Internet Explorer 6.0: MS11-027: Cumulative security update for ActiveX kill bits: April 12, 2011

Posted by TechSupport

SUPPORT PROBLEM: MS11-027: Cumulative security update for ActiveX kill bits: April 12, 2011

Applications Supported:

SUPPORT SOLUTION:
Microsoft has released security bulletin MS11-027. To view the complete security bulletin, visit one of the following Microsoft websites: Home users:
http://www.microsoft.com/protect/computer/updates/bulletins/201104.mspx
(http://www.microsoft.com/protect/computer/updates/bulletins/201104.mspx)
: Download the updates for your home computer or laptop from the Microsoft Update website now: http://update.microsoft.com/microsoftupdate
(http://update.microsoft.com/microsoftupdate/)
IT professionals:
http://www.microsoft.com/technet/security/bulletin/MS11-027.mspx
(http://www.microsoft.com/technet/security/bulletin/MS11-027.mspx)
How to obtain help and support for this security update

For home users, no-charge support is available by calling 1-866-PCSAFETY in the United States and Canada or by contacting your local Microsoft subsidiary. For more information about how to contact your local Microsoft subsidiary for support issues with security updates, visit the Microsoft International Support website:

http://support.microsoft.com/common/international.aspx?rdpath=4
(http://support.microsoft.com/common/international.aspx?rdpath=4)
North American customers can also obtain instant access to unlimited no-charge email support or to unlimited individual chat support by visiting the following Microsoft website:

http://support.microsoft.com/oas/default.aspx?&prid=7552
(http://support.microsoft.com/oas/default.aspx?&prid=7552)
For enterprise customers, support for security updates is available through your usual support contacts.
Security update download packages

