direct dependency on known direct Applicable (no dependency on the affected dependency on known direct the affected Graphic dependency on the the affected Graphic Rendering Graphic affected Graphic Rendering Engine, but the Rendering Engine, Rendering Engine, Engine, but the affected but the affected but the affected affected component is an component is an component is an integral part of component is an integral part of the integral part of the integral part of the the OS. OS. Recommend OS. Recommend OS. Recommend Recommend to to apply the hotfix) to apply the hotfix) to apply the apply the hotfix) (replaced by MS08- (replaced by hotfix) (replaced (replaced by MS08-071) 071) by MS08-071) MS08-071) Applicable (no known direct dependency on the affected script engines, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable (no known direct dependency on the affected script engines, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (no direct Applicable (no Applicable (no dependency with direct dependency direct dependency DNS Client, but with DNS Client, with DNS Client, the affected but the affected but the affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Not Applicable Not Applicable Not Applicable Not Applicable (Microsoft (Microsoft Project (Microsoft Project (Microsoft Project Project product product should not product should not product should should not be be installed on be installed on not be installed on installed on CCT CCMA server) CCMM server) CCT server) server)
Applicable (no direct Applicable (no Applicable (no dependency with direct dependency direct dependency OLE, but the with OLE, but the with OLE, but the affected affected affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix)
Applicable (no direct dependency with OLE, but the affected component is an integral part of the OS. Recommend to apply the hotfix) No Dependency with Windows 2003 (WebClient service is disabled as default by Windows 2003) Not Applicable with Windows 2000
Applicable
Applicable
Applicable
Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable (Microsoft Active Applicable Directory should (replaced by MS08- not be installed on 035) CCMM server)
Applicable
Applicable
Applicable
Applicable
No Dependency (IE should not be run on CCT server) (replaced by MS08-010) Applicable (there is no known direct dependency with Windows Media Format Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
No Dependency No Dependency (Macrovision (Macrovision SafeDisc games SafeDisc games should not be run should not be run on CCMM server. on CCMA server. There is no known There is no known direct dependency direct dependency with the with the Macrovision Macrovision driver, driver, but the but the affected affected component is part component is part of the OS of the OS distribution. distribution. Recommend to Recommend to apply the hotfix) apply the hotfix)
No Dependency with Windows 2003 (Macrovision SafeDisc games No Dependency should not be (Macrovision run on CCT SafeDisc games server. There is should not be run no known direct on CCT server. dependency with There is no known the Macrovision direct driver, but the dependency with affected the Macrovision component is driver, but the part of the OS affected distribution. component is part Recommend to of the OS apply the hotfix) distribution. Not Applicable Recommend to with Windows apply the hotfix) 2000
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable No Dependency with Windows 2000 (no known direct dependency with Message Queuing, and it is not installed by default in Windows. Recommend to apply hotfix if Messaging Queuing is enabled) Not Applicable with Windows 2003 Applicable (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08-033)
Applicable (there is Applicable (there no known direct is no known direct dependency with dependency with the DirectX, but the the DirectX, but affected the affected component is an component is an integral part of the integral part of the OS. Recommend OS. Recommend to apply the hotfix) to apply the hotfix) (replaced by MS08- (replaced by 033) MS08-033)
Not Applicable
Not Applicable
Not Applicable
Not Applicable Not Applicable (DNS Server should not be run on CCT server) Applicable with Windows 2003 (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows 2000 Not Applicable (Microsoft Office product should not be installed on CCT server) (replaced by MS08-009)
Not Applicable (DNS Server should not be run on CCMA server)
Not Applicable (DNS Server should not be run on CCMM server)
Not Applicable (DNS Server should not be run on CCT server)
Applicable (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on CCT server) (replaced by MS08-009) Not Applicable (SharePoint is not installed by default on Windows Server 2003) Applicable (replaced by MS09-026) No Dependency (IE should not be run on CCT server)
Not Applicable Not Applicable (Microsoft Office (Microsoft Office product should not product should not be installed on be installed on CCMA server) CCMM server) (replaced by MS08- (replaced by 009) MS08-009)
Not Applicable (Microsoft Office product should not be installed on SCCS server)
Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (SharePoint is not installed by default on Windows Server 2003)
Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (SharePoint is not installed by default on Windows Server 2003)
Not Applicable Not Applicable (SharePoint is not (SharePoint is not installed by default installed by default on Windows on Windows Server 2003) Server 2003) Applicable Applicable (replaced by MS09- (replaced by 026) MS09-026)
Not Applicable (SharePoint is not installed by default on Windows) Applicable (replaced by MS09-026)
Not Applicable
Applicable No Dependency (IE should not be run on SCCS server)
Applicable
Applicable
No Dependency (IE should not be run on CCT server) No Dependency No Dependency No Dependency No Dependency (Outlook (Outlook Express (Outlook Express (Outlook Express Express should should not be run should not be run should not be run not be run on CCT server) on CCMA server) on CCMM server) on CCT server) (replaced by (replaced by MS08- (replaced by (replaced by MS08-048) 048) MS08-048) MS08-048) Applicable with Windows 2000 (there is no known direct depdency with the Kodak Image Viewer, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable Not Applicable Not Applicable Not Applicable with Windows (Windows should (Windows should (Windows should 2003 (Windows not be upgraded not be upgraded not be upgraded should not be from Windows from Windows from Windows upgraded from 2000 on CCMA 2000 on CCMM 2000 on CCT Windows 2000 server) server) server) on CCT server) Applicable Applicable (repalced by MS07- (replaced by 069) MS07-069)
No Dependency (IE should not be run on SCCS Applicable server)
No Dependency (Outlook Express should not be run on SCCS server)
No Dependency (Outlook Express should not be run on SCCS server) Applicable with Windows 2000 (there is no known direct depdency with the Kodak Image Viewer, but the affected Applicable component is an (there is no integral part of known direct the OS. depdency with Recommend to the Kodak apply the hotfix) Image Viewer, Not Applicable but the affected with Windows component is an 2003 (Windows integral part of should not be the OS. upgraded from Recommend to Windows 2000 apply the hotfix) on CCT server)
No Dependency (Outlook Express should not be run on SCCS server)
No Dependency No Dependency (MSN Messenger (MSN Messenger and Windows Live and Windows Live Messeneger Messeneger should should not be not be installed on installed on CCMA server) CCMM server)
No Dependency (MSN Messenger and Windows Live Messeneger should not be installed on CCT server)
No Dependency (MSN Messenger and Windows Live Messeneger should not be installed on CCT server)
No Dependency (MSN Messenger and Windows Live Messeneger should not be installed on SCCS server)
No Dependency No Dependency (Windows (Windows Services Services for UNIX for UNIX should should not be not be installed on installed on CCMA server) CCMM server)
No Dependency (Windows Services for UNIX should not be installed on CCT server)
No Dependency (Windows Services for UNIX should not be installed on CCT server)
No Dependency (Windows Services for UNIX should not be installed on SCCS server)
Not Applicable (Visual Studio should not be installed on CCMA server)
Not Applicable (Visual Studio should not be installed on CCMM server)
Not Applicable (Visual Studio should not be installed on CCT server)
Not Applicable (Visual Studio should not be installed on CCT server) Applicable with Windows 2000 (there is no known direct dependency with the Microsoft Agent, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Server 2003 Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Not Applicable (Visual Studio should not be installed on SCCS server)
Not Applicable (Visual Studio should not be installed on SCCS server) Applicable with Windows 2000 (there is no known direct dependency with the Microsoft Agent, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Server 2003 Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix) No Dependency with Windows Server 2003 (Virtual PC and Virtual Server should not be installed on SCCS server) Not Applicable to Windows 2000
Not Applicable
Not Applicable
Not Applicable Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (there is no known direct dependency with the Microsot Agent, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Not Applicable Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
No Dependecny (Virtual PC and Virtual Server should not be installed on CCMA server)
No Dependecny (Virtual PC and Virtual Server should not be installed on CCMM server)
No Dependecny (Virtual PC and Virtual Server should not be installed on CCT server)
No Dependecny (Virtual PC and Virtual Server should not be installed on CCT No Applicable server)
No Dependency (Virtual PC and Virtual Server should not be installed on SCCS server)
Not Applicable No Dependency (Microsoft Media Player should not be run on CCMA server)
Not Applicable No Dependency (Microsoft Media Player should not be run on CCMM server)
Not Applicable No Dependency (Microsoft Media Player should not be run on CCT server)
Not Applicable No Dependency (Microsoft Media Player should not be run on CCT server)
Not Applicable No Dependency (Microsoft Media Player should not be run on SCCS server)
Applicable to Applicable to Windows Server Windows Server 2003 with SP1 (no 2003 with SP1 (no known direct known direct dependency on dependency on the the affected affected Graphic Graphic Rendering Engine, Rendering Engine, but the affected but the affected component is an component is an integral part of the integral part of the OS. Recommend OS. Recommend to apply the hotfix) to apply the hotfix) (repalced by MS08- (repalced by 021) MS08-021) Not Applicable to Not Applicable to Windows Server Windows Server 2003 with SP2 2003 with SP2
Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08-021) No Dependency No Dependency (IE should not (IE should not be be run on CCT server) run on CCT server) (replaced (replaced by MS07-057) by MS07-057) Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08-021)
Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) No Dependency (IE should not be run on SCCS server) (replaced by MS07-057) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable to Windows Server 2003 with SP1 and Windows 2000 (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable to Windows Server 2003 with SP2 No Dependency (IE should not be run on SCCS server) (replaced by MS07-057) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable to Windows Server 2003 with SP1 (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable to Windows Server 2003 with SP2
Applicable (replaced by MS07-057) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable (no Applicable (no Applicable (no direct direct dependency direct dependency dependency with with OLE, but the with OLE, but the OLE, but the affected affected affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the hotfix) to apply the hotfix) to apply the (replaced by MS08- (replaced by hotfix) (replaced 008) MS08-008) by MS08-008)
Applicable (no direct dependency with OLE, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08-008)
Applicable with Windows Server 2003 (no direct dependency with XML Core Service, but the affected component is an Applicable (no integral part of direct the OS. dependency with Recommend to XML Core apply the hotfix) Service, but the Applicable with affected Windows 2000 if component is an XML Core integral part of the Server 3.0 or OS. Recommend higher is to apply the installed. hotfix) (replaced (replaced by by MS08-069) MS08-069)
Applicable with Windows 2000 if XML Core Server 3.0 or higher is installed (no direct dependency with XML Core Service, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable with Windows Server 2003 (no direct dependency with XML Core Service, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable with Windows 2000 if XML Core Server 3.0 or higher is installed. Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable
Applicable
Applicable Not Applicable (Microsoft Active Directory should not be installed on CCT server) (replaced by MS08-003)
Applicable Not Applicable (Microsoft Active Directory should not be installed on CCT server) (replaced by MS08-003)
Applicable with Windows Server 2003 (no direct dependency with .NET Framework, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable Not Applicable with Windows 2000 (.NET (.NET Framework is Framework is not installed by not installed by default with default with Windows 2000) Windows 2000) Applicable
Not Applicable Not Applicable (Microsoft Active (Microsoft Active Directory should Directory should not be installed on not be installed on CCMA server) CCMM server) (replaced by MS08- (replaced by 003) MS08-003)
Not Applicable (Microsoft Active Directory should not be installed on SCCS server)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable No Dependency (Outlook Express should not be run on SCCS server) No Dependency (IE should not be run on SCCS server) (replaced by MS07-045)
Applicable No Dependency (Outlook Express should not be run on SCCS server) No Dependency (IE should not be run on SCCS server) (replaced by MS07-045)
Applicable No Dependency (Outlook Express should not be run on SCCS server)
No Dependency (Outlook Express should not be run on CCT server) No Dependency No Dependency (IE should not (IE should not be be run on CCT run on CCT server) server) (replaced (replaced by by MS07-045) MS07-045) No Dependency (Outlook Express should not be run on CCT server)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable
Applicable (no direct dependency with Schannel, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Applicable (no direct dependency with Schannel, but the affected component is an integral part of the OS, recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on CCT server) (replaced by MS08-019)
Applicable (no direct dependency with Schannel, but the affected component is an integral part of the OS, recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on CCT server) (replaced by MS08-019) Not Applicable (DNS Server should not be run on CCT server)
Not Applicable Not Applicable (Microsoft Office (Microsoft Office product should not product should not be installed on be installed on CCMA server) CCMM server) (replaced by MS08- (repalced by 019) MS08-019)
Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (DNS Server should not be run on SCCS server) Not Applicable (CAPICOM is not part of the Windows OS and not installed by SCCS application) No Dependency (IE should not be run on SCCS server) (replaced by MS07-033) Not Applicable (Microsoft Exchange should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (DNS Server should not be run on SCCS server) Not Applicable (CAPICOM is not part of the Windows OS and not installed by SCCS application) No Dependency (IE should not be run on SCCS server) (replaced by MS07-033) Not Applicable (Microsoft Exchange should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) (replaced by MS07-036)
Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (DNS Server should not be run on SCCS server) Not Applicable (CAPICOM is not part of the Windows OS and not installed by SCCS application)
Not Applicable (DNS Server should not be run on CCMA server)
Not Applicable (DNS Server should not be run on CCMM server) Not Applicable (CAPICOM is not part of the Windows OS and not installed by CCMM application)
Not Applicable (DNS Server should not be run on CCT server)
Not Applicable (CAPICOM is not part of the Windows OS and not installed by CCMA application)
Not Applicable (CAPICOM is not part of the Windows OS and not installed by CCT application) No Dependency No Dependency (IE should not (IE should not be be run on CCT run on CCT server) server) (replaced (replaced by by MS07-033) MS07-033) Not Applicable (CAPICOM is not part of the Windows OS and not installed by CCT application) Not Applicable (Microsoft Exchange should not be installed on CCT server)
Applicable (replaced by MS07-033) Not Applicable (Microsoft Exchange should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) (replaced by MS07-036)
Not Applicable (Microsoft Exchange should not be installed on CCMA server)
Not Applicable (Microsoft Exchange should not be installed on CCT server)
Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable Not Applicable Not Applicable Not Applicable Not Applicable (Microsoft Office (Microsoft Office (Microsoft Office (Microsoft Office (Microsoft Office product should product should not product should not product should product should not be installed be installed on be installed on not be installed on not be installed on SCCS CCMA server) CCMM server) CCT server) on CCT server) server) (replaced by MS07- (replaced by (replaced by (replaced by (replaced by 036) MS07-036) MS07-036) MS07-036) MS07-036) Not Applicable (Microsoft Office product should not be installed on CCMA server) Not Applicable (Microsoft Office product should not be installed on CCMM server) Not Applicable (Microsoft Office product should not be installed on CCT server) Not Applicable (Microsoft Office product should not be installed on CCT server)
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable Not Applicable (Microsoft Content Management Server should not be installed on SCCS server) Applicable (no direct dependency with Graphics Rendering Engine, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Not Applicable
Not Applicable Not Applicable (Microsoft Content Management Server should not be installed on SCCS server) Applicable (no direct dependency with Graphics Rendering Engine, but the affected component is an integral part of the OS, recommend to apply the hotfix) Applicable (replaced by MS07-27) (Superceded by SP2 for Windows Server 2003) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Applicable (no direct dependency with RichEdit, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Not Applicable (Microsoft Content Management Server should not be installed on CCMA server)
Not Applicable (Microsoft Content Management Server should not be installed on CCMM server)
Not Applicable (Microsoft Content Management Server should not be installed on CCT server) Applicable (no direct dependency with Graphics Rendering Engine, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Not Applicable (Microsoft Content Management Server should not be installed on CCT server) Applicable (no direct dependency with Graphics Rendering Engine, but the affected component is an integral part of the OS, recommend to apply the hotfix) No Dependency (IE should not No Dependency be run on CCT (IE should not be server) run on CCT (Superceded by server) SP2 for (Superceded by Windows Server SP2) 2003)
Not Applicable (Microsoft Content Management Server should not be installed on SCCS server) Applicable (no direct dependency with Graphics Rendering Engine, but the affected component is an integral part of the OS, recommend to apply the hotfix) No dependency (IE should not be run on SCCS server) No dependency (Superceded by (IE should not SP2 for be run on SCCS Windows Server server) 2003) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Applicable (no direct dependency with RichEdit, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Not Applicable (Microsoft Office product should not be installed on CCT server) Applicable (no direct Applicable (no dependency with direct RichEdit, but the Applicable (no Applicable (no dependency with affected direct dependency direct dependency RichEdit, but the component is an with RichEdit, but with RichEdit, but affected integral part of the affected the affected component is an the OS, component is an component is an integral part of the recommend to integral part of the integral part of the OS, recommend apply the hotfix) OS, recommend to OS, recommend to apply the (Superceded by apply the hotfix) to apply the hotfix) hotfix) SP2 for (Superceded by (Superceded by (Superceded by Windows Server SP2) SP2) SP2) 2003)
Applicable (no direct dependency with RichEdit, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Applicable
Applicable
Applicable
Applicable Applicable (no direct dependency with OLE Dialog, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) No Dependency (normally Microsoft Malware Protection Engine is not installed) Not Applicable to Windows Server 2003 SP1 and Windows Server 2003 R2. Applicable only to Windows Server 2003 without SP1 (Superceded by SP2 for Windows Server 2003) and Windows 2000 SP4
Applicable
Applicable (Superceded by SP2 for Windows Server 2003) Applicable (no direct dependency with OLE Dialog, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) No Dependency (normally Microsoft Malware Protection Engine is not installed) Not Applicable to Windows Server 2003 SP1 and Windows Server 2003 R2. Applicable only to Windows Server 2003 without SP1 (Superceded by SP2 for Windows Server 2003) and Windows 2000 SP4 Applicable (no direct dependency with HTML Help, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (no direct Applicable (no Applicable (no dependency with direct dependency direct dependency OLE Dialog, but with OLE Dialog, with OLE Dialog, the affected but the affected but the affected component is an component is an component is an integral part of the integral part of the integral part of the OS, recommend OS, recommend to OS, recommend to apply the apply the hotfix) to apply the hotfix) hotfix) (Superceded by (Superceded by (Superceded by SP2) SP2) SP2)
Applicable (no direct dependency with OLE Dialog, but the affected component is an integral part of the OS, recommend to apply the hotfix) No Dependency (normally Microsoft Malware Protection Engine is not installed)
Applicable
Applicable (no direct Applicable (no dependency with direct HTML Help, but Applicable (no Applicable (no dependency with the affected direct dependency direct dependency HTML Help, but component is an with HTML Help, with HTML Help, the affected integral part of but the affected but the affected component is an the OS, component is an component is an integral part of the recommend to integral part of the integral part of the OS, recommend apply the hotfix) OS, recommend to OS, recommend to apply the (Superceded by apply the hotfix) to apply the hotfix) hotfix) SP2 for (Superceded by (Superceded by (Superceded by Windows Server SP2) SP2) SP2) 2003)
Applicable (no direct dependency with HTML Help, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (there is no known direct Applicable (there dependency with Applicable (there is is no known direct the Windows no known direct dependency with Shell, but the dependency with the Windows affected the Windows Shell, Shell, but the component is an but the affected affected integral part of the component is an component is an OS. Recommend integral part of the integral part of the to apply the OS. Recommend OS. Recommend hotfix) to apply the hotfix) to apply the hotfix) (Superceded by (Superceded by (Superceded by SP2 for Windows SP2) SP2) Server 2003)
Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Not Applicable to Windows 2000 SP4 Not Applicable
Applicable to Windows Server 2003 SP1 and Windows Server 2003 R2 (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Not Applicabe to Windows 2000 SP4
Not Applicable (Step-by-Step Interactive Training should not be installed on CCMA)
Not Applicable (Step-by-Step Interactive Training should not be installed on CCMM)
Not Applicable (Step-by-Step Interactive Training should not be installed on CCT)
Not Applicable (Step-by-Step Interactive Training should not be installed on CCT)
Not Applicable (Step-by-Step Interactive Training should not be installed on SCCS)
Not Applicable (Step-by-Step Interactive Training should not be installed on SCCS) Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) (replaced by MS07-050) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Not Applicable (Step-by-Step Interactive Training should not be installed on SCCS) Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) (replaced by MS07-050) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the VML, but the the VML, but the the VML, but the affected affected affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix) (Superceded by (Superceded by (Superceded by SP2) SP2) SP2)
Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS07-050)
Not Applicable Not Applicable Not Applicable Not Applicable Not Applicable (Microsoft Office (Microsoft Office (Microsoft Office (Microsoft Office (Microsoft Office product should product should not product should not product should product should not be installed be installed on be installed on not be installed on not be installed on SCCS CCMA server) CCMM server) CCT server) on CCT server) server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable (there is no known direct dependency with the Windows Media Format Runtime, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS07-068 for Windows 2000) Not Applicable for Windows Server 2003, Windows Server 2003 SP1, and Windows Server 2003 R2. No Dependency for Windows 2000 No Dependency (Outlook Express should not be run on CCT server) (replaced by MS07-034) (Superceded by SP2 for Windows Server 2003) Not Applicable to Windows Server 2003 SP1, Windows Server 2003 R2, and Windows 2000 Applicable only to Windows Server 2003 without SP1 (Superceded by SP2 for Windows Server 2003)
Not Applicable
Not Applicable
Not Applicable
No Dependency (Outlook Express should not be run on CCMA server) (Superceded by SP2)
No Dependency (Outlook Express should not be run on CCMM server) (Superceded by SP2)
No Dependency (Outlook Express should not be run on CCT server) (Superceded by SP2)
Not Applicable for Windows Server 2003, Windows Server 2003 SP1, and Windows Server 2003 R2. No Dependency for Windows No Dependency 2000 No Dependency (Outlook Express should not be run on No Dependency SCCS server) (replaced by (Outlook Express should MS07-034) (Superceded by not be run on SP2 for SCCS server) Windows Server (replaced by 2003) MS07-034) Not Applicable to Windows Server 2003 SP1, Windows Server 2003 R2, and Windows 2000 Applicable only to Windows Server 2003 without SP1 (Superceded by SP2 for Windows Server Not applicable 2003) Applicable (Superceded by SP2 for Windows Server No Dependency Applicable 2003)
Not Applicable No Dependency (Outlook Express should not be run on SCCS server) (replaced by MS07-034) (Superceded by SP2 for Windows Server 2003) Not Applicable to Windows Server 2003 SP1, Windows Server 2003 R2, and Windows 2000 Applicable only to Windows Server 2003 without SP1 (Superceded by SP2 for Windows Server 2003) Applicable (Superceded by SP2 for Windows Server 2003)
Not Applicable (Visual Studio should not be installed on CCMA server)
Not Applicable (Visual Studio should not be installed on CCMM server)
Not Applicable (Visual Studio should not be installed on CCT server)
Not Applicable (Visual Studio should not be installed on CCT server) No Dependency (IE should not be run on CCT server) No Dependency (replaced by (IE should not be MS07-016) (Superceded by run on CCT SP2 for server) (Superceded by Windows Server 2003) SP2)
Not Applicable (Visual Studio should not be installed on SCCS server) No dependency (IE should not be run on SCCS server) No dependency (replaced by MS07-016) (IE should not be run on SCCS (Superceded by SP2 for server) Windows Server (repalced by 2003) MS07-016)
Applicable (replaced by MS07-016) (Superceded by SP2 for Windows Server 2003)
Applicable
Not Applicable
No Dependency (the affected No Dependency XML Core No Dependency (the affected XML version is not (the affected XML Core version is installed by Core version is not not installed by default with installed by default default with Windows Server with Windows Windows Server 2003 or Server 2003) 2003) Windows 2000) Applicable with Windows 2000 Not Applicable with Windows Not Applicable Not Applicable Server 2003
No Dependency (the affected No Dependency XML Core (the affected version is not XML Core installed by version is not default with installed by Windows Server default with 2003 or Windows 2000) Windows 2000) Applicable with Windows 2000 Not Applicable with Windows Applicable Server 2003
No Dependency (the affected XML Core version is not installed by default with Windows Server 2003)
Not applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable (Microsoft Agent should not be installed on CCMA) (Superceded by SP2)
Not Applicable (Microsoft Agent should not be installed on CCMM) (Superceded by SP2)
Not Applicable Not Applicable (Microsoft Agent should not be installed on Not Applicable (Microsoft Agent CCT) (Superceded by should not be installed on CCT) SP2 for (Superceded by Windows Server 2003) SP2) No Dependency (IE should not be run on CCT server) No Dependency (replaced by (IE should not be MS06-071) run on CCT (Superceded by server) SP2 for (Superceded by Windows Server SP2) 2003)
Not applicable
Not applicable Not Applicable (Microsoft Agent should not be installed on Not Applicable SCCS) (Microsoft Agent (Superceded by SP2 for should not be Windows Server installed on 2003) SCCS) No dependency (IE should not be run on SCCS server) No dependency (replaced by (IE should not MS06-072) be run on SCCS (Superceded by server) SP2 for (replaced by Windows Server MS06-072) 2003) No Dependency (Client Service for NetWare is not installed by default in Windows Server No Dependency 2003 and (Client Service Windows 2000) for NetWare is (Superceded by not installed by SP2 for default in Windows Server Windows 2000) 2003)
Not applicable Not Applicable (Microsoft Agent should not be installed on SCCS) (Superceded by SP2 for Windows Server 2003)
No Dependency (Client Service for NetWare is No Dependency not installed by No Dependency (Client Service for default in No Dependency (Client Service for NetWare is not Windows Server (Client Service for NetWare is not installed by 2003 and NetWare is not installed by default default in Windows 2000) installed by default in Windows Windows Server (Superceded by in Windows Server Server 2003) 2003) SP2 for 2003) (Superceded (Superceded by (Superceded by Windows Server by SP2) SP2) SP2) 2003)
No Dependency (Client Service for NetWare is not installed by default in Windows Server 2003) (Superceded by SP2 for Windows Server 2003)
Applicable with Windows Servver 2003 (there is no known direct dependency with the Object Packager, but the affect component is an integral part of the OS. Recommend to apply the hotfix). (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows 2000 Not applicable
Applicable with Windows Servver 2003 (there is no known direct dependency with the Object Packager, but the affect component is an integral part of the OS. Recommend to apply the hotfix). (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows 2000