The following files are available for download from the Microsoft Download Center:For Windows 7 for 32-bit systems
3,
Collapse this imageExpand this imageDownload the Windows6.1-KB2508272-x86.msu package now.
(http://download.microsoft.com/download/4/8/a/48aa7e40-479a-4088-acf2-801e85216919/Windows6.1-KB2508272-x86.msu)
For Windows 7 for x64-based systems
3,
Collapse this imageExpand this imageDownload the Windows6.1-KB2508272-x64.msu package now.
(http://download.microsoft.com/download/d/5/2/d52ef04a-43ac-4b33-b40b-4dcdd45cb6cb/Windows6.1-KB2508272-x64.msu)
For Windows Server 2008 R2 for x64-based systems
3,
Collapse this imageExpand this imageDownload the Windows6.1-KB2508272-x64.msu package now.
(http://download.microsoft.com/download/5/1/a/51a20108-9184-4203-8044-138a6418e09b/Windows6.1-KB2508272-x64.msu)
For Windows Server 2008 R2 for Itanium-based systems
3,
Collapse this imageExpand this imageDownload the Windows6.1-KB2508272-ia64.msu package now.
(http://download.microsoft.com/download/0/f/e/0fe74e8d-9ba5-47cc-84ea-67c3de1be8be/Windows6.1-KB2508272-ia64.msu)
For Windows Vista, for Windows Vista Service Pack 1, and for Windows Vista Service Pack 2
3,
Collapse this imageExpand this imageDownload the Windows6.0-KB2508272-x86.msu package now.
(http://download.microsoft.com/download/c/b/2/cb29f2b4-dd2d-49f5-b78d-03bfb2cf7d19/Windows6.0-KB2508272-x86.msu)
For Windows Vista x64 Edition and for Windows Vista x64 Edition Service Pack 1
3,
Collapse this imageExpand this imageDownload the Windows6.0-KB2508272-x64.msu package now.
(http://download.microsoft.com/download/e/c/8/ec8ff504-0e0e-479f-b3bd-458d80588680/Windows6.0-KB2508272-x64.msu)
For Windows Server 2008 for 32-bit systems and for Windows Server 2008 for 32-bit systems Service Pack 2
3,
Collapse this imageExpand this imageDownload the Windows6.0-KB2508272-x86.msu package now.
(http://download.microsoft.com/download/a/a/3/aa3d912b-0d75-41bf-a2f1-6e25663e2dbf/Windows6.0-KB2508272-x86.msu)
For Windows Server 2008 for Itanium-based systems and for Windows Server 2008 for Itanium-based systems Service Pack 2
3,
Collapse this imageExpand this imageDownload the Windows6.0-KB2508272-ia64.msu package now.
(http://download.microsoft.com/download/7/2/4/724ab37a-8129-46f1-8195-112c18ad319b/Windows6.0-KB2508272-ia64.msu)
For Windows Server 2008 for x64-based systems and for Windows Server 2008 for x64-based systems Service Pack 2
3,
Collapse this imageExpand this imageDownload the Windows6.0-KB2508272-x64.msu package now.
(http://download.microsoft.com/download/0/1/a/01af6cc8-b003-47ee-8d20-7ae608c77874/Windows6.0-KB2508272-x64.msu)
For Windows XP Service Pack 3
3,
Collapse this imageExpand this imageDownload the WindowsXP-KB2508272-x86-ENU.exe package now.
(http://download.microsoft.com/download/9/9/3/99397b1e-41b7-4bc6-980b-01f10231abdc/WindowsXP-KB2508272-x86-ENU.exe)
For Windows XP Professional x64 Edition Service Pack 2
3,
Collapse this imageExpand this imageDownload the WindowsServer2003.WindowsXP-KB2508272-x64-ENU.exe package now.
(http://download.microsoft.com/download/e/5/7/e572851b-bb9b-46bf-9edd-aa4a53073065/WindowsServer2003.WindowsXP-KB2508272-x64-ENU.exe)
For Windows Server 2003 Service Pack 2
3,
Collapse this imageExpand this imageDownload the WindowsServer2003-KB2508272-x86-ENU.exe package now.
(http://download.microsoft.com/download/2/a/f/2afda7ea-dfaf-402b-9828-13471ce01104/WindowsServer2003-KB2508272-x86-ENU.exe)
For Windows Server 2003 for Itanium-based systems Service Pack 2
3,
Collapse this imageExpand this imageDownload the WindowsServer2003-KB2508272-ia64-ENU.exe package now.
(http://download.microsoft.com/download/f/a/3/fa3a222f-5cb1-47b2-80e2-6f3704c49675/WindowsServer2003-KB2508272-ia64-ENU.exe)
For Windows Server 2003 x64 Edition Service Pack 2
3,
Collapse this imageExpand this imageDownload the WindowsServer2003.WindowsXP-KB2508272-x64-ENU.exe package now.
(http://download.microsoft.com/download/0/d/f/0df9d3e7-d3cf-4a99-84e0-6715ee05bb6b/WindowsServer2003.WindowsXP-KB2508272-x64-ENU.exe)

Release Date: April 12, 2011
For more information about how to download Microsoft support files, click the following article number to view the article in the Microsoft Knowledge Base:
119591

(http://support.microsoft.com/kb/119591/
)
How to obtain Microsoft support files from online services

Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help prevent any unauthorized changes to the file.
Security update deployment

Windows XP (all versions)

Reference table
3,

The following table contains the security update information for this software. You can find more information in the “Deployment information” section.
Collapse this tableExpand this tableInclusion in future service packsThe update for this issue will be included in a future service pack or update rollupDeploymentInstalling without requiring user interventionWindows XP Service Pack 2 and Windows XP Service Pack 3:
Windowsxp-KB2508272-x86-enu/quietWindows XP Professional and Windows XP Professional Service Pack 2, x64-based versions:
WindowsServer2003.WindowsXP-KB2508272-x64-enu/quietInstalling without restartingWindows XP Service Pack 2 and Windows XP Service Pack 3:
Windowsxp-KB2508272-x86-enu/norestartWindows XP Professional and Windows XP Professional Service Pack 2, x64-based versions:
WindowsServer2003.WindowsXP-KB2508272-x64-enu/norestartUpdate log fileAll supported versions of Windows XP and of Windows XP Professional:
KB2508272.logMore informationSee the “Detection and deployment tools and guidance” section.Restart requirementRestart required?In some cases, this update does not require a restart. If a restart is required, you receive a message that advises you to restart. HotpatchingNot applicable.Removal informationAll supported versions of Windows XP and of Windows XP Professional:
Use the Add or Remove Programs item in Control Panel, or use the Spuninst.exe utility that is located in the %Windir%\$NTUninstallKB2508272$\Spuninst folder.Registry subkey verificationWindows XP Service Pack 2 and Windows XP Service Pack 3:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows XP\SP4\KB2508272\FilelistWindows XP Professional and Windows XP Professional Service Pack 2, x64-based versions:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows XP Version 2003\SP3\KB2508272\FilelistNote The security update for supported versions of Windows XP Professional x64 Edition is the same as the security update for supported versions of Windows Server 2003 x64 Edition.