Applicable (there is no known direct dependency with the Object Packager, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (there is no known direct dependency with the IPv6, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Not applicable Applicable (Superceded by SP2 for Windows Server Applicable 2003) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable with Windows Server 2003 (there is no known direct dependency with the IPv6, but the affect component is an integral part of the OS. Recommend to apply the hotfix). (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows 2000 Applicable (Superceded by SP2 for Windows Server 2003) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable (there is no known direct dependency with the IPv6, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable (Superceded by SP2 for Windows Server 2003) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable (there is no known direct dependency with the MSXML, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
Applicable with Windows Server 2003 (there is no known direct dependency with the MSXML, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (SUperceded by SP2 for Windows Server 2003) Applicable with Windows 2000 if XML Parser 2.6 or XML Core Service 3.0 is installed
Applicable if XML Parser 2.6 or XML Core Service 3.0 is installed (there is no known direct dependency with the MSXML, but the affect component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable with Windows Server 2003 (there is no known direct dependency with the MSXML, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable with Windows 2000 if XML Parser 2.6 or XML Core Service 3.0 is installed Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable (there is no known direct dependency with the MSXML, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable (there is no known direct dependency with the Windows Shell, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
Applicable only if ,NET Framework 2.0 is installed Not Applicable for default Windows Server 2003 with .NET Framework 1.1
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the VML, but the the VML, but the the VML, but the affected affected affected component is an component is an component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix) (Superceded by (Superceded by (Superceded by SP2) SP2) SP2)
Applicable (there is no known direct dependency with the Windows Shell, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable only if ,NET Framework 2.0 is installed Not Applicable for default Windows Server 2003 and Windows 2000 with .NET Framework 1.1 Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS (for Win2K3) or IE (for Win2K). Recommend to apply the hotfix) (replaced by MS07-004) (Superceded by SP2 for Windows Server 2003)
Applicable (there is no known direct dependency with Applicable the Windows (there is no Shell, but the known direct affect dependency with component is an the Windows integral part of Shell, but the the OS. affect Recommend to component is an apply the hotfix) integral part of (Superceded by the OS. SP2 for Recommend to Windows Server apply the hotfix) 2003)
Applicable (there is no known direct dependency with the Windows Shell, but the affect component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
No Dependency (.NET 2.0 should not be installed on SCCS server)
Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the IE (for Win2K). Recommend to apply the hotfix) (replaced by MS07-004) Not Applicable (Microsoft Office product should not be installed on SCCS server)
No Dependency (.NET 2.0 should not be installed on SCCS server) Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS (for Win2K3) or IE (for Win2K). Recommend to apply the hotfix) (replaced by MS07-004) (Superceded by SP2 for Windows Server 2003) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Not Applicable (Microsoft Office product should not be installed on SCCS server) Applicable (there is no known direct dependency with the Indexing Service, but the affected Component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Not Applicable (Microsoft Office product should not be installed on CCT server) Applicable (there is no known direct dependency with the Indexing Service, but the affected Component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (there is no known direct dependency with Applicable the Indexing (there is no Service, but the known direct affected dependency with Component is the Indexing an integral part Service, but the of the OS. affected Recommend to Component is apply the hotfix) an integral part (Superceded by of the OS. SP2 for Recommend to Windows Server apply the hotfix) 2003)
Not Applicable
Not Applicable
Not Applicable
Not Applicable Not Applicable Applicable (Superceded by SP2 for Windows Server Applicable 2003)
Not Applicable Applicable (Superceded by SP2 for Windows Server 2003)
Applicable (there Applicable (there is Applicable (there is no known direct no known direct is no known direct dependency with dependency with dependency with the Hyperlink the Hyperlink the Hyperlink Library, but the Library, but the Library, but the affected affected affected Component is an Component is an Component is an integral part of the integral part of the integral part of the OS. Recommend OS. Recommend OS. Recommend to apply the to apply the hotfix) to apply the hotfix) hotfix) (Superceded by (Superceded by (Superceded by SP2) SP2) SP2)
Not Applicable
Not Applicable
Not Applicable
Applicable (there is no known direct dependency with the Hyperlink Library, but the affected Component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable with Windows 2000 SP4. Not Applicable with Windows Server 2003
Applicable (there is no known direct dependency with the Hyperlink Applicable Library, but the (there is no affected known direct dependency with Component is an integral part the Hyperlink Library, but the of the OS. Recommend to affected apply the hotfix) Component is an integral part (Superceded by SP2 for of the OS. Recommend to Windows Server apply the hotfix) 2003) Applicable with Windows 2000 SP4. Applicable with Not Applicable Windows 2000 with Windows Server 2003 SP4 Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable (there is no known direct dependency with the Hyperlink Library, but the affected Component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Not Applicable Not Applicable (Microsoft Office product should not be installed on SCCS server)
Not Applicable (Microsoft Office product or VBA SDK should not be installed on CCMA server)
Not Applicable (Microsoft Office product or VBA SDK should not be installed on CCMM server)
Not Applicable (Microsoft Office product or VBA SDK should not be installed on CCT server)
Not Applicable (Microsoft Office product or VBA SDK should not be installed on CCT server)
Not Applicable (Microsoft Office product or VBA SDK should not be installed on SCCS server)
Not Applicable (Microsoft Office product or VBA SDK should not be installed on SCCS server) Applicable (no direct dependency with HTML Help, but the affected component is an integral part of the OS, recommend to apply the hotfix) (replaced by MS07-008) (Superceded by SP2 for Windows Server 2003)
Not Applicable (Microsoft Office product or VBA SDK should not be installed on SCCS server)
Applicable (no direct Applicable (no Applicable (no dependency with direct dependency direct dependency HTML Help, but with HTML Help, with HTML Help, the affected but the affected but the affected component is an component is an component is an integral part of the integral part of the integral part of the OS, recommend OS, recommend to OS, recommend to apply the apply the hotfix) to apply the hotfix) hotfix) (Superceded by (Superceded by (Superceded by SP2) SP2) SP2)
Applicable (no direct Applicable (no Applicable (no dependency with direct dependency direct dependency Windows with Windows with Windows Explorer, but the Explorer, but the Explorer, but the affected affected affected component is an component is an component is an integral part of the integral part of the integral part of the OS, recommend OS, recommend to OS, recommend to apply the apply the hotfix) to apply the hotfix) hotfix) (Superceded by (Superceded by (Superceded by SP2) SP2) SP2)
Applicable (no direct dependency with HTML Help, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable (no direct dependency with Windows Explorer, but the affected component is an integral part of the OS, recommend to apply the hotfix) (replaced by MS07-006) (Superceded by SP2 for Windows Server 2003)
Applicable (no direct dependency with HTML Help, but the affected component is an integral part of the OS, recommend to apply the hotfix) (replaced by MS07-008)
Applicable (no direct dependency with HTML Help, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (no direct dependency with Windows Explorer, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Applicable (no direct dependency with Windows Explorer, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Not Applicable
Not Applicable
Not Applicable
Applicable with Wiindows 2000 (there is no known Applicable dependency with (there is no MMC, but the known affected dependency with component is an MMC, but the integral part of affected the OS. Applicable with component is an Recommend to Windows 2000. integral part of apply the hotfix) Not Applicable the OS. Not Applicable with Windows Recommend to with Windows Not Applicable 2003 apply the hotfix) 2003
Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 (there is no known direct dependency with Outlook Express, but the affected component is part of the OS distribution. Recommend to apply the hotfix) (Superceded by SP2). Not Applicable with Windows Server 2003 without SP1
Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 (there is no known direct dependency with Outlook Express, but the affected component is part of the OS distribution. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003). Not Applicable with Windows Server 2003 Not Applicable without SP1
Applicable with Windows Server 2003 SP1 and Windows Server R2 (there is no known direct dependency with Outlook Express, but the affected component is part of the OS distribution. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows Server 2003 without SP1 and Windows 2000
Applicable with Windows Server 2003 SP1 and Windows Server R2 (there is no known direct dependency with Outlook Express, but the affected component is part of the OS distribution. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows Server 2003 without SP1 and Windows 2000
Applicable (need CCMA DP020310 or SUS0204 to be installed for full CCMA compatibility) (Superceded by SP2)
No Dependency (IE should not be run on CCT server) No Dependency (replaced by (IE should not be MS06-067) run on CCT (Superceded by server) SP2 for (Superceded by Windows Server SP2) 2003) Applicable (Supercedd by Applicable SP2 for (Superceded by Windows Server SP2) 2003)
No dependency (IE should not be run on SCCS server) No dependency (replaced by (IE should not MS06-067) be run on SCCS (Superceded by server) SP2 for (replaced by Windows Server MS06-067) 2003) Applicable (Superceded by SP2 for Windows Server Applicable 2003) Applicable (replaced by MS06-070 for Applicable Windows 2000) (Supercedd by (Superceded by SP2 for Applicable SP2 for Windows Server (replaced by Windows Server 2003) MS06-070) 2003) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable (need SUS0603 to be installed for full SWC compatibility) (Supercede by SP2 for Windows Server 2003) Applicable (Superceded by SP2 for Windows Server 2003)
Applicable (Superceded by SP2 for Windows Server 2003) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable (DHCP Client should not be used by CCMA server, but DHCP Client Service is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
Applicable (DHCP Client should not be used by CCMM server, but DHCP Client Service is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
Applicable (DHCP Client should not be used by CCT server, but DHCP Client Service is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2)
Applicable (Superceded by SP2 for Windows Server 2003)
Not Applicable (IIS should not be installed on CCT server) (Superceded by SP2)
Not Applicable
Not Applicable
Not Applicable
Not Applicable (Microsoft Office product should not be installed on CCT server) Applicable (DHCP Client should not be used by CCT server, but DHCP Client Service is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable (replaced by MS06-063) (Superceded by SP2 for Windows Server 2003) Not Applicable (IIS should not be installed on CCT server) (Superceded by SP2 for Windows Server 2003) Applicable only if ,NET Framework 2.0 is installed Not Applicable for default Windows Server 2003 and Windows 2000 with .NET Framework 1.1 Applicable (Superceded by SP2 for Windows Server 2003) Applicable to Windows 2000 SP4 only. Not applicable to Windows Server 2003 Applicable (Superceded by SP2 for Windows Server 2003)
Not Applicable (Microsoft Office product should not be installed on SCCS server)
Not Applicable (Microsoft Office product should not be installed on SCCS server) Applicable (DHCP Client should not be used by SCCS server, but Applicable DHCP Client (DHCP Client Service is an should not be used by SCCS integral part of the OS. server, but Recommend to DHCP Client apply the hotfix) Service is an integral part of (Superceded by SP2 for the OS. Recommend to Windows Server apply the hotfix) 2003) Applicable (replaced by MS06-063) (Superceded by Applicable SP2 for (replaced by Windows Server MS06-063) 2003) Not Applicable (IIS should not be installed on SCCS server) Not Applicable (Superceded by (IIS should not SP2 for be installed on Windows Server 2003) SCCS server)
Not Applicable (Microsoft Office product should not be installed on SCCS server) Applicable (DHCP Client should not be used by SCCS server, but DHCP Client Service is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable
Applicable
Applicable
No Dependency (.NET 2.0 should not be installed on SCCS server) Applicable (Superceded by SP2 for Windows Server 2003) Applicable to Windows 2000 SP4 only. Not applicable to Windows Server 2003 Applicable (Superceded by SP2 for Windows Server 2003)
No Dependency (.NET 2.0 should not be installed on SCCS server) Applicable (Superceded by SP2 for Windows Server 2003)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (it is a Applicable (it is a companion update companion update together with together with MS06- MS06-021) 021) (Superceded (Superceded by by SP2) SP2)
No Dependency (IE should not be run on CCT server) (Superceded by SP2)
Not Applicable Applicable (Superceded by SP2 for Windows Server 2003) Applicable (there is no known direct dpendency with Windows Media Player, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) No Dependency (IE should not be run on CCT server) (Superceded by SP2 for Windows Server 2003)
Not Applicable
Applicable
Applicable (there is no known direct dpendency with Windows Media Player, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
No dependency (IE should not be run on SCCS server)
Not Applicable Applicable (Superceded by SP2 for Windows Server 2003) Applicable (there is no known direct dpendency with Windows Media Player, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) No dependency (IE should not be run on SCCS server) (Superceded by SP2 for Windows Server 2003)
No Dependency (IE should not be used to connect other web site outside CCMA server) (Superceded by SP2)
No Dependency (IE should not be used to connect other web site outside CCMM server) (Superceded by SP2)
No Dependency (IE should not No Dependency be run on CCT (IE should not be server) run on CCT (Superceded by server) SP2 for (Superceded by Windows Server SP2) 2003)
No dependency (IE should not be run on SCCS server) No dependency (Superceded by (IE should not SP2 for be run on SCCS Windows Server server) 2003)
Not Applicable Applicable (Superceded by SP2 for Windows Server 2003) Applicable (there is no known direct dpendency with Windows Media Player, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable (it is a companion update together with MS06-021) (Superceded by SP2 for Windows Server 2003) No Dependency (IE should not be used to connect other web site outside SCCS co-res server) (Superceded by SP2 for Windows Server 2003)
Applicable (Superceded by SP2) (need CCMA DP020310 or SUS0204 to be Applicable installed for full (Superceded by CCMA SP2) compatibility)
No Dependency (IE should not No Dependency be run on CCT (IE should not be server) run on CCT (Superceded by server) SP2 for (Superceded by Windows Server SP2) 2003)
No dependency (IE should not be run on SCCS server) No dependency (Superceded by (IE should not SP2 for be run on SCCS Windows Server server) 2003)
Applicable (Superceded by SP2 for Windows Server 2003) (need SUS0603 to be installed for full SWC compatibility)
Not Applicable
Not Applicable
Not Applicable
Not Applicable Not Applicable (Microsoft Exchange should not be installed on CCT server)
Not Applicable Not Applicable (Microsoft Exchange should not be installed on SCCS server)
Not Applicable (Microsoft Exchange should not be installed on CCMM server)
Not Applicable (Microsoft Exchange should not be installed on CCT server)
Applicable with Applicable with Windows Server Windows Server 2003 without SP1 2003 without SP1 only (no direct only (no direct dependency with dependency with MSDTC, but the MSDTC, but the affected affected component is an component is an integral part of the integral part of the OS, OS, recommended recommended to to install hotfix or install hotfix or SP1) SP1)
Applicable with Windows Server 2003 without SP1 and Windows 2000 Server SP4 (no direct dependency with MSDTC, but the affected component is an integral part of the OS, recommended to install hotfix)
Applicable (no direct dependency with MSDTC, but the affected component is an integral part of the OS, recommend to apply the hotfix)
No Dependency No Dependency (Outlook Express should not be run on CCMA server) (replaced by MS0734)
No Dependency No Dependency (Outlook Express should not be run on CCMM server) (replaced by MS07-034)
No Dependency No Dependency (Outlook Express should not be run on CCT server) (replaced by MS07-034)
Applicable (no direct Applicable (no Applicable (no dependency with direct dependency direct dependency Windows with Windows with Windows Explorer, but the Explorer, but the Explorer, but the affected affected affected component is an component is an component is an integral part of the integral part of the integral part of the OS, recommend OS, recommend to OS, recommend to apply the apply the hotfix) to apply the hotfix) hotfix) (Superceded by (Superceded by (Superceded by SP2) SP2) SP2)
No Dependency with Windows Server 2003. Not Applicable with Windows 2000 (Frontpage Server Extension 2002 is not included in Windows 2000) No Dependency (Outlook Express should not be run on CCT server) (replaced by MS07-034) Applicable (no direct dependency with Windows Explorer, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Not Applicable (Frontpage Server Extension 2002 is not included in Windows 2000) No Dependency (Outlook Express should not be run on SCCS server) (replaced by MS07-034)
No Dependency with Windows Server 2003. Not Applicable with Windows 2000 (Frontpage Server Extension 2002 is not included in Windows 2000) No Dependency (Outlook Express should not be run on SCCS server) (replaced by MS07-034) Applicable (no direct dependency with Windows Explorer, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
No Dependency No Dependency (Outlook Express should not be run on SCCS server) (replaced by MS07-034) Applicable (no direct dependency with Windows Explorer, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (replaced by MS08-009 for Windows 2000) (Superced by Applicable SP2 for (Superceded by Windows Server SP2) 2003) No Dependency (IE should not No Dependency be run on CCT (IE should not be server) run on CCT (Superceded by server) SP2 for (Superceded by Windows Server SP2) 2003)
Applicable (replaced by MS07-009 for Windows 2000) (Superceded by Applicable SP2 for (replaced by Windows Server MS07-009) 2003) No dependency (IE should not be run on SCCS server) No dependency (Superceded by (IE should not SP2 for be run on SCCS Windows Server server) 2003) Not Applicable (Microsoft Office product should not be installed on SCCS server) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable (Superceded by SP2 for Windows Server 2003) Applicable (replaced by MS06-021) (Superceded by SP2 for Windows Server 2003) Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable to Windows Server 2003 without SP1 only. Not Applicable to Windows Server 2003 with SP1 and Windows Server 2003 R2
Applicable to Applicable to Windows Server Windows Server 2003 without SP1 2003 without SP1 only. only. Not Applicable to Not Applicable to Windows Server Windows Server 2003 with SP1 and 2003 with SP1 Windows Server and Windows 2003 R2 Server 2003 R2
Applicable to Windows Server 2003 without SP1 only. Not Applicable to Windows Server 2003 with SP1 and Windows Server Not Applicable 2003 R2 Not Applicable (Microsoft Office product should not be installed on SCCS server)
Applicable to Windows Server 2003 without SP1 only. Not Applicable to Windows Server 2003 with SP1, Windows Server 2003 R2, and Windows 2000 SP4 Not Applicable (Microsoft Office product should not be installed on SCCS server) No Dependency with Windows Server 2003 (applicable only if Korean language IME is enabled) (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows 2000 No Dependency with Windows Server 2003 (By default Web Client Service is disabled in Windows Server 2003. No known direct dependency with Web Client Service, but the affected component is part of the OS distribution, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows 2000 Applicable to Windows Server 2003 (Superceded by SP2 for Windows Server 2003) Not Applicable to Windows 2000 No Dependency (Non-Microsoft Internet Browser should not be installed and run on SCCS server) Applicable with Media Player 7.1 or 9 on Windows 2000 (replaced by MS06-024).
Applicable to Windows Server 2003 without SP1 only. Not Applicable to Windows Server 2003 with SP1 and Windows Server 2003 R2 Not Applicable (Microsoft Office product should not be installed on SCCS server)
No Dependency No Dependency No Dependency (By default Web (By default Web (By default Web Client Service is Client Service is Client Service is disabled in disabled in disabled in Windows Server Windows Server Windows Server 2003. No known 2003. No known 2003. No known direct direct dependency direct dependency dependency with with Web Client with Web Client Web Client Service, but the Service, but the Service, but the affected affected affected component is part component is part component is part of the OS of the OS of the OS distribution, distribution, distribution, recommend to recommend to recommend to apply the hotfix) apply the hotfix) apply the hotfix) (Superceded by (Superceded by (Superceded by SP2) SP2) SP2)
Not Applicable (Microsoft Office product should not be installed on CCT server) No Dependency with Windows Server 2003 (applicable only if Korean language IME is enabled) (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows 2000 No Dependency with Windows Server 2003 (By default Web Client Service is disabled in Windows Server 2003. No known direct dependency with Web Client Service, but the affected component is part of the OS distribution, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows 2000
Not Applicable
No Dependency (applicable only if Korean language IME is enabled) (Superceded by SP2 for Windows Server 2003)
Not Applicable
No Dependency (By default Web Client Service is disabled in Windows Server 2003. No known direct dependency with Web Client Service, but the affected component is part of the OS distribution, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable to Windows Server 2003. (Superceded by SP2 for Windows Server 2003) Not Applicable to Windows 2000 Not Applicable No Dependency (Non-Microsoft Internet Browser should not be installed and run on SCCS server) Applicable with Media Player 7.1 or 9 on Windows 2000 (replaced by MS06-024).
Applicable (Superceded by SP2 for Windows Server 2003) No Dependency (Non-Microsoft Internet Browser should not be installed and run on SCCS server) Applicable with Media Player 7.1 or 9 on Windows 2000 (replaced by MS06-024).
No Dependency (Non-Microsoft Internet Browser should not be installed and run on CCMA server)
No Dependency (Non-Microsoft Internet Browser should not be installed and run on CCT server) Applicable with Applicable with Applicable with Applicable with Media Player 9 Media Player 9 on Media Player 9 on Media Player 9 on on Windows Windows Server Windows Server Windows Server Server 2003 2003 (replaced by 2003 (replaced by 2003 (replaced by (replaced by MS06-024) MS06-024) MS06-024) MS06-024)
No Dependency (Non-Microsoft Internet Browser should not be installed and run on CCMM server)
No Dependency (Non-Microsoft Internet Browser should not be installed and run on CCT server)
Not Applicable with Windows Server 2003 (Superceded by SP2 for Windows Server 2003) No Dependency with Windows 2000 with IE 5.01 (IE should not be run on CCT server) Not Applicable (Microsoft Outlook and Exchange should not be installed on CCT) Applicable (no known direct dependency on the affected web font component, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS07-017) (Superceded by SP2 for Windows Server 2003) Applicable to Windows 2000 SP4 (replaced by MS06-049). Not Applicable with Windows Server 2003 No Dependency (IE should not be run on NCCT server) (Superceded by SP2 for Windows Server 2003)
Not Applicable with Windows Server 2003 (Superceded by SP2 for Windows Server 2003) No Dependency No Dependency with Windows with IE 5.01 (IE 2000 with IE should not be 5.01 (IE should run on SCCS not be run on server) SCCS server) Not Applicable (Microsoft Outlook and Exchange should not be installed on SCCS) Not Applicable (Microsoft Outlook and Exchange should not be installed on SCCS) Applicable (no known direct dependency on the affected web font component, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS07-017) (Superceded by SP2 for Windows Server 2003) Applicable with Windows 2000 SP4 (replaced by MS06-049). Not Applicable with Windows Server 2003 No dependency (IE should not be run on SCCS server) (Superceded by SP2 for Windows Server 2003)
Not Applicable (Superceded by SP2 for Windows Server 2003) Not Applicable (Microsoft Outlook and Exchange should not be installed on SCCS) Applicable (no known direct dependency on the affected web font component, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Not Applicable (Microsoft Outlook and Exchange should not be installed on SCCS)
Not Applicable Not Applicable (Microsoft Outlook (Microsoft Outlook and Exchange and Exchange should not be should not be installed on installed on CCMA) CCMM)
Not Applicable (Microsoft Outlook and Exchange should not be installed on CCT)
Applicable (no known direct dependency on the affected web font component, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (no known direct Applicable (no dependency on known direct the affected dependency on Graphic the affected Rendering Graphic Engine, but the Rendering Engine, affected but the affected component is an component is an integral part of the integral part of the OS. Recommend OS. Recommend to apply the to apply the hotfix) hotfix) (Superceded by (Superceded by SP2) SP2)
Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS07-017)
Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Not Applicable
Not Applicable
Not Applicable
Applicable with Windows 2000 SP4 (replaced by MS06-049)
Not Applicable
Applicable with Windows 2000 SP4
No Dependency (IE should not be run on NCCT server) (Superceded by SP2)
Applicable (no known direct Applicable (no dependency on known direct the affected dependency on Graphic the affected Rendering Graphic Engine, but the Rendering Engine, affected but the affected component is an component is an integral part of the integral part of the OS. Recommend OS. Recommend to apply the to apply the hotfix) hotfix) (Superceded by (Superceded by SP2) SP2)
No Dependency (IE should not be run on NCCT server) (Superceded by SP2)
Applicable (no known direct dependency on COM+/MSDTC, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2)
Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS07-017) (Superceded by SP2 for Windows Server 2003) No Dependency (IE should not be run on NCCT server) (Superceded by SP2 for Windows Server 2003) Applicable (no known direct dependency on COM+/MSDTC, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable (no known direct dependency on DirectShow, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (no known direct dependency on COM+/MSDTC, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix)
Applicable (no known direct dependency on DirectShow, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS07-017) (Superceded by SP2 for Windows Server 2003) No dependency (IE should not be run on SCCS server) (Superceded by SP2 for Windows Server 2003) Applicable (no known direct dependency on COM+/MSDTC, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable (no known direct dependency on DirectShow, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) No Dependency (no known direct dependency on Shell, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (no known direct dependency on COM+/MSDTC, but the affected Applicable compoenent is (Superceded by an integral part SP2 for of the OS, Windows Server recommend to 2003) apply the hotfix) Applicable (no known direct dependency on DirectShow, but Applicable (no the affected component is an known direct integral part of dependency on DirectShow, but the OS, recommend to the affected apply the hotfix) component is an (Superceded by integral part of the OS, SP2 for Windows Server recommend to apply the hotfix) 2003) No Dependency (no known direct dependency on Shell, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
No Dependency (no known direct No Dependency dependency on No Dependency No Dependency (no known direct Shell, but the (no known direct (no known direct dependency on affected dependency on dependency on Shell, but the compoenent is Shell, but the Shell, but the affected an integral part affected affected compoenent is an of the OS, compoenent is an compoenent is an integral part of the recommend to integral part of the integral part of the OS, recommend apply the hotfix) OS, recommend to OS, recommend to apply the (Superceded by apply the hotfix) to apply the hotfix) hotfix) SP2 for (Superceded by (Superceded by (Superceded by Windows Server SP2) SP2) SP2) 2003)
No Dependency (no known direct dependency on Shell, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix)
No Dependency (no known direct No Dependency dependency on No Dependency No Dependency (no known direct Windows CDO, but the affected (no known direct (no known direct dependency on compoenent is dependency on dependency on Windows CDO, an integral part Windows CDO, but Windows CDO, but the affected the affected but the affected compoenent is an of the OS, compoenent is an compoenent is an integral part of the recommend to integral part of the integral part of the OS, recommend apply the hotfix) (Superceded by OS, recommend to OS, recommend to apply the SP2 for apply the hotfix) to apply the hotfix) hotfix) (Superceded by (Superceded by (Superceded by Windows Server 2003) SP2) SP2) SP2) No Dependency with Windows 2000 (no known direct dependency on PNP, but the affected component is an integral part of OS, recommend to apply hotfix). Not Applicable with Windows Server 2003