Deployment information
3,
To install the update
4,
For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
824684

(http://support.microsoft.com/kb/824684/
)
Description of the standard terminology that is used to describe Microsoft software updates
This security update supports the following setup switches.
Collapse this tableExpand this tableSwitchDescription/helpDisplays the command-line options.Setup modes/passiveUnattended Setup mode. No user interaction is required. However, the installation status is displayed. If a restart is required at the end of Setup, a dialog box is presented to the user by using a timer warning. This warning says that the computer will restart in 30 seconds. /quietQuiet mode. This is the same as unattended mode, but no status or error messages are displayed. Restart options/norestartDoes not restart the computer when the installation is complete./forcerestartRestarts the computer after installation and forces other applications to close when the computer shuts down. Open files are not saved when the applications close. /warnrestart[:x]Presents a dialog box to the user together with a timer warning that the computer will restart in x seconds. (The default setting is 30 seconds.) Intended for use with the /quiet switch or with the /passive switch. /promptrestartDisplays a dialog box that prompts the local user to allow for a restart.Special options/overwriteoemOverwrites OEM files without prompting./nobackupDoes not back up files that are needed for uninstallation./forceappscloseForces other programs to close when the computer shuts down./log:pathAllows for the redirection of installation log files./integrate:pathIntegrates the update into the Windows source files. These files are located by using the path that is specified in the switch. /extract[:path]Extracts files, and the Setup program is not started./EREnables extended error reporting./verboseEnables verbose logging. During installation, creates a %Windir%\CabBuild.log file. This log details the files that are copied. When this switch is used, the installation may run slower. Note You can combine these switches into one command. For backward compatibility, the security update also supports many of the setup switches that the earlier version of the Setup program uses.

For more information about the supported installation switches, click the following article number to view the article in the Microsoft Knowledge Base:
262841

(http://support.microsoft.com/kb/262841/
)

Command-line switches for Windows software update packages
To remove the update
4,

This security update supports the following setup switches.
Collapse this tableExpand this tableSwitchDescription/helpDisplays the command-line options.Setup modes/passiveUnattended Setup mode. No user interaction is required. However, the installation status is displayed. If a restart is required at the end of Setup, a dialog box is presented to the user by using a timer warning. This warning says that the computer will restart in 30 seconds. /quietQuiet mode. This is the same as unattended mode, but no status or error messages are displayed. Restart options/norestartDoes not restart the computer when the installation is complete./forcerestartRestarts the computer after installation and forces other applications to close when the computer shuts down. Open files are not saved when the applications close. /warnrestart[:x]Presents a dialog box to the user together with a timer warning that the computer will restart in x seconds. (The default setting is 30 seconds.) Intended for use with the /quiet switch or with the /passive switch. /promptrestartDisplays a dialog box that prompts the local user to allow for a restart.Special options/forceappscloseForces other programs to close when the computer shuts down./log:pathAllows for the redirection of installation log files.To verify that the update was applied
4,
Microsoft Baseline Security Analyzer
To verify that a security update was applied to an affected system, you may be able to use the Microsoft Baseline Security Analyzer (MBSA) tool. See the “Detection and deployment tools and guidance” section for more information. Registry subkey verification
You may also be able to verify the files that this security update has installed by reviewing the registry subkeys listed in the reference table in this section.
These registry subkeys may not contain a complete list of installed files. Also, these registry subkeys may not be created correctly when an administrator or an OEM integrates or slipstreams this security update into the Windows installation source files. Windows Server 2003 (all versions)