No Dependency (no known direct dependency on Windows CDO, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix)
No Dependency (no known direct dependency on Windows CDO, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
No Dependency (no known direct dependency on Windows CDO, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Not Applicable
Not Applicable
Not Applicable
No Dependency (no known direct dependency on PNP, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix)
No Dependency with Windows 2000 (no known direct dependency on PNP, but the affected component is an integral part of OS, recommend to apply hotfix). Not Applicable with Windows Not Applicable Server 2003 No Dependency (no known direct dependency with Netware Client Service, but the affected component is part of the OS distribution, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) No Dependency (no known direct dependency on Netman, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) No Dependency for Windows 2003 without SP1. Not Applicable to Windows 2000, Windows 2003 with SP1, and Windows Server 2003 R2 No Dependency (no known direct dependency with Netware Client Service, but the affected component is part of the OS distribution, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) No Dependency (no known direct dependency on Netman, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
No Dependency (no known direct No Dependency No Dependency dependency with (no known direct (no known direct Netware Client dependency with dependency with Service, but the Netware Client Netware Client affected Service, but the Service, but the component is affected affected part of the OS component is part component is part distribution, of the OS of the OS recommend to distribution, distribution, apply the hotfix) recommend to recommend to (Superceded by apply the hotfix) apply the hotfix) SP2 for (Superceded by (Superceded by Windows Server SP2) SP2) 2003)
No Dependency (no known direct dependency with Netware Client Service, but the affected component is part of the OS distribution, recommend to apply the hotfix)
No Dependency (no known direct No Dependency dependency on (no known direct Netman, but the No Dependency No Dependency (no known direct (no known direct dependency on affected Netman, but the compoenent is dependency on dependency on affected Netman, but the Netman, but the an integral part compoenent is an of the OS, affected affected compoenent is an compoenent is an integral part of the recommend to integral part of the integral part of the OS, recommend apply the hotfix) OS, recommend to OS, recommend to apply the (Superceded by apply the hotfix) to apply the hotfix) hotfix) SP2 for (Superceded by Windows Server (Superceded by (Superceded by SP2) SP2) SP2) 2003)
No Dependency (no known direct dependency on Netman, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix)
No Dependency for Windows No Dependency No Dependency 2003 without No Dependency for for Windows 2003 for Windows 2003 SP1. Not without SP1. without SP1. Windows 2003 Applicable to Not Applicable to Not Applicable to Windows 2003 without SP1. Windows 2003 Not Applicable to Windows 2003 with SP1, with SP1 and Windows 2003 with with SP1 and Windows Server SP1 and Windows Windows Server Windows Server 2003 R2, and 2003 R2 2003 R2 Server 2003 R2 Windows 2000 Not Applicable
No Dependency for Windows 2003 without SP1. Not Applicable Windows 2003 with SP1 and Windows Server Not Applicable 2003 R2
Applicable to Windows 2000 and Windows Applicable to Applicable to 2003 without Windows Server Windows 2003 2003 without SP1 without SP1 (no SP1 (no known direct (no known direct known direct dependency with dependency with dependency with the affected Print Spooler the affected component, but Service, but the component, but the affected affected the affected component is an component is part component is part of the OS integral part of of the OS distribution, Applicable to OS, recommend distribution, recommend to Windows Server to apply the recommend to apply hotfix) 2003 without SP1. hotfix). Not apply hotfix) Not Applicable to Applicable to Not Applicable to Not Applicable Windows Server Windows Server Windows 20003 to Windows 20003 with SP1 2003 SP1 and 2003 SP1 and with SP1 and Windows Server Windows Server Windows Server and Windows Server 2003 R2 2003 R2 2003 R2 2003 R2 No Dependency (no known direct No Dependency dependecy with No Dependency No Dependency (no known direct Kerberos, but the affected (no known direct (no known direct dependecy with dependecy with dependecy with Kerberos, but the component is an integral part of Kerberos, but the Kerberos, but the affected affected affected component is an the OS, component is an component is an integral part of the recommend to integral part of the integral part of the OS, recommend apply the hotfix) (Superceded by OS, recommend to OS, recommend to apply the SP2 for apply the hotfix) to apply the hotfix) hotfix) (Superceded by (Superceded by (Superceded by Windows Server 2003) SP2) SP2) SP2)
Applicable to Windows 2000 and Windows 2003 without SP1 (no known direct dependency with the affected component, but Applicable (no the affected component is known direct dependency with part of the OS distribution, the affected component, but recommend to apply hotfix) the affected Not Applicable component is to Windows part of the OS 20003 with SP1 distribution, recommend to and Windows Server 2003 R2 apply hotfix) No Dependency (no known direct dependecy with Kerberos, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable to Windows Server 2003 without SP1 only. Not Applicable to Windows Server 2003 with SP1 and Windows Server 2003 R2 No Dependency (no known direct dependecy with Kerberos, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (no known direct dependency with the affected component, but the affected component is part of the OS distribution, recommend to apply hotfix)
No Dependency (no known direct dependecy with Kerberos, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Applicable (Remote Desktop Connection can Applicable (Remote Desktop be used as remote support Connection can connection tool be used as for NCCT server remote support running on connection tool for NCCT server Windows Server 2003, and the Applicable running on (Remote Desktop Windows Server affected Applicable component is an (Remote Desktop Connection can be 2003, and the integral part of Connection can be used as remote affected support used as remote component is an the OS. support connection connection tool integral part of the Recommend to with CCMM. tool with CCMA. OS. Recommend apply the hotifx) (Superceded by Recommend to Recommend to to apply the SP2 for apply hotfix) apply hotfix) hotifx) (Superceded by (Superceded by (Superceded by Windows Server 2003) SP2) SP2) SP2)
No Dependency (no known direct dependecy with RDP, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Applicable (Remote Desktop Connection can be used as remote support connection tool for SCCS server running on Windows Server 2003, and the affected component is an integral part of the OS. Recommend to apply the hotifx) (Superceded by SP2 for Windows Server 2003)
Applicable (Remote Desktop Connection can be used as remote support connection tool for SCCS server running on Windows Server 2003, and the affected component is an integral part of the OS. Recommend to apply the hotifx) (Superceded by SP2 for Windows Server 2003)
Applicable (all connected legacy clients, including TAPI Applicable (all compliant connected legacy desktop, SWCP clients, including or SA using No Dependency No Dependency TAPI compliant TAPI Remote (no known direct (no known direct desktop, SWCP must also be dependecy with dependecy with or SA using TAPI installed with the TAPI, but the TAPI, but the Remote must also same hotfix for affected affected be installed with its applicable component is an component is an the same hotfix Windows integral part of the integral part of the for its applicable platform) OS, recommend to OS, recommend Windows (Superceded by apply the hotfix) to apply the hotfix) platform) SP2 for (Superceded by (Superceded by (Superceded by Windows Server SP2) SP2) SP2) 2003)
No Dependency (no known direct dependecy with TAPI, but the affected component is an integral part of the OS, recommend to apply the hotfix)
No Dependency (no known direct dependecy with TAPI, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (no known direct dependency with the affected Applicable (no Applicable (no Applicable (no component, but known direct known direct known direct dependency with dependency with dependency with the affected component is an the affected the affected the affected integral part of component, but the component, but component, but the OS, affected the affected the affected component is an component is an component is an recommend to integral part of the integral part of the integral part of the apply hotfix) OS, recommend to OS, recommend OS, recommend (Superceded by SP2 for apply hotfix) to apply hotfix) to apply hotfix) (Superceded by (Superceded by (Superceded by Windows Server 2003) SP2) SP2) SP2) No Dependency (IE should not No Dependency be run on NCCT (IE should not be server) run on NCCT (Superceded by Applicable Applicable server) SP2 for (Superceded by (Superceded by (Superceded by Windows Server SP2) SP2) SP2) 2003)
Applicable (no known direct dependency with the affected component, but the affected component is an integral part of the OS, recommend to apply hotfix)
Applicable (no known direct dependency with the affected component, but the affected component is an integral part of the OS, recommend to apply hotfix) (Superceded by SP2 for Windows Server 2003) No dependency (IE should not be run on SCCS server) (Superceded by SP2 for Windows Server 2003)
Applicable (no known direct dependency with the affected component, but the affected component is an integral part of the OS, recommend to apply hotfix) (Superceded by SP2 for Windows Server 2003)
No Dependency (MS Java Virtual Machine and IE should not be run on CCT)
No Dependency (MS Java Virtual Machine and IE should not be run on CCT)
No Dependency (MS Java Virtual Machine and IE should not be run on SCCS)
No Dependency (MS Java Virtual Machine and IE Applicable (replaced by should not be MS05-052) run on SCCS) Applicable (no known direct dependency with the affected component, but the affected component is part of the OS distribution, recommend to apply hotfix) (Superceded by SP2 for Windows Server 2003) Not Applicable (MS Office should not coreside with SCCS)
No Dependency (MS Java Virtual Machine and IE should not be run on SCCS)
Applicable (no known direct Applicable (no Applicable (no Applicable (no dependency with known direct known direct known direct the affected dependency with dependency with dependency with component, but the affected the affected the affected the affected component, but the component, but component, but component is affected the affected the affected part of the OS component is part component is part component is part distribution, of the OS of the OS of the OS recommend to distribution, distribution, distribution, apply hotfix) recommend to recommend to recommend to (Superceded by apply hotfix) apply hotfix) apply hotfix) SP2 for (Superceded by (Superceded by (Superceded by Windows Server SP2) SP2) SP2) 2003)
Applicable (no known direct dependency with the affected Applicable (no component, but known direct the affected dependency with component is the affected part of the OS component, but distribution, the affected recommend to component is apply hotfix) part of the OS (Superceded by distribution, SP2 for recommend to Windows Server apply hotfix) 2003) Not Applicable (MS Office should not coreside with SCCS)
Applicable (no known direct dependency with the affected component, but the affected component is part of the OS distribution, recommend to apply hotfix) Not Applicable (MS Office should not coreside with SCCS)
Not Applicable Not Applicable (MS Not Applicable Not Applicable Not Applicable (MS Office Office should not (MS Office should (MS Office should (MS Office should not coco-reside with not co-reside with not co-reside with should not coreside with CCMA) CCMM) CCT) reside with CCT) SCCS)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable No Dependency on Windows 2003 (Telnet Client should not be run on SCCS) (Superceded by SP2 for Windows Server 2003) Not Applicable to Windows 2000
Not Applicable
Not Applicable
No Dependency (Telnet Client should not be run on CCMA) (Superceded by SP2)
No Dependency on Windows 2003 (Telnet Client should not be run on CCT) (Superceded by No Dependency No Dependency SP2 for (Telnet Client (Telnet Client Windows Server should not be run should not be run 2003) on CCMM) on CCT) Not Applicable (Superceded by (Superceded by to Windows SP2) SP2) Not Applicable 2000
No Dependency (Telnet Client should not be run on SCCS) (Superceded by SP2 for Windows Server Not Applicable 2003)
Not Applicable Not Applicable (Microsoft Agent (Microsoft Agent should not be should not be installed on installed on CCMA) CCMM) (Superceded by (Superceded by SP2) SP2)
Not Applicable (Microsoft Agent should not be installed on CCT) (replaced Not Applicable (Microsoft Agent by MS06-068) (Superceded by should not be installed on CCT) SP2 for (Superceded by Windows Server) SP2) Not Applicable (Step-by-Step Interactive Training should not be installed on CCT) (replaced by MS07-005)
Not Applicable (Microsoft Agent should not be installed on Not Applicable SCCS) (Microsoft Agent (replaced by should not be MS06-068) installed on (Superceded by SCCS) SP2 for (replaced by Windows Server MS06-068) 2003) Not Applicable (Step-by-Step Interactive Training should not be installed on SCCS) (replaced by MS07-005) Not Applicable (Step-by-Step Interactive Training should not be installed on SCCS) (replaced by MS07-005)
Not Applicable (Microsoft Agent should not be installed on SCCS) (Superceded by SP2 for Windows Server 2003) Not Applicable (Step-by-Step Interactive Training should not be installed on SCCS) (replaced by MS07-005) No Dependency on Windows 2000 and Windows 2003 without SP1 (Outlook Express should not be run on SCCS). Not aplicable with Windows 2003 with SP1 and Windows Servver 2003 R2
Not Applicable (Microsoft Agent should not be installed on SCCS)
Not Applicable Not Applicable (Step-by-Step (Step-by-Step Interactive Training Interactive should not be Training should installed on CCMA) not be installed on (replaced by MS07- CCMM) (replaced 005) by MS07-005)
Not Applicable (Step-by-Step Interactive Training should not be installed on CCT) (replaced by MS07-005)
Not Applicable (Step-by-Step Interactive Training should not be installed on SCCS)
No Dependency with Windows 2000 and No Dependency No Dependency Windows 2003 No Dependency on on Windows 2003 with Windows without SP1 Windows 2003 without SP1 2003 without SP1 (Outlook without SP1 (Outlook Express (Outlook Express Express should (Outlook Express should not be run should not be run not be run on should not be run on CCMM). Not on CCT). Not CCT). Not on CCMA). Not aplicable with aplicable with aplicable with aplicable with Windows 2003 Windows 2003 Windows 2003 Windows 2003 with with SP1 and with SP1 and with SP1 and SP1 and Windows Windows Server Windows Server Windows Server Server 2003 R2 2003 R2 2003 R2 2003 R2
No Dependency on Windows 2000 and Windows 2003 without SP1 (Outlook Express should not be run on SCCS). Not No Dependency aplicable with (Outlook Windows 2003 Express should with SP1 and not be run on Windows Server SCCS) 2003 R2
No Dependency (Outlook Express should not be run on SCCS)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable No Dependency with Windows Server 2003 without SP1 (Web Client service is disabled as default in Windows Server 2003, and SCCS has no known direct dependency with Web Client service, but Web Client Service is part of the OS distribution. Recommend to apply hotfix if Web Client service is enabled). Not Applicable to Windows 2003 with SP1, WIndows Server 2003 R2, and Windows 2000
Not Applicable
Not Applicable
No Dependency with Windows Server 2003 without SP1 (Web Client service is disabled as default in Windows Server 2003, and CCMA has no known direct dependency with Web Client service, but Web Client Service is part of the OS distribution. Recommend to apply hotfix if Web Client service is enabled). Not Applicable to Windows 2003 with SP1 and Windows Server 2003 R2
No Dependency with Windows Server 2003 No Dependency without SP1 with Windows (Web Client No Dependency Server 2003 service is with Windows without SP1 (Web disabled as Server 2003 Client service is default in without SP1 (Web disabled as Windows Server Client service is default in 2003, and CCT disabled as default Windows Server have no known in Windows 2003, and CCT direct Server 2003, and have no known dependency with CCMM has no direct Web Client known direct dependency with service, but dependency with Web Client Web Client Web Client service, but Web Service is part service, but Web Client Service is of the OS Client Service is part of the OS distribution. part of the OS distribution. Recommend to distribution. Recommend to apply hotfix if Recommend to apply hotfix if Web Client apply hotfix if Web Web Client service is Client service is service is enabled). Not enabled). enabled). Applicable to Not Applicable to Not Applicable to Windows 2003 Windows 2003 Windows 2003 with SP1 and with SP1 and with SP1 and Windows 2000 Windows Server Windows Server and Windows 2003 R2 2003 R2 Server 2003 R2 Not Applicable
No Dependency with Windows Server 2003 without SP1 (Web Client service is disabled as default in Windows Server 2003, and SCCS has no known direct dependency with Web Client service, but Web Client Service is part of the OS distribution. Recommend to apply hotfix if Web Client service is enabled). Not Applicable to Windows 2003 with SP1 and Windows Server 2003 R2 Not Applicable
Applicable (Superceded by SP2 for Windows Server 2003) (no known direct dependency with SMB, the SMB is an integral part of the OS. Recommend to apply the hotfix)
Applicable (Superceded by SP2 for Windows Server Applicable (no 2003) (no known known direct direct dependency with dependency with SMB, the SMB SMB, the SMB is an integral is an integral part of the OS. part of the OS. Recommend to Recommend to apply the hotfix) apply the hotfix) Applicable (no known direct dependency with HTML Help, but Applicable (no HTML Help is known direct part of the OS dependency with distribution. HTML Help, but Recommend to HTML Help is apply hotfix) part of the OS (Superceded by distribution. SP2 for Recommend to Windows Server apply hotfix) 2003)
Applicable (Superceded by SP2 for Windows Server Applicable 2003) Applicable (no known direct dependency with HTML Help, but HTML Help is part of the OS distribution. Recommend to apply hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable (no known direct Applicable (no Applicable (no Applicable (no dependency with known direct known direct known direct HTML Help, but dependency with dependency with dependency with HTML Help is HTML Help, but HTML Help, but HTML Help, but part of the OS HTML Help is part HTML Help is part HTML Help is part distribution. of the OS of the OS of the OS Recommend to distribution. distribution. distribution. apply hotfix) Recommend to Recommend to Recommend to (Superceded by apply hotfix) apply hotfix) apply hotfix) SP2 for (Superceded by (Superceded by (Superceded by Windows Server SP2) SP2) SP2) 2003) No Dependency (IE should not No Dependency be run on NCCT (IE should not be server) (Superceded by run on NCCT SP2 for Applicable Applicable server) (Superceded by (Superceded by (Superceded by Windows Server 2003) SP2) SP2) SP2) Applicable to Windows 2000 only (no known direct dependency with the affected components, but the affected components are part of the OS distribution. Recommend to apply hotfix) Not Applicable to Windows Server 2003
Applicable (no known direct dependency with HTML Help, but HTML Help is part of the OS distribution. Recommend to apply hotfix)
No Dependency (Superceded by SP2 for Windows Server No Dependency 2003)
Applicable (Superceded by SP2 for Windows Server No Dependency 2003)
Not Applicable
Not Applicable
Not Applicable
Applicable to Windows 2000 only (no known direct dependency with Applicable (no the affected known direct components, but dependency with the affected the affected components are components, but part of the OS the affected distribution. components are Recommend to part of the OS apply hotfix) Not distribution. Applicable to Recommend to Windows Server Not Applicable apply hotfix) 2003
Applicable (no known direct dependency with the affected components, but the affected components are part of the OS distribution. Recommend to apply hotfix)
Not Applicable (Microsoft Word should not be installed on CCMA server)
Not Applicable (Microsoft Word should not be installed on CCMM server)
Not Applicable (Microsoft Word should not be installed on CCT server)
Not Applicable (Microsoft Word should not be installed on CCT server)
Not Applicable (Microsoft Word should not be installed on SCCS server)
Not Applicable Not Applicable Not Applicable Not Applicable (MSN (MSN Messenger (MSN Messenger (MSN Messenger Messenger should not be should not be should not be should not be installed on CCMA installed on installed on CCT installed on CCT server) CCMM server) server) server)
Not Applicable (MSN Messenger should not be installed on SCCS server)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency (Superceded by SP2 for Windows Server No Dependency 2003)
No Dependency Applicable (For W2K3, superceded by (Superceded by No Dependency SP2) SP2)
Applicable with Windows Server 2003 without SP1 (Superceded by SP1). Not Applicable to Windows Server 2003 SP1 and Windows Server 2003 R2
Applicable to Windows 2000 and Windows Server 2003 Applicable to Applicable with Windows Server Windows Server without SP1 (for 2003 without SP1 2003 without SP1 W2K3, (Superceded by (Superceded by superceded by SP1) Not SP1). SP1) Not Applicable to Not Applicable to Applicable with Windows Server Windows Server Windows Server 2003 SP1 and 2003 SP1 and 2003 SP1 and Windows Server Windows Server Windows Server 2003 R2 Applicable 2003 R2 2003 R2
Applicable to Windows 2000 and Windows Server 2003 without SP1 (for W2K3, superceded by SP1). Not Applicable to Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable to Windows 2000 and Windows Server 2003 without SP1 (for W2K3, superceded by SP1) (no known direct dependency with the affected components, but affected components are part of the OS Kernel. Recommend to apply hotfix) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 No Dependency for Windows 2000 (no known direct dependency with Message Queuing, and it is not installed by default in Windows. Recommend to apply hotfix if Messaging Queuing is enabled) Not Applicable to Windows Server 2003
Applicable to Windows Server 2003 without SP1 (Superceded by SP1). Not Applicable to Windows Server 2003 SP1 and Windows Server Applicable 2003 R2
Applicable to Windows 2000 and Windows Server 2003 without SP1 (for W2K3, superceded by SP1) (no known direct dependency with the affected components, but affected components are Applicable to Applicable to Applicable to part of the OS Windows Server Windows Server Windows Server Kernel. 2003 without SP1 2003 without SP1 2003 without SP1 Recommend to (Superceded by (Superceded by (Superceded by apply hotfix) SP1) SP1) SP1) Not Applicable Not Applicable with Not Applicable Not Applicable with Windows Windows Server with Windows with Windows Server 2003 2003 SP1 and Server 2003 SP1 Server 2003 SP1 SP1 and Windows Server and Windows and Windows Windows Server 2003 R2 Server 2003 R2 Server 2003 R2 2003 R2 No Dependency for Windows 2000 (no known direct dependency with Message Queuing, and it is not installed by default in Windows. Recommend to apply hotfix if Messaging Queuing is enabled) Not Applicable to Windows Not Applicable Not Applicable Not Applicable Server 2003
Applicable (no known direct dependency with the affected components, but the affected components are part of the OS Kernel. Recommend to apply hotfix)
Applicable Windows Server 2003 without SP1 (Superceded by SP1) Not applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
No Dependency (no known direct dependency with Message Queuing, and it is not installed by default in Windows. Recommend to apply hotfix if Messaging Queuing is enabled)
Not Applicable
Applicable to Windows 2000 and Windows Server 2003 without SP1 (for W2K3, superceded by SP1) (no known direct dependency with the affected file association function in Windows Shell, but Windows Shell is part of the OS Applicable to Applicable to Applicable to Windows Server Windows Server Windows Server distribution. 2003 without SP1 2003 without SP1 2003 without SP1 Recommend to (Superceded by (Superceded by (Superceded by apply hotfix) Not Applicable SP1) SP1) SP1) with Windows Not Applicable with Not Applicable Not Applicable Server 2003 Windows Server with Windows with Windows 2003 SP1 and Server 2003 SP1 Server 2003 SP1 SP1 and Windows Server Windows Server and Windows and Windows 2003 R2 Server 2003 R2 Server 2003 R2 2003 R2 Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected Hyperlink Object Library, but Hyperlink Object Library is part of the OS distribution. Applicable Recommend to (Superceded by apply hotfix) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2 No Dependency (for W2K3, superceded by SP1) (IE should No Dependency not be run on (Superceded by NCCT server) SP1) Not Not Applicable Applicable with with Windows Windows Server Server 2003 2003 SP1 and SP1 and Windows Server Windows Server 2003 R2 2003 R2
Applicable to Windows 2000 and Windows Server 2003 without SP1 (for W2K3, superceded by SP1) (no known direct dependency with the affected file association function in Applicable (no Windows Shell, but Windows known direct dependency with Shell is part of the affected file the OS distribution. association Recommend to function in Windows Shell, apply hotfix) Not Applicable but Windows Shell is part of with Windows Server 2003 the OS SP1 and distribution. Recommend to Windows Server 2003 R2 apply hotfix) Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected Hyperlink Object Library, but Hyperlink Object Library is part of the OS distribution. Recommend to apply hotfix) Not Applicable with Wiindwos Server 2003 SP1 and Windows Server 2003 R2
Applicable Windows Server 2003 without SP1 (Superceded by SP1) Not applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected Hyperlink Object Library, but Hyperlink Object Library is part of the OS distribution. Recommend to apply hotfix) Not Applicable with Wiindwos Server 2003 SP1 and Windows Server 2003 R2
Applicable (no known direct dependency with the affected file association function in Windows Shell, but Windows Shell is part of the OS distribution. Recommend to apply hotfix)
Applicable (no known direct dependency with the affected Hyperlink Object Library, but Hyperlink Object Library is part of the OS distribution. Recommend to apply hotfix)
No Dependency (For W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2
No Dependency (for W2K3, superceded by SP1) (IE should No Dependency not be run on (Superceded by NCCT server) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2
No Dependency (for W2K3, superceded by SP1) (IE should not be run on SCCS server) Not Applicable with Windows No Dependency Server 2003 (IE should not SP1 and be run on SCCS Windows Server server) 2003 R2
No Dependency (IE should not be run on SCCS server)
Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected OLE & COM, but OLE & COM is part of the OS distribution. Recommend to Applicable (Superceded by apply hotfix) Not Applicable SP1) with Windows Not Applicable Server 2003 with Windows Server 2003 SP1 SP1 and Windows Server and Windows Server 2003 R2 2003 R2 Applicable (for W2K3, Applicable superceded by (Superceded by SP1) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2
Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected OLE & COM, but OLE & COM Applicable (no is part of the OS distribution. known direct dependency with Recommend to apply hotfix) the affected Not Applicable OLE & COM, but OLE & COM with Windows is part of the OS Server 2003 SP1 and distribution. Recommend to Windows Server 2003 R2 apply hotfix) Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Applicable 2003 R2
Applicable (no known direct dependency with the affected OLE & COM, but OLE & COM is part of the OS distribution. Recommend to apply hotfix)
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Applicable 2003 R2
Applicable to Windows 2000 (no known direct dependency with the affected License Logging, but License Logging is part of the OS distribution. Recommend to apply hotfix). No Dependency on Windows 2003 (for W2K3, No Dependency superceded by (Superceded by SP1) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows WIndows Server Server 2003 R2 2003 R2
Applicable to Windows 2000 (no known direct dependency with the affected License Logging, but License Logging is part of the OS distribution. Recommend to apply hotfix). Applicable (no No Dependency known direct on Windows dependency with 2003 (for W2K3, the affected superceded by License SP1) Logging, but Not Applicable License Logging with Windows is part of the OS Server 2003 distribution. SP1 and Recommend to WIndows Server apply hotfix) 2003 R2
Applicable (no known direct No Dependency dependency with (Superceded by the affected SP1) License Not Applicable Logging, but with Windows License Logging Server 2003 is part of the OS SP1 and distribution. Windows Server Recommend to 2003 R2 apply hotfix)
Applicable (Superceded by SP1) (no direct Applicable with Applicable with dependency with Windows 2003 Windows 2003 the affected (for W2K3, (for W2K3, Media Player, superceded by superceded by but Media SP1). SP1). Player is part of Not Applicable Not Applicable the OS with Windows with Windows distribution. Server 2003 Server 2003 Recommend to SP1, Windows SP1, Windows apply hotfix if Server 2003 R2, Server 2003 R2, Media Player is Applicable Not Applicable and Windows and Windows the not correct (Superceded by 2000 (affected (Affected Media 2000 (affected version). SP1) Player and Media Player Media Player Not Applicable Not Applicable Windows and Windows and Windows with Windows with Windows Messenger is Messenger is Messenger is Server 2003 Server 2003 SP1 not installed by not installed by not installed by SP1 and and Windows default on default on default on Windows Server Server 2003 R2 Windows 2000) Windows 2000) Windows 2000) 2003 R2
Not Applicable (Affected Media Player and Windows Messenger is not installed by default on Windows 2000)
Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected Drag & Drop function, but Drag & Drop function is part of the OS distribution. Applicable Recommend to (Superceded by apply hotfix) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Applicable Server 2003 SP1 SP1 and and Windows Windows Server (replaced by MS05-016) Server 2003 R2 2003 R2
Applicable (for W2K3, superceded by SP1) (replaced by MS05-016) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 Applicable SP1 and Windows Server (replaced by MS05-016) 2003 R2
Not Applicable
Not Applicable Not Applicable Not Applicable Not Applicable (SharePoint is not (SharePoint is not (SharePoint is not installed by installed by default installed by default default on on Windows on Windows Windows Server Server 2003) Server 2003) 2003)
Not Applicable
Not Applicable Not Applicable Not Applicable (SharePoint is not installed by default on Windows Server Not Applicable 2003)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (for W2K3, Applicable superceded by (Superceded by SP1) (no known SP1) (no known direct direct dependency with dependency with ASP.NET, but ASP.NET, but ASP.NET is part ASP.NET is part of the OS .NET of the OS .NET distribution. distribution. Recommend to Applicable Applicable Recommend to apply hotfix) (Superceded by (Superceded by apply hotfix) (replaced by SP1) (replaced by SP1) (replaced by (replaced by MS07-040) MS07-040) MS07-040) MS07-040) Not Applicable Not Applicable with Not Applicable Not Applicable with Windows Windows Server with Windows with Windows Server 2003 2003 SP1 and Server 2003 SP1 Server 2003 SP1 SP1 and Windows Server and Windows and Windows Windows Server 2003 R2 Server 2003 R2 Server 2003 R2 2003 R2 No Dependency (for W2K3, superceded by SP1) (Indexing Service is not No Dependency No Dependency No Dependency enable by (Superceded by (Superceded by (Superceded by default) SP1) SP1) SP1) Not Applicable Not Applicable with Not Applicable Not Applicable with Windows Windows Server with Windows with Windows Server 2003 2003 SP1 and Server 2003 SP1 Server 2003 SP1 SP1 and Windows Server and Windows and Windows Windows Server 2003 R2 Server 2003 R2 Server 2003 R2 2003 R2
No Dependency with Windows 2003 (for W2K3, superceded by SP1) (no known dependency on .NET by SCCS). Not Applicable to Windows 2000 (.NET is not installed by default on SCCS server) Not Not Applicable Applicable with (.NET is not Windows Server installed by 2003 SP1 and default on SCCS Windows Server server) 2003 R2 No Dependency (for W2K3, superceded by SP1) (Indexing Service is not enable by default) Not No Dependency Applicable with (Indexing Windows Server Service is not 2003 SP1 and enable by Windows Server default) 2003 R2
No Dependency (Superceded by SP1) (no known dependency with .NET by SCCS/CCMA/T API) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Not Applicable (.NET is not installed by default on SCCS server)
No Dependency (Indexing Service is not enable by default)
Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected Cursor and Icon Format components, but the affected components are part of the OS distribution. Recommend to apply hotfix) (replaced by MS07-017) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K3, superceded by SP1) (replaced by MS05-026) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Not Applicable (for W2K3, superced by SP1) (WINS should not be installed on CCT server) Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Applicable (no known direct dependency with the affected Cursor and Icon Format components, but the affected components are part of the OS distribution. Recommend to apply hotfix)
Not Applicable (WINS should not be installed on SCCS server)
Applicable
Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected Cursor and Icon Format components, but the affected components are part of the OS distribution. Recommend to apply hotfix) (replaced by MS07-017) Not Applicable with Windows Server 2003 SP1 and WIndows Server 2003 R2 Applicable (for W2K3, superceded by SP1) (replaced by MS05-026) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Not Applicable (for W2K3, superceded by SP1) (WINS should not be installed on SCCS server) Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Applicable (no known direct dependency with Applicable the affected (Superceded by Cursor and Icon SP1) (replaced Format by MS07-017) components, but Not Applicable the affected with Windows components are Server 2003 part of the OS SP1 and distribution. Windows Server Recommend to 2003 R2 apply hotfix)
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Applicable Windows Server (replaced by 2003 R2 MS05-026)
Not Applicable (WINS should Not Applicable not be installed (Superceded by on SCCS server) SP1) Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable
Applicable (for W2K3, superceded by SP1) (no known direct dependency with HyperTerminal, but HyperTerminal is part of the OS distribution. Applicable Recommend to (Superceded by apply hotfix) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2
Applicable (for W2K3, superceded by SP1) (no known direct dependency with HyperTerminal, but HyperTerminal Applicable (no is part of the OS known direct distribution. dependency with Recommend to HyperTerminal, apply hotfix) but Not Applicable HyperTerminal with Windows is part of the OS Server 2003 distribution. SP1 and Recommend to Windows Server apply hotfix) 2003 R2
Applicable (no known direct dependency with HyperTerminal, but HyperTerminal is part of the OS distribution. Recommend to apply hotfix)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (for W2K3, superceded by SP1) (no known direct dependency with WordPad, but WordPad is part of the OS distribution. Applicable Recommend to (Superceded by apply hotfix) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2
Applicable (for W2K3, superceded by SP1) (no known direct dependency with WordPad, but WordPad is part of the OS Applicable (no distribution. known direct Recommend to dependency with apply hotfix) WordPad, but Not Applicable WordPad is part with Windows of the OS Server 2003 distribution. SP1 and Recommend to Windows Server apply hotfix) 2003 R2
Applicable (no known direct dependency with WordPad, but WordPad is part of the OS distribution. Recommend to apply hotfix)
Not Applicable
Not Applicable
No Dependency
No Dependency No Dependency No Dependency Not Applicable
No Dependency
Not Applicable
Not Applicable
Not Applicable
Not Applicable No Dependency (for W2K3, superceded by SP1) No Dependency (Superceded by (Superceded by MS05-014) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2 Applicable (for W2K3, superceded by SP1) (no direct dependency with CCT, but vulnerabiliaties are base function in Windows. Recommend to apply hotfix Applicable (Superceded by immediately) Not Applicable SP1) with Windows Not Applicable Server 2003 with Windows Server 2003 SP1 SP1 and Windows Server and Windows Server 2003 R2 2003 R2
Not Applicable
Not Applicable No Dependency (for W2K3, superceded by SP1) (Superceded by MS05-014) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2 Applicable (for W2K3, superceded by SP1) (no direct dependency with SCCS, but vulnerabiliaties are base Applicable (no function in Windows. direct dependency with Recommend to apply hotfix SCCS, but vulnerabiliaties immediately) Not Applicable are base with Windows function in Server 2003 Windows. Recommend to SP1 and Windows Server apply hotfix 2003 R2 immediately)
Not Applicable Not Applicable Applicable (for W2K3, superceded by SP1) (Superceded by MS05-014) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2
Applicable (no direct Applicable dependency with (Superceded by SCCS, but SP1) vulnerabiliaties Not Applicable are base with Windows function in Server 2003 Windows. SP1 and Recommend to Windows Server apply hotfix 2003 R2 immediately)
Not Applicable (Superced by SP1)
Not Applicable (for W2K3, superceded by SP1) (IIS should Not Applicable not be installed (IIS should not on CCT server) be installed)
Not Applicable (for W2K3, superceded by No Dependency Not Applicable SP1) (IIS should (Superceded by (IIS should not be installed) not be installed) SP1)
Not Applicable (for W2K3, superceded by SP1) (IIS should not be installed on CCT server) Not Applicable
Not Applicable (for W2K3, superceded by SP1) (SMTP should not be installed on SCCS)
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Not Applicable 2003 R2
Applicable to Windows 2003 (for W2K3, superceded by Applicable SP2). (Superceded by Not Applicable SP2) with Windows Not Applicable Server 2003 with Windows SP1, Windows Server 2003 SP1 Server 2003 R2, and Windows and Windows Not Applicable Server 2003 R2 2000. Not Applicable (No Microsoft Office product should be installed on CCT server) Not Applicable (No Microsoft Office product should be installed on CCT server) Applicable (for W2K3, Applicable superceded by (Superceded by SP1) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2 Applicable (for W2K3, superceded by SP1) (No known direct dependency with NetDDE. NetDDE is not started by default but it is part of the Windows, recommend to Applicable (Superceded by apply the hotfix) Not Applicable SP1) with Windows Not Applicable Server 2003 with Windows Server 2003 SP1 SP1 and Windows Server and Windows Server 2003 R2 2003 R2 Not Applicable (No Microsoft Office product should be installed on SCCS)
Applicable to Windows 2003 (for W2K3, superceded by SP2). Not Applicable with Windows Server 2003 SP1, Windows Server 2003 R2, and Windows 2000.
Not Applicable (No Not Applicable (No Microsoft Office Microsoft Office product should be product should be installed on installed on CCMA) CCMM)
Not Applicable (No Microsoft Office product should be installed on SCCS) Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Applicable 2003 R2 Applicable (for W2K3, superceded by SP1) (No known direct dependency with NetDDE. NetDDE is not started by Applicable (No default but it is part of the known direct dependency with Windows, recommend to NetDDE. NetDDE is not apply the hotfix) Not Applicable started by default but it is with Windows Server 2003 part of the SP1 and Windows, recommend to Windows Server apply the hotfix) 2003 R2
Applicable (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Not Applicable (No Microsoft Office product should be installed on SCCS Co-res server)
Not Applicable Not Applicable (No Microsoft Office product should be installed on SCCS)
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Applicable 2003 R2
Applicable (No known direct Applicable dependency with (Superceded by NetDDE. SP1) NetDDE is not Not Applicable started by with Windows default but it is Server 2003 part of the SP1 and Windows, Windows Server recommend to 2003 R2 apply the hotfix)
Not Applicable (Superceded by SP1) (IIS should not be installed on CCT server)
Not Applicable (for W2K3, superceded by SP1) (IIS should not be installed on CCT server)
Not Applicable (IIS should not be installed on SCCS)
Not Applicable (for W2K3, superceded by SP1) (IIS should not be installed on SCCS)
Not Applicable (IIS should not be installed on SCCS)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable to Windows 2003 (for W2K3, superceded by SP1). Applicable (Superceded by Not Applicable with Windows SP1) Server 2003 Not Applicable SP1, Windows with Windows Server 2003 SP1 Server 2003 R2, and Windows and Windows Not Applicable Server 2003 R2 2000
Applicable with Windows 2003 (for W2K3, superceded by SP1). Not Applicable with Windows Server 2003 SP1, Windows Server 2003 R2, and Windows 2000
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Not Applicable 2003 R2
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable No Dependency (For W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Not Applicable
Not Applicable
No Dependency (for W2K3, No Dependency superceded by (Superceded by SP1) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2 No Dependency
Applicable (for W2K3, superceded by SP1) (replaced Applicable (Superceded by by MS04-037) Not Applicable SP1) with Windows Not Applicable Server 2003 with Windows Applicable Server 2003 SP1 SP1 and Windows Server (replaced by and Windows MS04-037) Server 2003 R2 2003 R2
Applicable to Win2000 and Win2003 (for W2K3, superceded by SP1) (no direct dependency with affected component, but most vulnerabiliaties are base function in Windows. Recommend to Applicable apply hotfix (Superceded by immediately) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2
Applicable with Win2000 and Win2003 (for W2K3, superceded by SP1) (no direct dependency with SCCS, but most vulnerabiliaties are base Applicable (no function in direct Windows. dependency with Recommend to SCCS, but most apply hotfix vulnerabiliaties immediately) are base Not Applicable function in with Windows Windows. Server 2003 Recommend to SP1 and apply hotfix Windows Server immediately) 2003 R2
Applicable (no direct Applicable dependency with (Superceded by SCCS, but most SP1) vulnerabiliaties Not Applicable are base with Windows function in Server 2003 Windows. SP1 and Recommend to Windows Server apply hotfix 2003 R2 immediately)
Not Applicable
Not Applicable
Not Applicable
Applicable to Win2000 (no direct dependency with CCT server, but the affected component is a base component of Windows. Recommend to apply hotifx). Not Applicable Applicable with Win2003.
Applicable with Win2000 only
Not Applicable
Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency
No Dependency
Not Applicable
No Dependency with Win2000. Not applicable No Dependency No Dependency Not Applicable with Win2003. No Dependency with Win2000. Not applicable with Win2003. No Dependency (For W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
No Dependency
Not Applicable
Not Applicable
No Dependency with Win2000. Not applicable with Win2003. Not Applicable No Dependency No Dependency (for W2K3, No Dependency superceded by (Superceded by SP1) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2 No Dependency
Not Applicable
No Dependency
Not Applicable (all Not Applicable (all affected MS affected MS products should not products should be installed on not be installed on Not Applicable CCMA) CCMM)
Not Applicable Not Applicable No Dependency (for W2K3, No Dependency superceded by (Superceded by SP1) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2 No Dependency
No Dependency (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2 Not Applicable (all affected MS products should not be installed on SCCS Co-res Not Applicable server) No Dependency (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2
No Dependency with Win2003 (for W2K3, No Dependency superceded by (Superceded by SP1) Not Applicable with SP1) Windows Server Not Applicable 2003 SP1, with Windows Server 2003 SP1 Windows Server 2003 R2, and and Windows Server 2003 R2 Windows 2000 Not Applicable
No Dependency with Win2003 (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1, Windows Server 2003 R2, and Windows 2000
No Dependency (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Not Applicable 2003 R2
No Dependency (For W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
No Dependency (for W2K3, No Dependency superceded by (Superceded by SP1) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2 No Dependency Applicable (for W2K3, Applicable superceded by (Superceded by SP1) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Applicable Server 2003 R2 2003 R2 Applicable (for W2K3, superceded by SP1) (no direct dependency with CCT server, but most vulnerabiliaties are base function in Windows. Recommend to Applicable apply hotfix (Superceded by immediately) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2 Not Applicable (MSN should not be installed)
No Dependency (For W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
No Dependency (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2 Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Applicable 2003 R2
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Not Applicable (MSN should not be installed)
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Not Applicable (MSN should not be installed)
Applicable (for W2K3, superceded by SP1) (no direct dependency with SCCS, but most vulnerabiliaties are base Applicable (no function in direct Windows. dependency with Recommend to SCCS, but most apply hotfix vulnerabiliaties immediately) are base Not Applicable function in with Windows Windows. Server 2003 Recommend to SP1 and apply hotfix Windows Server immediately) 2003 R2
Applicable (no direct Applicable dependency with (Superceded by SCCS, but most SP1) vulnerabiliaties Not Applicable are base with Windows function in Server 2003 Windows. SP1 and Recommend to Windows Server apply hotfix 2003 R2 immediately)
Not Applicable Not Applicable Not Applicable Not Applicable Not Applicable (MSN should not (MSN should not (MSN should not (MSN should not (MSN should not be installed) be installed) be installed) be installed) be installed)
Not Applicable Not Applicable (Outlook should not (Outlook should be installed) not be installed) No Dependency (Windows Media Services should not be installed) No Dependency (Windows Media Services should not be installed)
Not Applicable (Outlook should not be installed) No Dependency (Windows Media Services should not be installed)
Not Applicable Not Applicable Not Applicable Not Applicable Not Applicable (Outlook should (Outlook should (Outlook should (Outlook should (Outlook should not be installed) not be installed) not be installed) not be installed) not be installed) No Dependency (Windows Media Services should not be installed) No Dependency (Windows Media Services should not be installed) Applicable (for W2K3, superceded by SP1) (replaced by MS04-011) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Not Applicable (for W2K3, superceded by SP1) (WINS should not be installed on SCCS server) No Dependency (Windows Media Services should not be installed) No Dependency (Windows Media Services should not be installed)
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Not Applicable (Superceded by SP1) (WINS should not be installed on CCMM server)
Not Applicable (Superceded by SP1) (WINS should be installed on CCMA server)
No Dependency (Windows Media Services should not be installed) Applicable (for W2K3, superceded by SP1) (replaced Applicable (Superceded by by MS04-011) Not Applicable SP1) with Windows Not Applicable Server 2003 with Windows Server 2003 SP1 SP1 and Windows Server and Windows Server 2003 R2 2003 R2 Not Applicable (for W2K3, Not Applicable (Superceded by superceded by SP1) (WINS SP1) (WINS should not be should not be installed on CCT installed on CCT server) server)
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 Applicable SP1 and Windows Server (replaced by MS04-011) 2003 R2 Not Applicable (Superceded by SP1) (WINS should not be installed on SCCS server)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency (for W2K3, No Dependency superceded by (Superceded by SP1) Not Applicable SP1) with Windows Not Applicable Server 2003 with Windows Server 2003 SP1 SP1 and Windows Server and Windows No Dependency Server 2003 R2 2003 R2 Applicable (for W2K3, Applicable superceded by (Superceded by SP1) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Applicable Server 2003 R2 2003 R2
No Dependency (For W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2 Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency
No Dependency
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable Applicable with Windows 2000 only. Not Applicable with Windows Server 2003
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (replaced by MS06-070 for Windows 2000) Not Applicable
Applicable
No Dependency (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable Applicable (for W2K3, superceded by SP1) (replaced by MS04-031 for Windows 2000) Not Applicable with Windows Srever 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable with Windows 2000 Not Applicable with Windows Server 2003 Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 No Dependency (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Not Applicable
Not Applicable Applicable (for W2K3, superceded by SP1) (replaced by MS04-031 for Windows 2000) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Not Applicable
Not Applicable
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Applicable Windows Server (replaced by 2003 R2 MS04-031) Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Applicable 2003 R2 Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Applicable 2003 R2
Applicable
Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable
Applicable Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable No Dependency (For W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2
Not Applicable
Applicable
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Applicable 2003 R2 Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2
Applicable (for W2K3, superceded by Applicable SP1) (replaced (Superceded by by MS04-012) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Applicable Server 2003 SP1 SP1 and and Windows Windows Server (replaced by MS04-012) Server 2003 R2 2003 R2
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable Not Applicable Applicable (for W2K3, superceded by Applicable (Superceded by SP1) Not Applicable SP1) with Windows Not Applicable Server 2003 with Windows Server 2003 SP1 SP1 and Windows Server and Windows Applicable Server 2003 R2 2003 R2 Applicable (replaced by No Dependency MS04-003)
Not Applicable Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (replaced by MS04-003)
Not Applicable
Not Applicable
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Applicable 2003 R2 Applicable (replaced by MS04-003) Applicable (replaced by MS04-003)
Not Applicable
Not Applicable
No Dependency
Applicable (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 No Dependency
Not Applicable
Not Applicable
Not Applicable
Not Applicable Not Applicable No Dependency (for W2K3, No Dependency superceded by (Superceded by SP1) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2 No Dependency
Not Applicable
Not Applicable
No Dependency (Superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 No Dependency
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (for W2K3, superceded by Applicable SP1) (replaced (Superceded by by MS04-012) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Applicable Server 2003 SP1 SP1 and and Windows Windows Server (replaced by MS04-012) Server 2003 R2 2003 R2
No Dependency
No Dependency
No Dependency
No Dependency No Dependency No Dependency Not Applicable Applicable (replaced by MS05-027) Applicable (replaced by MS05-027) No Dependency (For W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2 No Dependency (For W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
No Dependency Applicable (replaced by MS05-027)
Applicable (replaced by Not Applicable MS05-027) No Dependency (for W2K3, No Dependency superceded by (Superceded by SP1) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server Server 2003 R2 2003 R2
Not Applicable
No Dependency (for W2K3, No Dependency superceded by (Superceded by SP1) SP1) Not Applicable Not Applicable with Windows with Windows Server 2003 Server 2003 SP1 SP1 and and Windows Windows Server No Dependency Server 2003 R2 2003 R2
Not Applicable
Not Applicable
Not Applicable
Applicable No Dependency
No Dependency No Dependency Not Applicable No Dependency No Dependency Not Applicable Applicable (replaced by Windows 2000 SP4) Applicable (replaced by Windows 2000 SP4)
No Dependency No Dependency Applicable (replaced by Windows 2000 SP4)
Applicable Applicable (replaced by MS04-012) Applicable (replaced by Windows 2000 SP4)
17-Mar-2003 No Dependency Applicable (replaced by Windows 2000 SP4) Applicable (replaced by Windows 2000 SP4) No Dependency Applicable (replaced by Windows 2000 SP4) Applicable (replaced by Windows 2000 SP4) No Dependency Applicable (replaced by Windows 2000 SP4) Applicable (replaced by Windows 2000 SP4)
Applicable (replaced by Windows 2000 SP4)
Applicable
Applicable
Applicable No Dependency No Dependency Applicable (replaced by Windows 2000 SP4) Applicable (Administrative procedure rather than a patch) Applicable (replaced by Windows 2000 SP4)
No Dependency No Dependency No Dependency Applicable (replaced by Windows 2000 SP4) Applicable (Administrative procedure rather than a patch) Applicable (replaced by Windows 2000 SP4) No Dependency Applicable (replaced by Windows 2000 SP4) Applicable (Administrative procedure rather than a patch) Applicable (replaced by Windows 2000 SP4)
Applicable
Applicable
Applicable
No Dependency Applicable (replaced by Windows 2000 SP4) Applicable (replaced by Windows 2000 SP4)
Applicable (replaced by Windows 2000 SP4) No Dependency
No Dependency No Dependency
Applicable (replaced by Windows 2000 SP4) No Dependency Applicable (replaced by Windows 2000 SP4)
Classic Client
Desktop PC
CCT Compliant Application Avaya NES CCT 5.0
SA 2.3 (EOL)
Avaya NES Avaya NES Avaya NES SCCS 4.0 (EOL) CCMA 6.0 (MD) CCMM 6.0 (MD) SWC 4.0 (EOL) SWC 4.5 (EOL) CCT 6.0
Not Applicable
Not Applicable
Not Applicable
Yes (validated with SUS0401/SUS0 402 release)
Yes (validated with SUS0401/SUS0 402)
Not Applicable Product retired no testing planned Yes (validated with SA0203058SU0 1S)
Not Applicable
Not Applicable
Not Applicable Yes (validated with SU06 and SU0601)
Yes (validated with SU12C)
To Be Confirmed
To Be Confirmed
To Be Confirmed
Yes (validated Yes (validated with with current GA N_CCT_5.0_SU S_0201) release) To Be Yes (validated Confirmed with current GA (target release) SUS0202)
Yes (validated with SU10C)
Yes (validated Yes (validated Yes (validated with current Beta with current Beta with SWC 4.5 release) release) GA release)
Yes (validated Yes (validated Yes (validated with current GA with NCCT with GA release) release) 5.0.8)
Not Applicable
Applicable (validated up to SU09C) Applicable (validated up to SU09C) Yes (refer to the Symposium Products Compatibility Advisory for Microsoft Windows XP SP2 product bulletin for SCCS compatiblity requirement)
Applicable (validated with SU08) Applicable (validated up to SU07)
Yes (refer to the Symposium Products Compatibility Advisory for Microsoft Windows XP No compatibiltiy SP2 product Yes (validated Yes (validated test is planned bulletin for SWC Yes (validated Yes (validated with current GA with current GA (SWC 4.0 is with current GA with NCCT compatiblity release) release) release) 5.0.8) retired) requirement) Yes (validated Yes (validated Yes (validated with SU05 with SU05 with SU05 lineup) lineup) lineup) Yes (validated Yes (validated Yes (validated with SU05 with SU05 with SU05 lineup) lineup) lineup)
Client
SWC 4.5 (Manufacturer SWC 4.0 (EOL) Discontinued)
TAPI 3.0 (EOL) SA 2.3 (EOL)
SCCS 4.0 Avaya NES Avaya NES (Manufacturer CCMA 6.0 (MD) CCMM 6.0 (MD) Discontinued)
SWC 4.0 (EOL)
Applicable (there is no known direct dependency with the .NET Framework, but the affected component is an integral part of the OS distribution. Recommend to apply the hotfix) Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency No Dependency Applicable (There is no known direct dependency with the CCF Driver, but the affected component is a distributed component of the OS. Recommend to apply the hotfix) Applicable (There is no known direct dependency with the CCF Driver, but the affected component is a distributed component of the OS. Recommend to apply the hotfix)
Applicable Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) Applicable (there is no known direct dependency with the affectd components, but the components are integral part of the OS. Recommend to apply the hotfix)
Applicable Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) Applicable (there is no known direct dependency with the affectd components, but the components are integral part of the OS. Recommend to apply the hotfix)
Applicable
Applicable
Applicable
Applicable
No Dependency No Dependency No Dependency with Windows XP Not Applicable with Windows Server 2003 and Windows Vista No Dependency with Windows XP Not Applicable with Windows Server 2003 and Windows Vista
Applicable Applicable (There is no (There is no known direct known direct dependency with dependency with the MPEG Layer- the MPEG Layer3 Codecs, but 3 Codecs, but the affected the affected component is a component is a distributed distributed component of component of the OS. the OS. Recommend to Recommend to apply the hotfix) apply the hotfix)
Not Applicable
Not Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
No Dependency No Dependency with Windows XP and Vista Not Applicable with Windows Server 2003 Applicable (replaced by MS10-021)
No Dependency No Dependency with Windows XP and Vista Not Applicable with Windows Server 2003 Applicable (replaced by MS10-021)
Applicable with Windows Server 2003 (there is no known direct dependency with the Kerberos, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows XP and Windows Vista Applicable (there is no known direct dependency with the DirectShow, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable with Windows Server 2003 (there is no known direct dependency with the Kerberos, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows XP and Windows Vista Applicable (there is no known direct dependency with the DirectShow, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable Applicable with Windows Server 2003 and Windows XP Not Applicable with Windows Vista
Applicable Applicable with Windows Server 2003 and Windows XP Not Applicable with Windows Vista
Not Applicable Applicable with Windows Vista Not Applicable with Windows XP and Windows Server 2003
Not Applicable Applicable with Windows Vista Not Applicable with Windows XP and Windows Server 2003
Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS10-034) Applicable with Windows Server 2003 and Windows XP Not Applicable with Windows Vista
Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS10-034) Applicable with Windows Server 2003 and Windows XP Not Applicable with Windows Vista
Applicable No Dependency with Windows Server 2003 and Windows XP Not Applicable with Windows Vista
Applicable No Dependency with Windows Server 2003 and Windows XP Not Applicable with Windows Vista
Applicable (replaced by MS10-018) Applicable (there is no known direct dependency with the Embedded OpenType Font Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (replaced by MS10-018) Applicable (there is no known direct dependency with the Embedded OpenType Font Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable with Windows Server 2003 and Windows XP (there is no known direct dependency with WordPad or Office text conveter, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista
Applicable with Windows Server 2003 and Windows XP (there is no known direct dependency with WordPad or Office text conveter, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista
Applicable (repalced by MS10-002) Applicable (there is no known direct dependency with the IAS or PEAP, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (replaced by MS10-002) Applicable (there is no known direct dependency with the IAS or PEAP, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Not Applicable Applicable with Windows Server 2003 and Windows XP (there is no known direct dependency with the LSSAS, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista
Not Applicable Applicable with Windows Server 2003 and Windows XP (there is no known direct dependency with the LSSAS, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista
Not Applicable No Dependency with Windows Vista Not Applicable with Windows XP and Windows Server 2003 Applicable with Windows Vista and Windows XP (there is no known direct dependency with the GDI+, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows 2000 Applicable (there is no known direct dependency with the .NET Framework, but the affected component is an integral part of the OS distribution. Recommend to apply the hotfix) (replaced by MS10-041)
Not Applicable No Dependency with Windows Vista Not Applicable with Windows XP and Windows Server 2003 Applicable with Windows Vista and Windows XP (there is no known direct dependency with the GDI+, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows 2000
Applicable with Windows Server 2003 and Windows XP (there is no known direct dependency with the Indexing service, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista Applicable (there is no known direct dependency with the CryptoAPI functions, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced BY MS10-008)
Applicable with Windows Server 2003 and Windows XP (there is no known direct dependency with the Indexing service, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista Applicable (there is no known direct dependency with the CryptoAPI functions, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced BY MS10-008)