Reference table
3,

The following table contains the security update information for this software. You can find more information in the “Deployment information” section.
Collapse this tableExpand this tableInclusion in future service packsThe update for this issue will be included in a future service pack or update rollupDeploymentInstalling with requiring user interventionWindows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2:Windowsserver2003-KB2508272-x86-enu /quietWindows Server 2003 and Windows Server 2003 Service Pack 2, x64-based versions:WindowsServer2003.WindowsXP-KB2508272-x64-enu /quietWindows Server 2003 with SP1 for Itanium-based systems and Windows Server 2003 with SP2 for Itanium-based systems:Windowsserver2003-KB2508272-ia64-enu /quietInstalling without restartingWindows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2:Windowsserver2003-KB2508272-x86-enu /norestartWindows Server 2003 and Windows Server 2003 Service Pack 2, x64-based versions:WindowsServer2003.WindowsXP-KB2508272-x64-enu /norestartWindows Server 2003 with SP1 for Itanium-based systems and Windows Server 2003 with SP2 for Itanium-based systems:Windowsserver2003-KB2508272-ia64-enu /norestartUpdate log fileAll supported Windows Server 2003 x86-based versions, x64-based versions, and Itanium-based versions of Windows Server 2003:KB2508272.logMore informationSee the “Detection and deployment tools and guidance” section.Restart requirementRestart required?In some cases, this update does not require a restart. If a restart is required, you receive a message that advises you to restart. HotpatchingThis security update does not support Hotpatching. For more information about Hotpatching, see Microsoft Knowledge Base Article 897341. Removal informationAll supported x86-based versions, x64-based versions, and Itanium-based versions of Windows Server 2003:Use the Add or Remove Programs item in Control Panel, or use the Spuninst.exe utility that is located in the Spuninst.exe utility that is located in the %Windir%\$NTUninstallKB2508272$\Spuninst folder.Registry subkey verificationAll supported versions of Windows Server 2003:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP3\KB2508272\FilelistDeployment information
3,
To install the update
4,
For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
824684

(http://support.microsoft.com/kb/824684/
)
Description of the standard terminology that is used to describe Microsoft software updates
This security update supports the following setup switches.
Collapse this tableExpand this tableSwitchDescription/helpDisplays the command-line options.Setup modes/passiveUnattended Setup mode. No user interaction is required. However, the installation status is displayed. If a restart is required at the end of Setup, a dialog box is presented to the user by using a timer warning. This warning says that the computer will restart in 30 seconds. /quietQuiet mode. This is the same as unattended mode, but no status or error messages are displayed. Restart options/norestartDoes not restart the computer when the installation is complete./forcerestartRestarts the computer after installation and forces other applications to close when the computer shuts down. Open files are not saved when the applications close. /warnrestart[:x]Presents a dialog box to the user together with a timer warning that the computer will restart in x seconds. (The default setting is 30 seconds.) Intended for use with the /quiet switch or with the /passive switch. /promptrestartDisplays a dialog box that prompts the local user to allow for a restart.Special options/overwriteoemOverwrites OEM files without prompting./nobackupDoes not back up files that are needed for uninstallation./forceappscloseForces other programs to close when the computer shuts down./log:pathAllows for the redirection of installation log files./integrate:pathIntegrates the update into the Windows source files. These files are located by using the path that is specified in the switch. /extract[:path]Extracts files, and the Setup program is not started./EREnables extended error reporting./verboseEnables verbose logging. During installation, creates a %Windir%\CabBuild.log. This log details the files that are copied. By using this switch, the installation may run slower. Note You can combine these switches into one command. For backward compatibility, the security update also supports many of the setup switches that the earlier version of the Setup program uses.