Not Applicable No Dependency (there is no known direct dependency with Windows Media Player. Recommend to apply the hotfix only if Media Player 6.4 is installed on Windows XP or Windows Server 2003) Not Applicable with Windows Vista
Not Applicable No Dependency (there is no known direct dependency with Windows Media Player. Recommend to apply the hotfix only if Media Player 6.4 is installed on Windows XP or Windows Server 2003) Not Applicable with Windows Vista
Applicable (there is no known direct dependency with Windows Media Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable with Windows Vista. Not Applicable with Windows XP and Windows Server 2003 No Dependency with Windows Vista Not Applicable with Windows XP and Windows Server 2003 Applicable with Windows Server 2003 and Windows Vista. Not Applicable with Windows XP Applicable (there is no known direct dependency with Windows Media Format Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable with Windows XP and Windows Server 2003 (there is no known direct dependency with the DHTML Editing Component ActiveX Control, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista Applicable (there is no known direct dependency with the Jscript Scripting Engine, but the affected component is an integral part of IE of the OS. Recommend to apply the hotfix)
Applicable (there is no known direct dependency with Windows Media Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable with Windows Vista. Not Applicable with Windows XP and Windows Server 2003 No Dependency with Windows Vista Not Applicable with Windows XP and Windows Server 2003 Applicable with Windows Server 2003 and Windows Vista. Not Applicable with Windows XP Applicable (there is no known direct dependency with Windows Media Format Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable with Windows XP and Windows Server 2003 (there is no known direct dependency with the DHTML Editing Component ActiveX Control, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista Applicable (there is no known direct dependency with the Jscript Scripting Engine, but the affected component is an integral part of IE of the OS. Recommend to apply the hotfix)
Applicable
Applicable
Applicable
Applicable
Not Applicable Applicable (there is no known direct dependency with the Media Processing, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS10-013)
Not Applicable Applicable (there is no known direct dependency with the Media Processing, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS10-013)
No Dependency Not Applicable with Windows XP and Windows 2000 No Dependency with Windows Vista
No Dependency Not Applicable with Windows XP and Windows 2000 No Dependency with Windows Vista
No Dependency Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS09-055)
No Dependency Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS09-055)
Not Applicable
Not Applicable
No Dependency No Dependency Applicable (there is no known direct dependency with the Embedded OpenType Font Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS10-001) Applicable (there is no known direct dependency with the Embedded OpenType Font Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS10-001)
Applicable wiith Windows XP and Windows Server 2003 (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista
Applicable
Applicable
Applicable
Applicable
No Dependency No Dependency with Windows XP Not Applicable with Windows 2000 and Windows Vista Applicable (there is no known direct dependency with the Print Spooler, but the affected component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix)
No Dependency No Dependency with Windows XP Not Applicable with Windows 2000 and Windows Vista Applicable (there is no known direct dependency with the Print Spooler, but the affected component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix)
No Dependency with Windows XP and Windows 2000 Not Applicable with Windows Vista
No Dependency with Windows XP and Windows 2000 Not Applicable with Windows Vista
Applicable (replaced by MS09-034) No Dependency with Windows XP (if ADAM is installed) Not Applicable with Windows 2000 and Windows Vista
Applicable (replaced by MS09-034) No Dependency with Windows XP (if ADAM is installed) Not Applicable with Windows 2000 and Windows Vista
Not Applicable
Not Applicable
Applicable
Applicable
Applicable (replaced by MS09-019) Applicable (there is no known direct dependency with the WinHTTP, but the affected WinHTTP component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix)
Applicable (replaced by MS09-019) Applicable (there is no known direct dependency with the WinHTTP, but the affected WinHTTP component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix)
Applicable Applicable (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-028 for Windows XP)
Applicable Applicable (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-028 for Windows XP)
Applicable with XP and Windows 2000 (there is no known direct dependency with WordPad, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not applicable with Vista
Applicable with XP and Windows 2000 (there is no known direct dependency with WordPad, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not applicable with Vista
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable only if IE 7.0 is installed Applicable (replaced by MS10-012)
Applicable only if IE 7.0 is installed Applicable (replaced by MS10-012)
Not Applicable
Not Applicable
Applicable (there is no known direct dependency with Windows Media Format Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-047) Not Applicable with Windows XP and Windows 2000 No Dependency with Windows Vista
Applicable (there is no known direct dependency with Windows Media Format Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-047) Not Applicable with Windows XP and Windows 2000 No Dependency with Windows Vista
No Dependency Applicable (no known direct dependency on the affected GDI, but the affected component is an integral part of the OS. Recommend to apply the hotfix) No Dependency (the affected Visual Basic 6.0 Runtime Extended Files is not installed by Windows or Contact Center product. It is recommended to apply this security hotfix if customer's supplied application install the affected component)
No Dependency Applicable (no known direct dependency on the affected GDI, but the affected component is an integral part of the OS. Recommend to apply the hotfix) No Dependency (the affected Visual Basic 6.0 Runtime Extended Files is not installed by Windows or Contact Center product. It is recommended to apply this security hotfix if customer's supplied application install the affected component)
Applicable Applicable with Windows XP Not Applicable with Windows Vista and Windows 2000
Applicable Applicable with Windows XP Not Applicable with Windows Vista and Windows 2000
Not Applicable with Windows XP and Windows Vista No Dependency with Windows 2000 Applicable with Windows XP and Windows Vista (replaced by MS09-012) Not Applicable with Windows 2000 Applicable (replaced by MS09-001)
Not Applicable with Windows XP and Windows Vista No Dependency with Windows 2000 Applicable with Windows XP and Windows Vista (replaced by MS09-012) Not Applicable with Windows 2000 Applicable (replaced by MS09-001)
Not Applicable
Not Applicable
Applicable
Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency Applicable with Windows Vista and Windows XP (there is no known direct dependency with the GDI+, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-062) Not Applicable with Windows 2000
No Dependency Applicable with Windows Vista and Windows XP (there is no known direct dependency with the GDI+, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-062) Not Applicable with Windows 2000
Applicable with Windows XP and Windows 2000 (there is no known direct dependency with the Messenger, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not applicable with Windows Vista
Applicable with Windows XP and Windows 2000 (there is no known direct dependency with the Messenger, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not applicable with Windows Vista
Applicable
Applicable
No Dependency Applicable with Windows Vista (there is no known direct dependency with IPSec, but the component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows 2000 and Windows XP Applicable with Windows XP and Windows 2000 (there is no known direct dependency with the ICM, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not applicable with Windows Vista
No Dependency Applicable with Windows Vista (there is no known direct dependency with IPSec, but the component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows 2000 and Windows XP Applicable with Windows XP and Windows 2000 (there is no known direct dependency with the ICM, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not applicable with Windows Vista
Not Applicable Applicable with Windows Vista (there is no known direct dependency with Windows Explorer, but the component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows 2000 and Windows XP Applicable (there is no known direct dependency with the DNS, but the affected DNS client component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix) Applicable with Windows XP and Wiindows Vista (there is no known direct dependency with the PGM, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows 2000
Not Applicable Applicable with Windows Vista (there is no known direct dependency with Windows Explorer, but the component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows 2000 and Windows XP Applicable (there is no known direct dependency with the DNS, but the affected DNS client component is an intergal part of the OS and commonly enabled. Recommend to apply the hotfix) Applicable with Windows XP and Wiindows Vista (there is no known direct dependency with the PGM, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows 2000
No Dependency with Windows XP (if ADAM is installed) (replaced by MS09-018) Not Applicable with Windows 2000 and Windows Vista
No Dependency with Windows XP (if ADAM is installed) (replaced by MS09-018) Not Applicable with Windows 2000 and Windows Vista
Not Applicable Applicable (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-011) Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS09-032)
Not Applicable Applicable (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS09-011) Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS09-032)
Applicable with Windwos XP with SP2 and Windows 2000 (no known direct dependency with the Jet Database Engine, but the affected component is an integral part fo the OS distribution. Recommend to apply the hotfix) Not Appliable with Windows Vista.
Applicable with Windwos XP with SP2 and Windows 2000 (no known direct dependency with the Jet Database Engine, but the affected component is an integral part fo the OS distribution. Recommend to apply the hotfix) Not Appliable with Windows Vista.
No Dependency No Dependency Applicable (replaced by MS08-061) Applicable (replaced by MS08-061)
Applicable (replaced by MS08-031) Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS08-032) Applicable with Windows XP and Windows 2000 (no known direct dependency on the affected script engines, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08-071)
Applicable (replaced by MS08-031) Applicable (no known direct dependency on the affected ActiveX control, but it is a good security measure to block the control. Recommend to apply the hotfix) (replaced by MS08-032) Applicable with Windows XP and Windows 2000 (no known direct dependency on the affected script engines, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08-071)
Applicable with Windows Vista without SP1, Windows XP and Windows 2000 (no direct dependency with DNS Client, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista SP1
Applicable with Windows Vista without SP1, Windows XP and Windows 2000 (no direct dependency with DNS Client, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista SP1
No Dependency Applicable with Windows Vista wihtout SP1, Windows XP, and Windows 2000 (no direct dependency with OLE, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista SP1
No Dependency Applicable with Windows Vista wihtout SP1, Windows XP, and Windows 2000 (no direct dependency with OLE, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista SP1
No Dependency with Windows XP and Windows Vista Not Applicable with Windows 2000 Not Applicable with Windows Vista and Windows 2000 No Dependency with Windows XP
No Dependency with Windows XP and Windows Vista Not Applicable with Windows 2000 Not Applicable with Windows Vista and Windows 2000 No Dependency with Windows XP
No Dependency Applicable with Windows Vista Not Applicable with Windows XP and Windows 2000 No Dependency with Windows XP (if ADAM is installed) Not Applicable with Windows 2000 and Windows Vista Applicable with Windows XP and Windows 2000 (replaced by MS09-012) Not Applicable with Windows Vista
No Dependency Applicable with Windows Vista Not Applicable with Windows XP and Windows 2000 No Dependency with Windows XP (if ADAM is installed) Not Applicable with Windows 2000 and Windows Vista Applicable with Windows XP and Windows 2000 (replaced by MS09-012) Not Applicable with Windows Vista
Applicable
Applicable
Applicable (replaced by MS08-010) Applicable (there is no known direct dependency with Windows Media Format Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (replaced by MS08-010) Applicable (there is no known direct dependency with Windows Media Format Runtime, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
No Dependency with Windows XP Not Applicable to Windows Vista and Windows 2000 Applicable with Windows Vista Not Applicable with Windows XP and Windows 2000
No Dependency with Windows XP Not Applicable to Windows Vista and Windows 2000 Applicable with Windows Vista Not Applicable with Windows XP and Windows 2000
No Dependency with Windows XP and Windows 2000 Not Applicable with Windows Vista Applicable (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08-033)
No Dependency with Windows XP and Windows 2000 Not Applicable with Windows Vista Applicable (there is no known direct dependency with the DirectX, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08-033)
No Dependency with Windows Vista Not Applicable with Windows XP and Windows 2000
No Dependency with Windows Vista Not Applicable with Windows XP and Windows 2000
Not Applicable Applicable with Windows XP (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista and Windows 2000
Not Applicable Applicable with Windows XP (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Vista and Windows 2000
Not Applicable (Microsoft Office product should not be installed on SWC server)
Not Applicable (Microsoft Office product should not be installed on SWC server) Not Applicable (SharePoint is not installed by default on Windows Server 2003)
No Dependency No Dependency No Dependency No Dependency
Not Applicable
Applicable
Applicable
Not Applicable
Not Applicable
Applicable
Applicable
Applicable
Applicable
Applicable (repalced by MS07-069)
No Dependency Applicable
No Dependency (Outlook Express should not be run on SWC server)
No Dependency (Outlook Express should not be run on SWC server) Applicable with Windows 2000 (there is no known direct depdency with the Kodak Image Viewer, but the affected Applicable component is an (there is no integral part of known direct the OS. depdency with Recommend to the Kodak apply the hotfix) Image Viewer, Not Applicable but the affected with Windows component is an 2003 (Windows integral part of should not be the OS. upgraded from Recommend to Windows 2000 apply the hotfix) on CCT server)
No Dependency No Dependency (replaced by (replaced by No Dependency No Dependency MS08-048) MS08-048)
Not Applicable with Windows Vista and fresh installed Windows XP No Dependency with Windows 2000 and Windows XP upgraded from Windows 2000
Not Applicable with Windows Vista and fresh installed Windows XP No Dependency with Windows 2000 and Windows XP upgraded from Windows 2000
Not Applicable with Windows fresh installed Windows XP No Dependency with Windows 2000 and Windows XP upgraded from Windows 2000
No Dependency (MSN Messenger and Windows Live Messeneger should not be installed on SWC server)
No Dependency (MSN Messenger and Windows Live Messeneger should not be installed on SWC server)
No Dependency No Dependency No Dependency No Dependency No Dependency (the affected XML Core version is not installed by default with No Dependency No Dependency No Dependency Windows) No Dependency (Visual Studio should not be installed on CCMA Desktop PC) No Dependency (Visual Studio should not be installed on CCMM Agent Desktop) No Dependency (Visual Studio should not be installed on SCCS Client PC) No Dependency (Visual Studio should not be installed on SWC Desktop PC)
No Dependency (Windows Services for UNIX should not be installed on SWC server)
No Dependency (Windows Services for UNIX should not be installed on SWC server)
Not Applicable (Visual Studio should not be installed on SWC server)
Not Applicable (Visual Studio should not be installed on SWC server) Applicable with Windows 2000 (there is no known direct dependency with the Microsoft Agent, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows Server 2003 Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix) No Dependency with Windows Server 2003 (Virtual PC and Virtual Server should not be installed on SWC server) Not Applicable to Windows 2000
Applicable (there is no known direct dependency with the Microsot Agent, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable with Windows 2000 (no direct dependency with Microsoft Agent, but the affected component is an integral part of the OS, recommend to apply the hotfix) Not Applicable with Windows XP and Windows Vista Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable with Windows 2000 (no direct dependency with Microsoft Agent, but the affected component is an integral part of the OS, recommend to apply the hotfix) Not Applicable with Windows XP and Windows Vista Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable with Windows 2000 (no direct dependency with Microsoft Agent, but the affected component is an integral part of the OS, recommend to apply the hotfix) Not Applicable with Windows XP Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable with Windows 2000 (no direct dependency with Microsoft Agent, but the affected component is an integral part of the OS, recommend to apply the hotfix) Not Applicable with Windows XP Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Not Applicable
Not Applicable No Dependency (Microsoft Media Player should not be run on SWC server)
Not Applicable No Dependency (Microsoft Media Player should not be run on SWC server)
No Dependency Not Applicable to Windows XP and Windows 2000 No Dependency with Windows Vista
No Dependency No Dependency No Dependency Not Applicable to Windows XP and Windows 2000 No Dependency with Windows Not Applicable Not Applicable Vista
Applicable to Windows Server 2003 with SP1 and Windows 2000 (no known direct dependency on the affected Applicable (no Graphic Rendering known direct dependency on Engine, but the affected the affected component is an Graphic integral part of Rendering Engine, but the the OS. Recommend to affected component is an apply the hotfix) integral part of Not Applicable to Windows the OS. Recommend to Server 2003 apply the hotfix) with SP2
Applicable to Windows XP and Windows 2000 (no direct dependency with OLE, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (repalced by MS08-021) Not Applicable to Windows Vista
Applicable to Windows XP and Windows 2000 (no direct dependency with OLE, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08-021) Not Applicable to Windows Vista
No Dependency Applicable (replaced by (replaced by MS07-057) MS07-057)
No Dependency Applicable to Windows XP and Windows 2000 (no direct dependency with OLE, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08-008) Not Applicable to Windows Vista
No Dependency Applicable to Windows XP and Windows 2000 (no direct dependency with OLE, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS08-008) Not Applicable to Windows Vista
Applicable if XML Core Service 3.0 or higher is installed
Applicable
Not Applicable
Not Applicable
Applicable with Windows XP and Windows Vista. Applicable with Windows 2000 if XML Core Service 3.0 or higher is installed (replaced by MS08-069) No Dependency with Windows XP Not Applicable with Windows Vista and Windows 2000
Applicable with Windows XP and Windows Vista. Applicable with Windows 2000 if XML Core Service 3.0 or higher is installed (replaced by MS08-069) No Dependency with Windows XP Not Applicable with Windows Vista and Windows 2000
Applicable with Windows XP. Applicable with Windows 2000 if XML Parser XML Core Service 3.0 or higher is No Dependency installed
No Dependency with Windows XP Not Applicable with Windows 2000
Applicable with Windows Server 2003 (no direct dependency with .NET Framework, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable Not Applicable with Windows 2000 (.NET (.NET Framework is Framework is not installed by not installed by default with default with Windows 2000) Windows 2000)
Applicable
Applicable
Not Applicable (Microsoft Active Directory should not be installed on SWC server)
Not Applicable (Microsoft Active Directory should not be installed on SWC server)
Not Applicable
Not Applicable
Not Applicable No Dependency with Windows Vista Not Applicable with Windows XP and Windows 2000
Not Applicable Not Applicable No Dependency with Windows Vista Not Applicable with Windows XP and Windows 2000 Not Applicable
Not Applicable
Not Applicable
Applicable No Dependency (Outlook Express should not be run on SWC server)
Applicable No Dependency (Outlook Express should not be run on SWC server)
No Dependency Applicable with Windows XP and Windows 2000 (repalced by MS09-015) Not Applicable with Windows Vista
No Dependency No Dependency No Dependency Applicable with Windows XP and Windows 2000 (replaced by MS09-015) Not Applicable with Windows Applicable Applicable Vista
Not Applicable
Not Applicable
Applicable (replaced by MS07-045) Applicable with Windows Vista Not Applicable with Windows XP and Windows 2000
Applicable (replaced by MS07-045) Applicable with Windows Vista Not Applicable with Windows XP and Windows 2000
Applicable (replaced by No Dependency MS07-045)
Not Applicable
Not Applicable
Applicable
Applicable
Applicable with Windows XP and Windows 2000 (no direct dependency with Schannel, but the affected component is an integral part of Applicable with the OS, Windows XP recommend to and Windows apply the hotfix) 2000 Not Not Applicable Applicable with with Windows Windows Vista Vista
Applicable (no direct dependency with Schannel, but the affected component is an integral part of the OS, recommend to apply the hotfix) Applicable
Not Applicable (Microsoft Office product should not be installed on SWC server) Not Applicable (DNS Server should not be run on SWC server) Not Applicable (CAPICOM is not part of the Windows OS and not installed by SWC application)
Not Applicable (Microsoft Office product should not be installed on SWC server) Not Applicable (DNS Server should not be run on SWC server) Not Applicable (CAPICOM is not part of the Windows OS and not installed by SWC application)
Not Applicable
Not Applicable
Not Applicbale
Not Applicable
Applicable (replaced by MS07-033) Not Applicable (Microsoft Exchange should not be installed on SWC server)
Applicable (replaced by MS07-033) Not Applicable (Microsoft Exchange should not be installed on SWC server)
Not Applicable
Not Applicable
Not Applicbale
Not Applicable
Not Applicable (Microsoft Office product should not be installed on SWC server) Not Applicable (Microsoft Office product should not be installed on SWC server) (replaced by MS07-036)
Not Applicable (Microsoft Office product should not be installed on SWC server) Not Applicable (Microsoft Office product should not be installed on SWC server) (replaced by MS07-036)
Applicable
Applicable
No Dependency Applicable with Windows XP and Windows 2000 (replaced by MS09-012) Not Applicable with Windows Vista
No Dependency No Dependency No Dependency Applicable with Windows XP and Windows 2000 (replaced by MS09-012) Not Applicable with Windows Applicable Applicable Vista
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable with Windows XP and Windows 2000 (no direct dependency with Microsoft Agent, but the affected component is an integral part of the OS, recommend to apply the hotfix) Not Applicable with Windows Vista No Dependency for Windows XP. Not Applicable for Windows Vista and Windows 2000
Applicable with Windows XP and Windows 2000 (no direct dependency with Microsoft Agent, but the affected component is an integral part of the OS, recommend to apply the hotfix) Not Applicable with Windows Vista No Dependency for Windows XP. Not Applicable for Windows Vista and Windows 2000
Not Applicable
Not Applicable
No Dependency for Windows XP. Not Applicable for Windows 2000
Not Applicable (Microsoft Content Management Server should not be installed on SWC server) Applicable (no direct dependency with Graphics Rendering Engine, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Not Applicable (Microsoft Content Management Server should not be installed on SWC server) Applicable (no direct dependency with Graphics Rendering Engine, but the affected component is an integral part of the OS, recommend to apply the hotfix) Applicable (replaced by MS07-027) (Superceded by SP2 for Windows Server 2003)
No Dependency Applicable (no direct dependency with Graphics Rendering Engine, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Not Applicable (Microsoft Office product should not be installed on SWC server) Applicable (no direct dependency with RichEdit, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable (no direct dependency with OLE Dialog, but the affected component is an integral part of the OS, recommend to apply the hotfix) No Dependency (normally Microsoft Malware Protection Engine is not installed)
Applicable (no direct dependency with OLE Dialog, but the affected component is an integral part of the OS, recommend to apply the hotfix)
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable (no direct dependency with HTML Help, but the affected component is an integral part of the OS, recommend to apply the hotfix) No Dependency with Windows XP Not Applicable to Windows 2000
Not Applicable
Not Applicable
Not Applicable
Applicable to Windows XP (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable to Windows 2000
Applicable to Windows XP (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Appliable to Windows 2000
Applicable to Windows XP (there is no known direct dependency with the Windows Shell, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicabe to Windows 2000
Not Applicable (Step-by-Step Interactive Training should not be installed on SWC)
Not Applicable (Step-by-Step Interactive Training should not be installed on SWC) Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) (replaced by MS07-050)
Applicable (there is no known direct dependency with the Windows Media Format Runtime, but the affect component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable for Windows Server 2003, Windows Server 2003 SP1, and Windows Server 2003 R2. No Dependency for Windows 2000 No Dependency (Outlook Express should not be run on SWC server) (replaced by MS07-034) (Superceded by SP2 for Windows Server 2003) Not Applicable to Windows Server 2003 SP1, Windows Server 2003 R2, and Windows 2000 Applicable only to Windows Server 2003 without SP1 (Superceded by SP2 for Windows Server 2003) No Dependency (Superceded by SP2 for Windows Server 2003)
No Dependency
Not Applicable for Windows XP. No Dependency for Windows 2000
No Dependency (Outlook Express should not be run on SWC server) (replaced by MS07-034)
Not applicable
Applicable to Windows XP only. Not Applicable to Windows 2000
No Dependency
No Dependency Applicable (replaced by (replaced by MS07-016) MS07-016)
No Dependency (the affected No Dependency XML Core (the affected version is not XML Core installed by version is not default with installed by Windows Server default with 2003 or Windows 2000) Windows 2000) Applicable with Windows 2000 Not Applicable with Windows Applicable Server 2003
No Dependency (the affected XML Core version is not installed by default with Windows)
Not applicable
Not applicable Not Applicable (Microsoft Agent should not be installed on Not Applicable SWC) (Microsoft Agent (Superceded by SP2 for should not be Windows Server installed on 2003) SWC)
Applicable No Dependency for Windows XP. Not Applicable for Windows 2000
No Dependency (Client Service for NetWare is not installed by default in Windows Server No Dependency 2003 and (Client Service Windows 2000) for NetWare is (Superceded by not installed by SP2 for default in Windows Server Windows 2000) 2003)
No Dependency (Client Service for NetWare is not installed by default in Windows Server 2003)
No Dependency (Client Service for NetWare is not installed by default in Windows)
Not applicable
Applicable with Windows Servver 2003 (there is no known direct dependency with the Object Packager, but the affect component is an integral part of the OS. Recommend to apply the hotfix). (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows 2000
No Dependency with Windows XP. Not Applicable with Windows 2000
Not applicable
Applicable
Applicable with Windows Server 2003 (there is no known direct dependency with the IPv6, but the affect component is an integral part of the OS. Recommend to apply the hotfix). (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows 2000 Applicable (Superceded by SP2 for Windows Server 2003)
Applicable
Applicable
Applicable
Applicable
Applicable with Windows Server 2003 (Superceded by SP2 for Windows Server 2003) Applicable with Windows 2000 if Applicable if XML Parser 2.6 XML Parser 2.6 or XML Core or XML Core Service 3.0 is Service 3.0 is installed installed
Applicable with Windows XP. Applicable with Windows 2000 if XML Parser 2.6 or XML Core Service 3.0 is installed
Applicable with Windows XP. Applicable with Windows 2000 if XML Parser 2.6 or XML Core Service 3.0 is installed No Dependency
Applicable (there is no known direct dependency with Applicable the Windows (there is no Shell, but the known direct affect dependency with component is an the Windows integral part of Shell, but the the OS. affect Recommend to component is an apply the hotfix) integral part of (Superceded by the OS. SP2 for Recommend to Windows Server apply the hotfix) 2003)
Applicable (there is no known direct dependency with the Windows Shell, but the affect component is an integral part of the OS. Recommend to apply the hotfix)
No Dependency (.NET 2.0 should not be installed on SWC server)
Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the IE (for Win2K). Recommend to apply the hotfix) (replaced by MS07-004)
No Dependency (.NET 2.0 should not be installed on SWC server) Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS (for Win2K3) or IE (for Win2K). Recommend to apply the hotfix) (replaced by MS07-004) (Superceded by SP2 for Windows Server 2003)
Applicable only if ,NET Framework 2.0 is installed Not Applicable for Windows 2000 and Windows XP with .NET Framework 1.1
Applicable only if ,NET Framework 2.0 is installed Not Applicable for Windows 2000 and Windows XP with .NET Framework 1.1 No Dependency No Dependency
Applicable (there is no known direct dependency with the VML, but the affected component is an integral part of the OS (for WinXP) or IE (for Win2K) Recommend to apply the hotfix) (replaced by MS07-004)
Applicable (there is no known direct dependency with Applicable the Indexing (there is no Service, but the known direct affected dependency with Component is the Indexing an integral part Service, but the of the OS. affected Recommend to Component is apply the hotfix) an integral part (Superceded by of the OS. SP2 for Recommend to Windows Server apply the hotfix) 2003)
Not Applicable
Applicable
No Dependency No Dependency for Windows XP. Not Applicable for Windows 2000
Applicable
Applicable
Applicable
Applicable
Applicable (there is no known direct dependency with the Hyperlink Applicable Library, but the (there is no affected known direct dependency with Component is an integral part the Hyperlink Library, but the of the OS. Recommend to affected apply the hotfix) Component is an integral part (Superceded by SP2 for of the OS. Recommend to Windows Server apply the hotfix) 2003) Applicable with Windows 2000 SP4. Applicable with Not Appliable Windows 2000 with Windows Server 2003 SP4
Applicable (there is no known direct dependency with the Hyperlink Library, but the affected Component is an integral part of the OS. Recommend to apply the hotfix)
Applicable with Windows 2000 SP4 only
Not Applicable (Microsoft Office product or VBA SDK should not be installed on SWC server)
Not Applicable (Microsoft Office product or VBA SDK should not be installed on SWC server) Applicable (no direct dependency with HTML Help, but the affected component is an integral part of the OS, recommend to apply the hotfix) (replaced by MS07-008) (Superceded by SP2 for Windows Server 2003)
Applicable (no direct dependency with Windows Explorer, but the affected component is an integral part of the OS, recommend to apply the hotfix) (replaced by MS07-006 for Windows XP))
Applicable (no direct dependency with Windows Explorer, but the affected component is an integral part of the OS, recommend to apply the hotfix) (replaced by MS07-006 for Windows XP)
Applicable with Wiindows 2000 (there is no known Applicable dependency with (there is no MMC, but the known affected dependency with component is an MMC, but the integral part of affected the OS. component is an Recommend to integral part of apply the hotfix) the OS. Not Applicable Recommend to with Windows apply the hotfix) 2003
Applicable with Windows 2000 (there is no known dependency with MMC, but the affected component is an integral part of the OS. Recommend to apply the hotfix) Not Applicable with Windows XP
Not Applicable
Applicable
Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 (there is no known direct dependency with Outlook Express, but the affected component is part of the OS distribution. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows Server 2003 without SP1 and Windows 2000 Applicable (need SUS0603 to be installed on SWC server running with W2K3 for full SWC compatibility) (replaced by MS06-067) (Superceded by SP2 for Windows Server 2003) Applicable (Superceded by SP2 for Windows Server 2003) Applicable (replaced by MS06-070 for Windows 2000) (Superceded by SP2 for Windows Server 2003)
Applicable with Windows XP SP2 (there is no known direct dependency with Outlook Expressl, but the affected component is part of the OS distribution. Recommend to apply the hotfix) (replaced by MS07-043) Not Applicable with Windows 2000 and Windows XP SP1
Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 (there is no known direct dependency with Outlook Express, but the affected component is part of the OS distribution. Recommend to apply the hotfix) (replaced by MS07-034) Not Applicable with Windows Server 2003 without SP1
Applicable with Windows XP SP2 (there is no known direct dependency with Outlook Expressl, but the affected component is part of the OS distribution. Recommend to apply the hotfix) (replaced by MS07-034). Not Applicable with Windows 2000 and Windows XP SP1
Applicable (need CCMA DP020310 or SUS0204 to be installed for full CCMA Applicable compatibility) (replaced by (replaced by MS06-067) MS06-067)
Applicable (need SUS0603 to be installed on SWC server for full SWC compatibility with SWC client for Windows XP No Dependency with SP2) (replaced by (replaced by MS06-067) MS06-067)
Applicable
Applicable
Applicable
Applicable
Not Applicable (Microsoft Office product should not be installed on SWC server) Applicable (DHCP Client should not be used by SWC server, but Applicable DHCP Client (DHCP Client Service is an should not be integral part of used by SWC the OS. server, but Recommend to DHCP Client apply the hotfix) Service is an integral part of (Superceded by SP2 for the OS. Recommend to Windows Server apply the hotfix) 2003) Applicable (replaced by MS06-063) (Superceded by Applicable SP2 for (replaced by Windows Server MS06-063) 2003)
Applicable
Applicable
Applicable
Applicable
Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency (.NET 2.0 should not be installed on SWC server)
Applicable
Applicable
Applicable
No Dependency (.NET 2.0 should not be installed on SWC server) Applicable (Superceded by SP2 for Windows Server 2003) Applicable to Windows 2000 SP4 only. Not applicable to Windows Server 2003 Applicable (Superceded by SP2 for Windows Server 2003)
Applicable only if ,NET Framework 2.0 is installed Not Applicable for Windows 2000 and Windows XP with .NET Framework 1.1
Applicable only if ,NET Framework 2.0 is installed Not Applicable for Windows 2000 and Windows XP with .NET Framework 1.1 No Dependency No Dependency
Applicable
Applicable
Applicable
Applicable
Applicable to Windows 2000 SP4 only
Applicable
Applicable
Applicable
Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable
Applicable (there is no known direct dpendency with Windows Media Player, but the affected component is an integral part of the OS. Recommend to apply the hotfix)
Applicable (it is a companion update together with MS06-021)
Not Applicable Applicable (Superceded by SP2 for Windows Server 2003) Applicable (there is no known direct dpendency with Windows Media Player, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable (it is a companion update together with MS06-021) (Superceded by SP2 for Windows Server 2003)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (it is a companion update together with MS06-021) No Dependency
No Dependency (IE should not be used to connect other No Dependency web site outside (IE should not SWC server) be used to (Superceded by connect other SP2 for web site outside Windows Server SWC server) 2003) Applicable (replaced by MS06-042) (Superceded by SP2 for Windows Server 2003) (need SUS0603 to be installed on SWC server running with Applicable W2K3 for full (replaced by SWC MS06-042) compatibility)
Applicable (replaced by MS06-042) (need CCMA DP020310 or SUS0204 to be installed for full CCMA compatibility)
Applicable (replaced by MS06-042) (need SUS0603 to be installed on SWC server for full SWC compatibility with SWC client for Windows XP No Dependency with SP2)
Not Applicable Not Applicable (Microsoft Exchange should not be installed on SWC server)
Not Applicable Not Applicable (Microsoft Exchange should not be installed on SWC server)
No Dependency No Dependency No Dependency No Dependency (replaced by (replaced by (replaced by (replaced by MS06-069) MS06-069) MS06-069) MS06-069)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable (Frontpage Server Extension 2002 is not included in Windows 2000) No Dependency (Outlook Express should not be run on SWC server) (replaced by MS07-034)
No Dependency with Windows Server 2003. Not Applicable with Windows 2000 (Frontpage Server Extension 2002 is not included in Windows 2000) No Dependency (Outlook Express should not be run on SWC server) (replaced by MS07-034) Applicable (no direct dependency with Windows Explorer, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Not Applicable (Frontpage Server Extension 2002 is not included in Windows XP and Windows 2000 by default)
Not Applicable (Frontpage Server Extension 2002 is not included in Windows XP and Windows 2000)
Applicable (replaced by MS07-009 for Windows 2000) (Superceded by SP2 for Windows Server 2003) Applicable (repalced by MS06-021) (Superceded by SP2 for Windows Server 2003)
Applicable (no direct dependency with Windows Explorer, but the affected component is an integral part of the OS, recommend to apply the hotfix) Applicable (no direct dependency with MDAC, but the affected component is part of the OS distribution, recommend to apply the hotfix) (replaced by MS07-009 for Windows 2000)
Applicable (replaced by MS07-009 for Windows 200)
Applicable
Applicable (repalced by No Dependency MS06-021)
Not Applicable
Applicable to Windows Server 2003 without SP1 only. Not Applicable to Windows Server 2003 with SP1, Windows Server 2003 R2, and Windows 2000 SP4
Applicable to Windows XP with SP1 only. Not Applicable to Windows XP SP2 or Windows 2000 SP4
Applicable to Windows XP with SP1 only. Not Applicable to Windows XP SP2 or Windows 2000 SP4
Applicable to Windows XP with SP1 only. Not Applicable to Windows XP SP2 and Windows 2000 SP4
Not Applicable (Microsoft Office product should not be installed on SWC server) No Dependency with Windows Server 2003 (applicable only if Korean language IME is enabled) (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows 2000 No Dependency with Windows Server 2003 (By default Web Client Service is disabled in Windows Server 2003. No known direct dependency with Web Client Service, but the affected component is part of the OS distribution, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Not Applicable with Windows 2000 Applicable to Windows Server 2003 (Superceded by SP2 for Windows Server 2003) Not Applicable to Windows 2000
Not Applicable
No Dependency with Windows XP and Windows Server 2003 (applicable only if Korean language IME is enabled). Not Applicable with Windows 2000
No Dependency with Windows XP and Windows Server 2003 (applicable only if Korean language IME is enabled). Not Applicable with Windows 2000
No Dependency with Windows XP (applicable only if Korean language IME is enabled). Not Applicable with Windows 2000
Not Applicable
No Dependency with Windows XP and Windows Server 2003. Not Applicable with Windows 2000
No Dependency with Windows XP and Windows Server 2003. Not Applicable with Windows 2000
Not Applicable
Applicable to Windows XP and Windows Server 2003. Not Applicable to Windows 2000
Applicable to Windows XP and Windows Server 2003. Not Applicable to Windows 2000
Applicable to Windows XP. Not Applicable to Windows 2000
No Dependency (Non-Microsoft Internet Browser should not be installed and run on SWC server) Applicable with Media Player 7.1 or 9 on Windows 2000 (replaced by MS06-024).
No Dependency (Non-Microsoft Internet Browser should not be installed and run on SWC server) Applicable with Media Player 7.1 or 9 on Windows 2000 (replaced by MS06-024).
Not Applicable (SWC 4.0 requires IE 5.5 or later) Not Applicable (Microsoft Outlook and Exchange should not be installed on SWC)
Not Applicable (SWC 4.5 requires IE 6.0 or later) (Superceded by SP2 for Windows Server 2003) Not Applicable (Microsoft Outlook and Exchange should not be installed on SWC) Applicable (no known direct dependency on the affected web font component, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable (no known direct dependency on the affected Graphic Rendering Engine, but the affected component is an integral part of the OS. Recommend to apply the hotfix) (replaced by MS07-017) (Superceded by SP2 for Windows Server 2003) Applicable with Windows 2000 SP4 (replaced by MS06-049). Not Appliable with Windows Server 2003 Applicable (replaced by MS06-013) (Superceded by SP2 for Windows Server 2003) Not Applicable (Microsoft Outlook and Exchange should not be installed on TAPI) Not Applicable (Microsoft Outlook and Exchange should not be installed on CCMS)
Not Applicable with Windows XP. No Dependency Not Applicable Not Applicable with Windows (CCMA requires (CCMM requires 2000 with IE 5.01. IE 6.0) IE 6.0)
Not Applicable (SWC 4.0 requires IE 5.5 or later)
Applicable with Windows 2000 SP4 (replaced by MS06-049)
Applicable with Windows 2000 SP4. Not Applicable with Applicable with Windows Server Windows 2000 SP4 2003
Applicable with Windows 2000 SP4 only (replaced by MS06-049)
No dependency (IE should not be run on TAPI Applicable server)
Applicable (no known direct dependency on the affected Applicable (no Graphic known direct Rendering dependency on Engine, but the the affected affected Graphic component is an Rendering integral part of Engine, but the the OS. affected Recommend to component is an apply the hotfix) integral part of (replaced by the OS. MS07-017) Recommend to (Superceded by apply the hotfix) SP2 for (replaced by Windows Server MS07-017) 2003) Applicable (replaced by MS05-054) (Superceded by SP2 for Windows Server 2003)
No dependency Applicable (IE should not be run on TAPI (replaced by MS05-054) server)
Applicable
Applicable (no known direct dependency on COM+/MSDTC, but the affected Applicable compoenent is (Superceded by an integral part SP2 for of the OS, Windows Server recommend to 2003) apply the hotfix) Applicable Applicable (no known direct dependency on DirectShow, but Applicable (no Applicable (no the affected known direct component is an known direct integral part of dependency on dependency on DirectShow, but DirectShow, but the OS, the affected recommend to the affected apply the hotfix) component is an component is an (Superceded by integral part of integral part of the OS, the OS, SP2 for Windows Server recommend to recommend to apply the hotfix) apply the hotfix) 2003) No Dependency (no known direct dependency on Shell, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable
Applicable
Applicable (no known direct dependency on COM+/MSDTC, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) Applicable
No Dependency (no known direct dependency on Windows CDO, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) No Dependency with Windows 2000 (no known direct dependency on PNP, but the affected component is an integral part of OS, recommend to apply hotfix). Not Applicable with Windows Server 2003 No Dependency (no known direct dependency with Netware Client Service, but the affected component is part of the OS distribution, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) No Dependency (no known direct dependency on Netman, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) No Dependency for Windows 2003 without SP1. Not Applicable to Windows 2000, Windows 2003 with SP1, and Windows Server 2003 R2
No Dependency (no known direct dependency on Windows CDO, but the affected compoenent is an integral part of the OS, recommend to apply the hotfix) No Dependency with Windows 2000 (no known direct dependency on PNP, but the affected component is an integral part of OS, recommend to apply hotfix). Not Applicable with Windows Server 2003
No Dependency with Windows 2000 (no known direct dependency on PNP, but the affected component is an integral part of OS, recommend to apply hotfix).
Not Applicable
No Dependency for Windows 2003 without SP1. Not Applicable to Windows 2000 and Windows 2003 with SP1 Not Applicable
No Dependency with Windows XP SP1. Not Applicable to Windows XP SP2 and No Dependency No Dependency Windows 2000
No Dependency with Windows XP SP1. Not Applicable to Windows XP SP2 and Windows 2000
Applicable
Applicable to Windows 2000 and Windows 2003 without SP1 (no known direct dependency with the affected Applicable to component, but Windows 2000 the affected and Windows component is Server 2003 part of the OS without SP1. Not distribution, Applicable to recommend to Windows Server apply hotfix) Not 2003 SP1 and Applicable to Windows Server Windows 20003 2003 R2 with SP1 No Dependency (no known direct dependecy with Kerberos, but the affected component is an integral part of the OS, recommend to apply the hotfix) (Superceded by SP2 for Windows Server 2003) Applicable (SWC running on Windows 2000 has dependency on Terminal Service, and Remote Desktop Connection can be used as remote support connection tool with SWC running on Windows Server 2003. Recommend to apply hotfix) (Superceded by SP2 for Windows Server 2003)
Applicable
Applicable (Remote Desktop Connection can be used as remote support connection tool for TAPI server running on Windows Server 2003, and the affected component is an integral part of the OS. Recommend to apply the hotifx)
Applicable (all connected clients, including TAPI client, SWCP or SA using TAPI Remote must also be installed with the same hotfix for its applicable Windows platform)
Applicable (all connected SA client must also be installed with the same security hotfix for its applicable Windows platform)
Applicable (no known direct dependency with the affected Applicable (no component, but the affected known direct dependency with component is an integral part of the affected component, but the OS, recommend to the affected component is an apply hotfix) integral part of (Superceded by SP2 for the OS, recommend to Windows Server 2003) apply hotfix) Applicable (replaced by MS05-052) (Superceded by SP2 for Windows Server 2003)
No dependency Applicable (IE should not be run on TAPI (replaced by MS05-052) server)
No Dependency (MS Java Virtual Machine and IE Applicable (replaced by should not be MS05-052) run on TAPI)
Applicable (replaced by No dependency MS05-052) No Dependency (SCCS client have no dependency on MS Virtual Java Machine or IE. Nortel recommends to install the hotfix is Virtual Java Machine or IE is run on the PC Applicable where SCCS (replaced by client is MS05-052) coreside)
Applicable (no known direct dependency with the affected Applicable (no component, but known direct the affected dependency with component is the affected part of the OS component, but distribution, the affected recommend to component is apply hotfix) part of the OS (Superceded by distribution, SP2 for recommend to Windows Server apply hotfix) 2003) Not Applicable (MS Office should not coreside with SWC) Not Applicable (MS Office should not coreside with SWC)
Applicable (no known direct dependency with the affected component, but the affected component is part of the OS distribution, recommend to apply hotfix) Not Applicable (MS Office should not coreside with TAPI)
Not Applicable (MS Office should not coreside with SA)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency on Windows 2003 (Telnet Client should not be run on SWC) (Superceded by SP2 for Windows Server 2003) Not Applicable to Windows 2000
No Dependency on Windows 2003 (Telnet Client should not be run on TAPI). Not Applicable to Windows Not Applicable 2000
Not Applicable (Microsoft Agent should not be installed on Not Applicable SWC) (replaced (Microsoft Agent by MS06-068) (Superceded by should not be SP2 for installed on SWC) (replaced Windows Server 2003) by MS06-068) Not Applicable (Step-by-Step Interactive Training should not be installed on SWC) (replaced by MS07-005) Not Applicable (Step-by-Step Interactive Training should not be installed on SWC) (replaced by MS07-005)
Not Applicable (Microsoft Agent should not be installed on TAPI)
Not Applicable (Microsoft Agent should not be installed on SA)
Not Applicable (Step-by-Step Interactive Training should not be installed on TAPI)
Not Applicable (Step-by-Step Interactive Training should not be installed on SA)
No Dependency on Windows 2000 and Windows 2003 without SP1 (Outlook Express should not be run on SWC). Not No Dependency aplicable with (Outlook Windows 2003 Express should with SP1 and not be run on Windows Server SWC) 2003 R2
No Dependency on Windows 2000 and Windows 2003 without SP1 (Outlook Express should not be run on TAPI). Not aplicable with Windows 2003 with SP1
No Dependency (Outlook Express should not be run on SA)
Not Applicable
Not Applicable No Dependency with Windows Server 2003 without SP1 (Web Client service is disabled as default in Windows Server 2003, and SWC has no known direct dependency with Web Client service, but Web Client Service is part of the OS distribution. Recommend to apply hotfix if Web Client service is enabled). Not Applicable to Windows 2003 with SP1, WIndows Server 2003 R2, and Windows 2000
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency with Windows Server 2003 without SP1 (Web Client service is disabled as default in Windows Server 2003, and SCCS have no known direct dependency with Web Client service, but Web Client Service is part of the OS distribution. Recommend to apply hotfix if Web Client service is enabled). Not Applicable to Windows 2003 with SP1 and Windows 2000 Not Applicable
Applicable to WinXP only (no known direct dependency with Web Client service, but Web Client Service is part of the OS distribution. Recommend to apply hotfix). Not Applicable to Windows 2000
Applicable (Superceded by SP2 for Windows Server Applicable (no 2003) (no known known direct direct dependency with dependency with SMB, the SMB SMB, the SMB is an integral is an integral part of the OS. part of the OS. Recommend to Recommend to apply the hotfix) apply the hotfix) Applicable (no known direct dependency with HTML Help, but Applicable (no HTML Help is known direct part of the OS dependency with distribution. HTML Help, but Recommend to HTML Help is apply hotfix) part of the OS (Superceded by distribution. SP2 for Recommend to Windows Server apply hotfix) 2003)
Applicable (no known direct dependency with SMB, but SMB is part of the OS distribution. Recommend to apply hotfix)
Applicable (no known direct dependency with SMB, the SMB is an integral part of the OS. Applicable Applicable Applicable (Superceded by (Superceded by Recommend to (Superceded by apply the hotfix) MS06-035) MS06-035) MS06-035)
Applicable (replaced by MS05-038) (Superceded by Applicable SP2 for (replaced by Windows Server No Dependency MS05-038) 2003) Applicable to Windows 2000 only (no known direct dependency with the affected components, but the affected components are part of the OS distribution. Recommend to apply hotfix) Not Applicable to Windows Server 2003
Applicable to Windows 2000 only (no known direct dependency with Applicable (no the affected known direct components, but dependency with the affected the affected components are components, but part of the OS the affected distribution. components are Recommend to part of the OS apply hotfix) Not distribution. Applicable to Recommend to Windows Server apply hotfix) 2003
Applicable to Windows 2000 only (no known direct dependency with the affected components, but the affected components are part of the OS distribution. Recommend to apply hotfix)
Not Applicable (Microsoft Word should not be installed on SWC server)
Not Applicable (MSN Messenger should not be installed on SWC server)
Not Applicable (Microsoft Word should not be installed on SWC server) Not Applicable (MSN Messenger should not be installed on SWC server) (For W2K3, superceded by SP1)
Not Applicable (Microsoft Word should not be installed on TAPI server)
Not Applicable (Microsoft Word should not be installed on SA server)
Not Applicable (MSN Messenger should not be installed on TAPI server)
Not Applicable (MSN Messenger should not be installed on SA server)
Not Applicable
Not Applicable Applicable (replaced by MS05-025) (Superceded by SP2 for Windows Server 2003)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency Applicable (for W2K3, superceded by (replaced by MS05-025) SP1)
Applicable
Applicable
Applicable
Applicable to Windows 2000 and Windows Server 2003 without SP1 (for W2K3, superceded by SP1). Not Applicable to Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable to Windows 2000 and Windows Server 2003 without SP1 (for W2K3, superceded by SP1) (no known direct dependency with the affected components, but affected components are part of the OS Kernel. Recommend to apply hotfix) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 No Dependency for Windows 2000 (no known direct dependency with Message Queuing, and it is not installed by default in Windows. Recommend to apply hotfix if Messaging Queuing is enabled) Not Applicable to Windows Server 2003
Applicable to Windows 2000 and Windows Server 2003 without SP1 (for W2K3, superceded by SP1). Not Applicable to Windows Server 2003 Applicable SP1
Applicable
Applicable
Applicable
Applicable
Applicable to Windows 2000 and Windows Server 2003 without SP1 (for W2K3, superceded by SP1) (no known direct dependency with the affected components, but affected components are part of the OS Kernel. Recommend to apply hotfix) Not Applicable with Windows Server 2003 SP1 No Dependency for Windows 2000 (no known direct dependency with Message Queuing, and it is not installed by default in Windows. Recommend to apply hotfix if Messaging Queuing is enabled) Not Applicable to Windows Server 2003
Applicable (no known direct dependency with the affected components, but the affected components are part of the OS Kernel. Recommend to apply hotfix) No Dependency for Windows 2000 (no known direct dependency with Message Queuing, and it is not installed by default in Windows. Recommend to apply hotfix if Messaging Queuing is enabled) Not Applicable to Windows XP
Applicable to Windows 2000 and Windows Server 2003 without SP1 (for W2K3, superceded by SP1) (no known direct dependency with the affected file association function in Applicable (no Windows Shell, but Windows known direct dependency with Shell is part of the affected file the OS distribution. association Recommend to function in Windows Shell, apply hotfix) Not Applicable but Windows Shell is part of with Windows Server 2003 the OS SP1 and distribution. Recommend to Windows Server 2003 R2 apply hotfix) Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected Hyperlink Object Library, but Hyperlink Object Library is part of the OS distribution. Recommend to apply hotfix). Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K3, superceded by SP1) (replaced by MS05-020) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Applicable to Windows 2000 and Windows Server 2003 without SP1 (for W2K3, superceded by SP1) (no known direct dependency with the affected file association function in Windows Shell, but Windows Shell is part of the OS distribution. Recommend to apply hotfix) Not Applicable with Windows Server 2003 SP1
Applicable to Windows 2000 (no known direct dependency with the affected file association function in Windows Shell, but Windows Shell is part of the OS distribution. Recommend to apply hotfix) Not Applicable to Windows NT
Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected Hyperlink Object Library, but Hyperlink Object Library is part of the OS distribution. Recommend to apply hotfix)
Applicable (no known direct dependency with the affected Hyperlink Object Library, but Hyperlink Object Library is part of the OS distribution. Applicable Recommend to (replaced by apply hotfix) MS06-050)
No Dependency Applicable (for W2K3, superceded by (replaced by MS05-020) SP1)
Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected DHTML Editing Component Applicable (no ActiveX Control, known direct but the control is dependency with part of the OS the affected distribution. DHTML Editing Recommend to Component apply hotfix) ActiveX Control, Not Applicable but the control is with Windows part of the OS Server 2003 distribution. SP1 and Recommend to WIndows Server apply hotfix) 2003 R2
Applicable (no known direct dependency with the affected DHTML Editing Component No Dependency ActiveX Control, (for W2K3, but the control is superceded by part of the OS SP1) (IE should distribution. not be run on Recommend to TAPI server) apply hotfix)
Applicable (no known direct dependency with the affected DHTML Editing Component ActiveX Control, but the control is part of the OS distribution. Recommend to apply hotfix)
Applicable (no known direct dependency with the affected DHTML Editing Component ActiveX Control, but the control is part of the OS distribution. Recommend to No Dependency apply hotfix)
Applicable
Applicable
Applicable (for W2K3, superceded by Applicable (for SP1) (no known W2K3, direct superceded by dependency with SP1) the affected Not Applicable OLE & COM, with Windows but OLE & COM Server 2003 is part of the OS SP1 and distribution. Windows Server Recommend to 2003 R2 apply hotfix) Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Applicable (for Server 2003 W2K3, SP1 and Windows Server superceded by SP1) 2003 R2
Applicable
Applicable
Applicable (no known direct dependency with the affected OLE & COM, but OLE & COM is part of the OS distribution. Recommend to Applicable apply hotfix)
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable to Windows 2000 (no known direct dependency with the affected License Logging, but License Logging is part of the OS distribution. Recommend to apply hotfix). Applicable (no No Dependency known direct on Windows dependency with 2003 (for W2K3, the affected superceded by License SP1) Logging, but Not Applicable License Logging with Windows is part of the OS Server 2003 distribution. SP1 and Recommend to Windows Server apply hotfix) 2003 R2
Applicable with Windows 2003 (for W2K3, superceded by SP1). Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2, and Not Applicable Windows 2000 (Affected Media (affected Media Player and Player and Windows Windows Messenger is Messenger is not installed by not installed by default on default on Windows 2000) Windows 2000)
Applicable to Windows 2000 (no known direct dependency with the affected License Logging, but License Logging is part of the OS distribution. Recommend to apply hotfix). No Dependency on Windows 2003 (for W2K3, superceded by SP1) Applicable with Windows 2003 (for W2K3, superceded by SP1) (no direct dependency with the affected Media Player, but Media Player is part of the OS distribution. Recommend to apply hotfix if Media Player is not the correct version). Not Applicable to Windows 2000 (affected Media Player and Windows Messenger is not installed by default on Windows 2000)
Applicable (no known direct dependency with the affected License Logging, but License Logging is part of the OS distribution. Recommend to apply hotfix)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable (Affected Media Player and Windows Messenger is not installed by default on Windows 2000)
Applicable (for W2K3, superceded by SP1) (replaced by MS05-016)
Not Applicable
Not Applicable
Applicable (replaced by MS05-016) Applicable to WinXP only (no direct dependency but it is an integral Windows function, recommend to apply the hotfix)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency with Windows 2003 (for W2K3, superceded by SP1) (no known dependency on .NET by SWC). Not Applicable with Windows Server 2003 SP1, Windows Server 2003 R2, and Windows Not Applicable 2000 (.NET is (.NET should not not installed by be installed on default on SWC SWC server) server) No Dependency (for W2K3, superceded by SP1) (Indexing Service is not enable by default) Not No Dependency Applicable with (Indexing Windows Server Service is not 2003 SP1 and enable by Windows Server default) 2003 R2
No Dependency with Windows 2003 (for W2K3, superceded by SP1) (no known dependency on .NET by TAPI). Not Applicable to Windows 2000 (.NET is not installed by default on TAPI server)
Not Applicable (.NET is not installed by default on SA server)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency (for W2K3, superceded by SP1) (Indexing Service is not enable by default)
No Dependency (Indexing Service is not enable by default)
Not Applicable (WINS should not be installed on SWC server)
Applicable
Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected Cursor and Icon Format components, but the affected components are part of the OS distribution. Recommend to apply hotfix) (replaced by MS07-017) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K3, superceded by SP1) (replaced by MS05-026) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Not Applicable (for W2K3, superceded by SP1) (WINS should not be installed on SWC server) Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Applicable (for W2K3, superceded by SP1) (no known direct dependency with the affected Cursor and Icon Format components, but the affected components are part of the OS distribution. Recommend to apply hotfix)
Applicable (for W2K3, superceded by SP1) (replaced by MS05-026) Not Applicable (for W2K3, superceded by SP1) (WINS should not be installed on TAPI server)
Not Applicable (WINS should not be installed on SA 2.3 server)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (for W2K3, superceded by SP1)
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable (for W2K3, superceded by SP1) (no known direct dependency with HyperTerminal, but HyperTerminal Applicable (no is part of the OS known direct distribution. dependency with Recommend to HyperTerminal, apply hotfix) but Not Applicable HyperTerminal with Windows is part of the OS Server 2003 distribution. SP1 and Recommend to Windows Server apply hotfix) 2003 R2
Applicable (for W2K3, superceded by SP1) (no known direct dependency with HyperTerminal, but HyperTerminal is part of the OS distribution. Recommend to apply hotfix)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (for W2K3, superceded by SP1) (no known direct dependency with WordPad, but WordPad is part of the OS Applicable (no distribution. known direct Recommend to dependency with apply hotfix) WordPad, but Not Applicable WordPad is part with Windows of the OS Server 2003 distribution. SP1 and Recommend to Windows Server apply hotfix) 2003 R2
Applicable (for W2K3, superceded by SP1) (no known direct dependency with WordPad, but WordPad is part of the OS distribution. Recommend to apply hotfix)
Applicable with IE 5.5 or 6.0 only
Applicable to Windows 2000 with IE 5.5 or 6.0 only
Applicable with IE 5.5 or 6.0 (Superceded by No Dependency MS05-014)
Applicable (no known direct dependency with WordPad, but WordPad is part of the OS distribution. Recommend to apply hotfix) Applicable to Windows 2000 with IE 5.5 or 6.0, and Windows XP SP1
Applicable (no known direct dependency with WordPad, but WordPad is part of the OS distribution. Recommend to apply hotfix) Applicable to Windows 2000 with IE 5.5 or 6.0, and Windows XP No Dependency SP1
Not Applicable
Not Applicable Applicable (for W2K3, superceded by SP1) (Superceded by MS05-014) Not Applicable with Windows Server 2003 Applicable SP1 and (replaced by Windows Server MS04-040) 2003 R2 Applicable (for W2K3, superceded by SP1) (no direct dependency with SWC, but vulnerabiliaties are base Applicable (no function in Windows. direct dependency with Recommend to apply hotfix SWC, but vulnerabiliaties immediately) Not Applicable are base with Windows function in Server 2003 Windows. Recommend to SP1 and Windows Server apply hotfix 2003 R2 immediately) No Dependency (for W2K3, No Dependency superceded by (NNTP should SP1) (NNTP not be installed should not be as installed as recommended recommended to lockdown IIS) to lockdown IIS) Applicable to Windows 2003 (for W2K3, superceded by SP1). Not Applicable with Windows Server 2003 SP1, Windows Server 2003 R2, and Windows Not Applicable 2000.
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency (for W2K3, superceded by SP1) Applicable (Superceded by (replaced by MS05-014) MS04-040)
Applicable
Applicable
Applicable (for W2K3, superceded by SP1) (no direct dependency with TAPI, but vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable (no direct dependency with SA, but vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable (no direct dependency with Windows Shell, but vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable (no direct dependency with Windows Shell, but vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable (no direct dependency with SCCS, but vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable (no direct dependency with SWC, but vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Not Applicable (for W2K3, superceded by SP1) (IIS should No Dependency not be installed (NNTP should not be installed) on TAPI)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable (for W2K3, superceded by SP1)
Not Applicable
No Dependency No Dependency Not Applicable
No Dependency
Not Applicable Not Applicable (No Microsoft Office product should be installed on SWC)
Applicable to Windows 2003 (for W2K3, superceded by SP2). Not Applicable with Windows Server 2003 SP1, Windows Server 2003 R2, and Windows 2000.
Applicable to Windows 2003 (for W2K3, superceded by SP1). Not Applicable to Windows 2000. Not Applicable Not Applicable (No Microsoft Office product should be installed on TAPI)
Applicable to WinXP only (no direct dependency but it is an integral Windows Applicable to Applicable to Applicable to function, Windows 2003 Windows 2003 recommend to Windows 2003 and WinXP only and WinXP only apply the hotfix) and WinXP only
Not Applicable (No Microsoft Office product should be installed on SWC) Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Applicable 2003 R2 Applicable (for W2K3, superceded by SP1) (No known direct dependency with NetDDE. NetDDE is not started by Applicable (No default but it is part of the known direct dependency with Windows, recommend to NetDDE. NetDDE is not apply the hotfix) Not Applicable started by default but it is with Windows Server 2003 part of the SP1 and Windows, recommend to Windows Server apply the hotfix) 2003 R2 Applicable to Windows 2000 (No direct dependency with WebDev, but WebDav is installed by default. Applicable (No Recommend to direct apply hotfix if dependency with WebDav is not WebDav, but removed as WebDav is recommended installed by to lockdown IIS default. for Windows Recommend to 2000.) No apply hotfix if dependency for WebDav is not Windows 2003 removed as (Superceded by recommended SP1) (WebDav to lockdown IIS is not installed for Windows by default for 2000) Windows 2003)
Not Applicable (No Microsoft Office product should be installed on SA)
Applicable
Applicable to all Applicable to all Applicable to all Applicable to all platforms except platforms except platforms except platforms except with WinXP SP2 with WinXP SP2 with WinXP SP2 with WinXP SP2
Applicable (for W2K3, superceded by SP1) (No known direct dependency with NetDDE. NetDDE is not started by default but it is part of the Windows, recommend to apply the hotfix)
Applicable (No known direct dependency with NetDDE. NetDDE is not started by default but it is part of the Windows, recommend to apply the hotfix)
No No Dependency No Dependency Depenedency
No Dependency
Applicable (No direct dependency with WebDav, but WebDav is installed by default. Recommend to apply hotfix if Not Applicable WebDav is not (for W2K3, removed as superceded by recommended SP1) (IIS should to lockdown IIS not be installed for Windows on TAPI) 2000) Applicable to WinNT only. Not applicable to Windows 2000
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable to WinNT only
Not Applicable
Applicable for IE 6.0 SP1 installed (no direct dependency with SWC, but the affected component is an intergal part of IE 6.0, and recommend to apply hotfix if IE 6.0 SP1 installed)
Applicable with Windows 2003 and Windows 2000 with IE 6.0 SP1 (for W2K3, superceded by SP1) (no direct dependency with SWC, but the affected component is an integral part of Windows 2003 or IE 6.0, recommend to apply hhotfix) Not Applicable with Windows Server 2003 SP1 and WIndows Server 2003 R2
Applicable to Windows 2003 (for W2K3, superceded by SP1). Not Applicable to Windows 2000
Applicable to Windows 2000 with IE 6.0 SP1 installed (no direct depedency with SA, but the affected component is an intergal part of the IE 6.0, recommend to apply the hotfix)
Applicable with Windows 2003, Windows XP, and IE 6.0 SP1 (no direct dependency with CCMA, but the affected component is an integral part of Windows 2003, Windows XP, and IE 6.0 SP1, recommend to apply hotfix for Windows 2003, Windows XP, or IE 6.0 is installed). No Dependency for other platforms
Applicable with Windows 2003, Windows XP, and IE 6.0 SP1 (no direct dependency with CCMM, but the affected component is an integral part of Windows 2003, Windows XP, and IE 6.0 SP1, recommend to apply hotfix for Windows 2003, Windows XP, or IE 6.0 is installed). No Dependency for other platforms No Dependency
Applicable with Windows 2003, Windows XP, and IE 6.0 SP1 (no direct dependency with SWC, but the affected component is an integral part of Windows 2003, Windows XP, and IE 6.0 SP1, recommend to apply hotfix for Windows 2003, Windows XP, or IE 6.0 is installed). No Dependency for other platforms
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No No Dependency No Dependency Depenedency
No Dependency
Not Applicable
Not Applicable Applicable (for W2K3, superceded by SP1) (replaced by MS04-038) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency Applicable (for W2K3, superceded by (replaced by MS04-038) SP1) Applicable to Win2000 (no direct dependency with SA, but the affected component is a base component of Windows. Recommend to apply hotifx. SA is considered with minimal risk with this vulnerability if one is following Nortel Networks recommendation to refrain from viewing external Web site directly on the SA server)
Applicable to Win2000 and WinXP (no direct dependency with CCMA, but the affected component is a base component of Windows. Recommend to apply hotifx)
Applicable to Win2000 and WinXP (no direct dependency with CCMM, but the affected component is a base component of Windows. Recommend to apply hotifx)
Applicable to WinNT, Win2000 and WinXP (no direct dependency with SWC, but the affected No Dependency component is a with WinNT and base component Win2000 of Windows. (replaced by Recommend to MS04-037) apply hotifx)
Applicable with Win2000 and Win2003 (for W2K3, superceded by SP1) (no direct dependency with SWC, but most vulnerabiliaties are base Applicable (no function in direct Windows. dependency with Recommend to SWC, but most apply hotfix vulnerabiliaties immediately) are base Not Applicable function in with Windows Windows. Server 2003 Recommend to SP1 and apply hotfix Windows Server immediately) 2003 R2
Applicable to Win2000 and Win2003 (for W2K3, superceded by SP1) (no direct dependency with TAPI, but most vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable to Win2000 (no direct dependency with SA, but most vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable to Win2000, Applicable with WinXP, and Applicable with Win2000, and WinNT if IE 6.0 Win2000, and WinXP (no SP1 is installed WinXP (no direct on WinNT (no direct dependency with direct dependency with CCMM, but dependency with CCMA, but most most SCCS, but most vulnerabiliaties vulnerabiliaties vulnerabiliaties are base are base are base function in function in function in Windows. Windows. Windows. Recommend to Recommend to Recommend to apply hotfix apply hotfix apply hotfix immediately) immediately) immediately)
Applicable with Win2000, WinXP, and WinNT if IE 6.0 SP1 is installed on WinNT (no direct dependency with SWC, but most vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable
Applicable with Win2000 only
Applicable to Win2000 (no direct dependency with TAPI, but the affected component is a base component of Windows. Recommend to apply hotifx). Not Applicable with Win2003.
Applicable to Win2000 (no direct dependency with SA, but the affected component is a base component of Windows. Recommend to apply hotifx) Not applicable to Win2000 (only applicable to SA on WinNT that is EOL)
Not Applicable
Not Applicable
Not Applicable
No Dependency with Win2000. Not applicable No Dependency No Dependency with Win2003. No Dependency No Dependency No Dependency No Dependency to Win2000 (not with Win2000. with Win2000. applicable to SA Not applicable Not applicable on WinNT that is with Win2003. No Dependency with Win2003. EOL) No Dependency (for W2K3, superceded by SP1) Not Applicable with Windows No Dependency Server 2003 (for W2K3, SP1 and Windows Server superceded by SP1) No Dependency 2003 R2 No Dependency Not Applicable (all affected MS products should not be installed on SWC) Not Applicable (all affected MS products should not be installed on SWC) No Dependency (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2 Not Applicable (all affected MS products should not be installed on SA)
Not Applicable No Dependency No Dependency No Dependency with WinNT and Win2000. Not with Win2000. with Win2000. Not applicable Not applicable applicable with WinXP. with WinXP. with WinXP. No Dependency No Dependency No Dependency with Win2000. with Win2000. with Win2000. Not applicable Not applicable Not applicable with WinNT and with WinXP. with WinXP. WinXP. Not Applicable Not Applicable
Not Applicable No Dependency with WinNT and Win2000. Not applicable with WinXP. No Dependency with Win2000. Not applicable with WinNT and WinXP.
Not Applicable (for both Win2000 and Win2003)
Not Applicable
Not Applicable
No Dependency (for W2K3, superceded by No Dependency SP1)
No Dependency with Win2000 No Dependency No Dependency and WinXP. Not with Win2000 with Win2000 Applicable with and WinXP. and WinXP. WinNT.
No Dependency with Win2000 and WinXP. Not Applicable with WinNT.
No Dependency with Win2003 (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1, Windows Server 2003 R2, and Not Applicable Windows 2000 Applicable to Win2000 and Win2003 (for W2K3, superceded by SP1) (if msjet40.dll found and version is below 4.0.8618.0, recommend to apply hotfix) Applicable (if Not Applicable msjet40.dll with Windows found and version is below Server 2003 SP1 and 4.0.8618.0, recommend to Windows Server 2003 R2 apply hotfix) No Dependency (for W2K3, superceded by SP1) (if local IE is used to access external web site, recommend to apply hotfix No Dependency immediately) (if local IE is Not Applicable used to access with Windows external web Server 2003 site, recommend SP1 and to apply hotfix Windows Server immediately) 2003 R2 Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Applicable 2003 R2
Not Applicable with Win2000. No Dependency with Win2003 (for W2K3, superceded by Not Applicable SP1)
Not Applicable with Win2000. No Dependency with WinXP (if local IE is used to access external web site, recommend to apply hotfix)
Not Applicable with Win2000. No Dependency with WinXP (if local IE is used to access external web site, recommend to apply hotfix)
Not Applicable with WinNT and Win2000. No Dependency with WinXP (if Not Applicable local IE is used to WinNT and to access Win2000. No external web dependency with site, recommend WinXP. to apply hotfix)
No Dependency (for W2K3, superceded by No Dependency SP1)
Applicable to WinNT, Win2000, and WinXP (if msjet40.dll found and version is below 4.0.8618.0, recommend to No Dependency No Dependency apply hotfix) No Dependency
No Dependency (if local IE is used to access No Dependency external web (for W2K3, site, recommend superceded by to apply hotfix SP1) immediately)
No Dependency (if local IE is used to access external web site, recommend to apply hotfix immediately)
No Dependency (if local IE is used to access external web site, recommend to apply hotfix No Dependency immediately)
Applicable
Applicable (to WinNT, Win2000, and No Dependency No Dependency XP platform)
No Dependency
Applicable (for W2K3, superceded by SP1) (no direct dependency with SWC, but most vulnerabiliaties are base Applicable (no function in direct Windows. dependency with Recommend to SWC, but most apply hotfix vulnerabiliaties immediately) are base Not Applicable function in with Windows Windows. Server 2003 Recommend to SP1 and apply hotfix Windows Server immediately) 2003 R2
Applicable (for W2K3, superceded by SP1) (no direct dependency with TAPI, but most vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable (no direct dependency with SA, but most vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable to Win2000, and WinXP (no direct dependency with CCMA, but most vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable to Win2000, and WinXP (no direct dependency with CCMM, but most vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable to WinNT, Win200, and WinXP (no direct dependency with SCCS, but most vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable to WinNT, Win2000, and WinXP (no direct dependency with SWC, but most vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Not Applicable Not Applicable Not Applicable Not Applicable (MSN should not (MSN should not (MSN should not (MSN should not be installed) be installed) be installed) be installed)
Not Applicable Not Applicable Not Applicable Not Applicable (Outlook should (Outlook should (Outlook should (Outlook should not be installed) not be installed) not be installed) not be installed) No Dependency (Windows Media Services should not be installed) No Dependency (Windows Media Services should not be installed) Applicable (for W2K3, superceded by SP1) (replaced by MS04-011) Not Applicable with Windows Server 2003 SP1 and Applicable Windows Server (replaced by 2003 R2 MS04-011) Not Applicable (for W2K3, superceded by Not Applicable SP1) (WINS should not be (WINS should not be installed installed on on SWC server) SWC server) No Dependency (Windows Media Services should not be installed) No Dependency (Windows Media Services should not be installed)
Applicable (for W2K3, superceded by SP1) (replaced by MS04-011) Not Applicable (for W2K3, superceded by SP1) (WINS should not be installed on TAPI server)
Not Applicable (WINS should not be installed on SA server)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable Applicable (for W2K3, superceded by SP1) (superceded by MS04-025) Not Applicable with Windows Server 2003 Applicable SP1 and (superceded by Windows Server MS04-025) 2003 R2 Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server Applicable 2003 R2
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency Applicable (for W2K3, superceded by (superceded by MS04-025) SP1)
Applicable Applicable Applicable (superceded by (superceded by (superceded by No Dependency MS04-025 MS04-025 MS04-025
Applicable (for W2K3, Superceded by SP1)
Applicable (to Win2000 only)
Applicable (to Windows 2000 and Windows XP)
Applicable (to Win2000 and XP, and WintNT if MDAC 2.5 or higher is installed)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency No Dependency Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (replaced by MS06-070 for Applicable (to Windows 2000) Win2000 only)
Applicable (for W2K3, superceded by SP1) (Superceded by MS04-004) Not Applicable with Windows Server 2003 Applicable SP1 and (Superceded by Windwos Server MS04-004) 2003 R2
No Dependency Applicable (for W2K3, superceded by (Superceded by MS04-004) SP1)
Applicable
Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable Applicable (for W2K3, superceded by SP1) (replaced by MS04-031 for Windows 2000) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (for W2K3, superceded by SP1) (replaced Applicable by MS04-031 for (replaced by Windows 2000) MS04-031)
Applicable (to Win2000, and WinXP)
Applicable (to WinNT, Win2000, and XP platform)
Applicable (to WinNT, Win2000, and WinXP)
Applicable
Applicable
Applicable
Applicable (for W2K3, superceded by SP1) Applicable (to both Win2000 and Win2003 platform)
Applicable
Applicable (to WinNT, Win2000, and XP platform) Applicable (to WinNT, Win2000, and XP platform)
Applicable
Applicable
Applicable
Applicable Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Applicable (to Win2000 platform only)
Applicable
No Dependency (for W2K3, superceded by Superceded by MS03-048 SP1)
Applicable
Applicable
Applicable (replaced by No Dependency No Dependency MS04-012)
No Dependency
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable
Not Applicable Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Not Applicable
Not Applicable
Applicable
Applicable (to WinNT, Win2000, and XP platform) Applicable (replaced by MS04-003)
Applicable
Superseded by MS03-040
Applicable Applicable (for W2K3, superceded by SP1) (Superseded by MS03-040) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2
Applicable
Applicable
Applicable
No Dependency (for W2K3, superceded by Superceded by SP1) MS03-040
Applicable
Applicable
Not Applicable
Not Applicable No Dependency (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server No Dependency 2003 R2
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency (for W2K3, superceed by SP1) No Dependency Applicable (for WinNT platform Not Applicable only)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable Applicable (to Windows XP only)
Applicable (replaced by No Dependency No Dependency MS04-012)
No Dependency
No Dependency No Dependency No Dependency No Dependency Applicable (replaced by MS05-027) Applicable (replaced by MS05-027) Applicable (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Superseded by MS03-032 (for W2K3, superceded by SP1) Not Applicable with Windows Server 2003 SP1 and Windows Server 2003 R2 Applicable (replaced by MS05-027) Applicable (replaced by MS05-027)
No Dependency No Dependency No Dependency Applicable (to Applicable Applicable WinNT, (replaced by (replaced by Win2000, and MS05-027) MS05-027) XP platform)
Applicable
No Dependency (for W2K3, superceded by Applicable SP1)
Applicable
Applicable
Superseded by MS03-032
Not Applicable
superceded by MS03-032
Applicable
Applicable
Applicable
Applicable
Not Applicable
Not Applicable
Applicable
No Dependency Applicable superceded by No Dependency No Dependency No Dependency MS03-020 Applicable (to Win2000 platform only and replaced by Not Applicable Not Applicable WIn2000 SP4) No Dependency
Applicable
Applicable
Applicable
Not Applicable Applicable (superced MS03No Dependency 004)
Applicable (to WinXP only)
Applicable (to WinXP only)
Applicable (to WinNT, and WinXP)
Applicable
Applicable Applicable (replaced by MS04-012) Applicable (to Win2000 platform only and replaced by WIn2000 SP4)
Applicable
Applicable
Applicable
Applicable
Applicable
No Dependency
Applicable
Applicable
Applicable
Applicable Superceded by MS03-020
Applicable
Applicable
Applicable Superceded by MS03-020 Applicable (replaced by Windows 2000 SP4) Applicable (replaced by Windows 2000 SP4)
Not Applicable Applicable
No Dependency
Applicable
Applicable
Applicable
Applicable
No Dependency
Applicable Superseded by MS03-004 Superseded by MS02-068
Applicable
Applicable Superseded by MS03-004 Superseded by MS02-068 Applicable (replaced by Windows 2000 SP4)
Applicable
Applicable
Applicable
Applicable
Applicable
Applicable Applicable (replaced by Windows 2000 SP4)
Applicable
Applicable
Applicable
No Dependency
Applicable
Applicable
Applicable Applicable (replaced by Windows 2000 SP4)
Not Applicable
Not Applicable
Not Applicable
Applicable
Applicable
Applicable
Applicable Superseded by MS02-069
No Dependency No Dependency Superseded by MS02-069 Superseded by MS02-069
No Dependency Superseded by MS02-069
Applicable Superseded by MS02-066 Applicable (replaced by Windows 2000 SP4) Applicable (replaced by Windows 2000 SP4)
Not Applicable Supersded by MS02-066
Not Applicable Applicable (MS Q328002 hotfix is required)
Applicable
No Dependency
Applicable
Applicable
Applicable
Applicable
Not Applicable Applicable (replaced by Windows 2000 SP3) Applicable (replaced by Windows 2000 SP3)
Not Applicable Not Applicable (minimum Service Pack 3 required) Not Applicable (minimum Service Pack 3 required)
Applicable
Applicable
Applicable
No Dependency
Not Applicable
Not Applicable
Not Applicable
No Dependency Applicable (replaced by Windows 2000 SP3) Applicable Applicable (replaced by Windows 2000 SP3)
No Dependency Not Applicable (minimum Service Pack 3 required) Supersded by MS02-047 Not Applicable (minimum Service Pack 3 required)
No Dependency
No Dependency No Dependency Superseded by Superseded by MS02-047 MS02-047
Not Applicable
Not Applicable
Not Applicable
No (use Windows 2000 SP3 instead) Applicable Applicable (replaced by Windows 2000 SP3) Applicable (replaced by Windows 2000 SP3)
Not Applicable (minimum Service Pack 3 required) Superseded by MS02-023 Not Applicable (minimum Service Pack 3 required) Not Applicable (minimum Service Pack 3 required)
No Dependency No Dependency Applicable Applicable
No Dependency
No Dependency
No Dependency No Dependency Not Applicable No (use (minimum Windows 2000 Service Pack 3 SP3 instead) required)
No Dependency
No Dependency
TAPI Compliant Application
SA Client
TAPI 3.0 (EOL)
SA 2.3 (EOL)
Yes (validated with TAPISP3.0.0.8i)
Not Applicable
Product retired Product retired - no no testing planned testing planned
Yes (validated with SA0203058SU01S)
Yes (validated with SA0203058SU01S)
SWC 4.5 (Manufacturer Discontinued)
SA 2.3 Client (EOL)
No Dependency
Not Applicable
Applicable
Applicable
No Dependency
No Dependency
No Dependency
No Dependency (Visual Studio should not be installed on SWC Desktop PC)
Applicable with Windows 2000 (no direct dependency with Microsoft Agent, but the affected component is an integral part of the OS, recommend to apply the hotfix) Not Applicable with Windows XP
No Dependency
Not Applicable
No Dependency
No Dependency
Applicable with Windows XP. Applicable with Windows 2000 if XML Parser XML Core Service 3.0 or higher is installed
No Dependency
Not Applicable
Not Applicable
No Dependency
No Dependency
Applicable
No Dependency
Not Applicable
Applicable
No Dependency
Not Applicable
No Dependency
Not Applicable
No Dependency
No Dependency
No Dependency
Applicable
Applicable
No Dependency
No Dependency
No Dependency
Applicable
No Dependency
Applicable
No Dependency with Windows XP Not Applicable to Windows 2000
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
Applicable
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
Applicable
No Dependency
No Dependency
Applicable (need SUS0603 to be installed on SWC server for full SWC compatibility with SWC client for Windows XP with SP2 and Windows Server 2003 with SP1) (replaced by MS06-061)
Applicable
No Dependency
No Dependency
No Dependency
Applicable
Not Applicable
No Dependency
Applicable
Applicable
Not Applicable
No Dependency
No Dependency
Not Applicable
No Dependency
No Dependency
No Dependency
Applicable (replaced by MS06-042) (need SUS0603 to be installed on SWC server for full SWC compatibility with SWC client for Windows XP with SP2 and Windows Server 2003 with SP1) No Dependency (replaced by MS06-069)
Not Applicable
No Dependency
Applicable (repalced by MS06-021)
No Dependency
No Dependency
No Dependency
No Dependency
Not Applicable (SWC 4.5 requires IE 6.0)
No Dependency
No Dependency
Applicable
Applicable (replaced by MS05054)
Applicable
Applicable
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
Applicable (connected SA server must also be installed with the same security hotfix)
No Dependency
No Dependency
Not Applicable
Not Applicable
No Dependency
No Dependency with Windows XP. Not Applicable to Windows 2000
No Dependency (replaced by MS06-068)
No Dependency
No Dependency (repalced by MS07-005)
No Dependency
No Dependency
No Dependency
Not Applicable
Not Applicable
Applicable (Superceded by MS06-035)
No Dependency
No Dependency
No Dependency
No Dependency
Not Applicable
Not Applicable
Applicable
Applicable
Applicable
No Dependency No Dependency for for Windows 2000 Windows 2000 (no (no known direct known direct dependency with dependency with Message Queuing, Message Queuing, and it is not and it is not installed by default installed by default in Windows. in Windows. Recommend to Recommend to apply hotfix if apply hotfix if Messaging Messaging Queuing is Queuing is enabled) enabled) Not Applicable to Not Applicable to Windows XP Windows XP
Applicable
Applicable
Applicable
Not Applicable
Not Applicable
No Dependency
No Dependency
Applicable to WinXP only (no direct dependency but it is an integral Windows function, recommend to apply the hotfix)
Applicable to WinXP only (no direct dependency but it is an integral Windows function, recommend to apply the hotfix)
Not Applicable
Not Applicable
No Dependency
No Dependency
Not Applicable
No Dependency
No Dependency
No Dependency
Not Applicable
Not Applicable
Applicable
Applicable
Not Applicable
Not Applicable
Applicable with IE 5.5 or 6.0 (Superceded by MS05-014)
Not Applicable
Not Applicable
Applicable
Applicable (no direct dependency with SWC, but vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Applicable (no direct dependency with SA, but vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
Not Applicable
Not Applicable
No Dependency
Not Applicable
Applicable to Windows 2003 and WinXP only
No Dependency
No Dependency
Applicable to all platforms except with WinXP SP2
Applicable to all platforms except with WinXP SP2
No Dependency
No Dependency
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable with Windows 2003, Windows XP, and IE 6.0 SP1 (no direct dependency with SWC, but the affected component is an integral part of Windows 2003, Windows XP, and IE 6.0 SP1, recommend to apply hotfix for Windows 2003, Windows XP, or IE 6.0 is installed). No Dependency for other platforms
Applicable with IE 6.0 SP1 installed (no direct depedency with SA, but the affected component is an intergal part of the IE 6.0, recommend to apply the hotfix)
No Dependency
No Dependency
Not Applicable
Not Applicable
Applicable to WinNT, Win2000 and WinXP (no direct dependency with SWC, but the affected component is a base component of Windows. Recommend to apply hotifx)
Applicable (no direct dependency with SA, but the affected component is a base component of Windows. Recommend to apply hotifx)
Applicable with Win2000, WinXP, and WinNT if IE 6.0 SP1 is installed on WinNT (no direct dependency with SWC, but most vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
No Dependency
No Dependency
Not Applicable No Dependency with WinNT and Win2000. Not applicable with WinXP. No Dependency with Win2000. Not applicable with WinNT and WinXP.
Not Applicable No Dependency with Win2000. Not applicable with WinXP. No Dependency with Win2000. Not applicable with WinXP.
No Dependency
No Dependency
Not Applicable
Not Applicable
No Dependency with Win2000 and WinXP. Not Applicable with No Dependency WinNT.
Not Applicable with WinNT and Win2000. No Dependency with WinXP (if local IE is used to access external web site, recommend to apply hotfix)
Not Applicable with Win2000. No Dependency with WinXP
No Dependency
No Dependency
No Dependency
Applicable
Applicable to WinNT, Win2000, and WinXP (no direct dependency with SWC, but most vulnerabiliaties are base function in Windows. Recommend to apply hotfix immediately)
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency No Dependency with Windows 2000. Not Applicable with Windows XP
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (superceded by MS04-025
Applicable (superceded by MS04-025)
Applicable (to Windows 2000 and Windows XP) Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Not Applicable
No Dependency
No Dependency
Applicable
Applicable
Applicable (Superceded by MS04-004)
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (to WinNT, Win2000, Applicable and WinXP)
Applicable (to WinNT, Win2000, and WinXP) Applicable
Applicable
Superceded by MS03-048
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
No Dependency
Applicable
Applicable
Applicable
Superceded by MS03-040
No Dependency
No Dependency
No Dependency
No Dependency
Not Applicable
Not Applicable
Not Applicable
Not Applicable
Applicable (to Applicable (to Windows XP only) Windows XP only)
No Dependency
Applicable (replaced by MS04012) No Dependency with Windows 2000. Not Applicable with Windows XP Applicable (replaced by MS05027)
Applicable
Applicable
Applicable
superceded by MS03-032
Not Applicable
Not Applicable superceded by MS03-020 No Dependency Applicable to Windows XP. Not Applicable to Windows 2000
Applicable (to WinNT, and WindXP)
Applicable
No Dependency
Applicable Applicable (replaced by MS04012)
Applicable
Applicable
No Dependency
Applicable
No Dependency
Applicable
Applicable
No Dependency
Not Applicable
Applicable
No Dependency
Applicable
Applicable
No Dependency
Not Applicable
No Dependency
Not Applicable
No Dependency
No Dependency
No Dependency
No Dependency

ContactCenter ServicePacksCompatibility HotfixApplicabilityNovember2011AACC6X

Încărcat de

Informații document

Titlu original

Drepturi de autor

Formate disponibile

Partajați acest document

Partajați sau inserați document

Opțiuni de partajare

Vi se pare util acest document?

Este necorespunzător acest conținut?

Drepturi de autor:

Formate disponibile

ContactCenter ServicePacksCompatibility HotfixApplicabilityNovember2011AACC6X

Încărcat de

Drepturi de autor:

Formate disponibile

Legacy Avaya NES Contact Center Portfolio Service Packs Compatibility and Security Hotfixes Applicabilit

Server Avaya NES CCMS 6.0 Standalone (NCC) (MD)

Windows Server 2003 SP2

Yes (validated with SUS0304)

Avaya NES CCMS 6.0 Replication (MD)

Avaya NES CCMA 6.0 (MD)

Windows Server 2003 SP1

Yes (requires SUS0201)

Windows 2000 Update Rollup 1 for SP4

Windows 2000 SP4

Windows 2000 SP3

Windows 2000 SP2

Windows Vista SP1

Microsoft Security Hotfixes Applicability List

Avaya NES CCMS 6.0 Standalone (NCC) (MD)

Vulnerability in Microsoft .NET Framework Could Allow Tampering (981343)

Applicable (.NET Framework 2.0 is installed as part of the SU07 installation)

Applicable (.NET Framework 2.0 is installed as part of the SU07 installation)

Not Applicable (IIS should not be installed on CCMS server)

Not Applicable (IIS should not be installed on CCMS Replication server)

Cumulative Security Update for Internet Explorer MS10-035 (982381)

No Dependency (IE should not be run on CCMS Replication server)

Cumulative Security Update of ActiveX Kill Bits (980195) MS10-034

Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (979559)

No Dependency (Outlook Express should not be run on CCMS server)

No Dependency (Outlook Express should not be run on CCMS server)

Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (980094)

Cumulative Security Updates for Internet Explorer (980182) MS10-018

Not Applicable Applicable Applicable (replaced (replaced by MS10by MS10-021) 021)

Not Applicable Applicable (replaced by MS10021)

Vulnerability in Kerberos Could Allow Denial of Service (977290)

Cumulative Security Update of ActiveX Kill Bits (978262) MS10-008

Vulnerability in Microsoft Paint Could Allow Remote Code Execution (978706)

No Dependency (Microsoft Paint should not be run on CCMS server)

No Dependency (Microsoft Paint should not be run on CCMS server)

Cumulative Security Update for Internet Explorer MS10-002 (978207)

No Dependency (IE should not be run on CCMS Replication server)

Cumulative Security Update for Internet Explorer (976325) MS09-072

Not Applicable (Active Directory Service should not be on CCMS server)

Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488) MS09-062

Vulnerabilities in Windows CryptoAPI Could Allow Spoofing (974571)

Cumulative Security Update of ActiveX Kill Bits (973525) MS09-055

Cumulative Security Update for Internet Explorer MS09-054 (974455)

Not Applicable (IIS should not be installed on CCMS server)

Not Applicable (IIS should not be installed on CCMS Replication server)

Vulnerabilities in SMBv2 Could Allow Remote Code Execution (975517)

Vulnerability in Message Queuing Could Allow Elevation of Privilege (971032)

Vulnerabilities in WINS Could Allow Remote Code Execution (969883)

Not Applicable (WINS should not be installed on CCMS server)

Vulnerability in ASP.NET in Microsoft Windows Could Allow Denial of Service (970957)

Cumulative Security Update for Internet Explorer MS09-034 (972260)

Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (969516)

Vulnerabilities in Microsoft DirectShow Could Allow Remote Code Execution (971633)

Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (968537) MS09-025

Vulnerability in Windows Search Could Allow Information Disclosure (963093)

No Dependency (Windows Search is not preinstalled in Windows Server 2003)

No Dependency (Windows Search is not preinstalled in Windows Server 2003)

No Dependency (Windows Search is not preinstalled in Windows Server 2003)

Vulnerabilities in Internet Information Services (IIS) Could Allow Elevation of Privilege

Cumulative Security Update for Internet Explorer MS09-019 (969897)

Vulnerabilities in Active Directory Could Allow Remote Code Execution (971055)

Cumulative Security Update for Internet Explorer MS09-014 (963027)

Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (961373)