For more information about the supported installation switches, click the following article number to view the article in the Microsoft Knowledge Base:
262841

(http://support.microsoft.com/kb/262841/
)

Command-line switches for Windows software update packages
To remove the update
4,

This security update supports the following setup switches.
Collapse this tableExpand this tableSwitchDescription/helpDisplays the command-line options.Setup modes/passiveUnattended Setup mode. No user interaction is required. However, the installation status is displayed. If a restart is required at the end of Setup, a dialog box is presented to the user by using a timer warning. This warning says that the computer will restart in 30 seconds. /quietQuiet mode. This is the same as unattended mode, but no status or error messages are displayed. Restart options/norestartDoes not restart the computer when the installation is complete./forcerestartRestarts the computer after installation and forces other applications to close when the computer shuts down. Open files are not saved when the applications close. /warnrestart[:x]Presents a dialog box to the user together with a timer warning that the computer will restart in x seconds. (The default setting is 30 seconds.) Intended for use with the /quiet switch or with the /passive switch. /promptrestartDisplays a dialog box that prompts the local user to allow for a restart.Special options/forceappscloseForces other programs to close when the computer shuts down./log:pathAllows for the redirection of installation log files.To verify that the update was applied
4,
Microsoft Baseline Security Analyzer
To verify that a security update was applied to an affected system, you may be able to use the Microsoft Baseline Security Analyzer (MBSA) tool. See the “Detection and deployment tools and guidance” section for more information. Registry subkey verification
You may also be able to verify the files that this security update has installed by reviewing the registry subkeys that are listed in the reference table in this section.
These registry subkeys may not contain a complete list of installed files. Also, these registry subkeys may not be created correctly when an administrator or an OEM integrates or slipstreams this security update into the Windows installation source files. Windows Vista (all versions)

(http://support.microsoft.com/kb/824684/
)
Description of the standard terminology that is used to describe Microsoft software updates
This security update supports the following setup switches.
Collapse this tableExpand this tableSupported security update installation switchesSwitchDescription/?, /h, /helpDisplays help on supported switches. /quietSuppresses the display of status or error messages. /norestartWhen this switch is combined with the /quiet switch, the system is not restarted after installation even if a restart is required to complete the installation.
For more information about the installer, click the following article number to view the article in the Microsoft Knowledge Base:
934307

(http://support.microsoft.com/kb/934307/
)

Description of the Windows Update Stand-alone Installer (Wusa.exe) and of .msu files in Windows Vista and in Windows Server 2008
To verify that the update was applied
4,
Microsoft Baseline Security Analyzer
To verify that a security update was applied to an affected system, you may be able to use the Microsoft Baseline Security Analyzer (MBSA) tool. See the “Detection and deployment tools and guidance” section for more information.Windows Server 2008 (all versions)

Reference table
3,

The following table contains the security update information for this software. You can find more information in the “Deployment information” section.
Collapse this tableExpand this tableInclusion in future service packsThe update for this issue will be included in a future service pack or update rollupDeploymentInstalling without requiring user interventionAll supported 32-bit versions of Windows Server 2008:
Windows6.0-KB2508272-x86/quietAll supported 64-bit versions of Windows Server 2008:
Windows6.0-KB2508272-x64/quietAll supported Itanium-based versions of Windows Server 2008:
Windows6.0-KB2508272-ia64/quietInstalling without restartingAll supported 32-bit versions of Windows Server 2008:
Windows6.0-KB2508272-x86/quiet/norestartAll supported 64-bit versions of Windows Server 2008:
Windows6.0-KB2508272-x64/quiet/norestartAll supported Itanium-based versions of Windows Server 2008:
Windows6.0-KB2508272-ia64/quiet/norestartMore informationSee the “Detection and deployment tools and guidance” section.Restart requirementRestart required?In some cases, this update does not require a restart. If a restart is required, you receive a message that advises you to restart. HotpatchingNot applicable. Removal informationWUSA.exe does not support the uninstallation of updates.
To uninstall an update that is installed by WUSA, open Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
Registry subkey verificationA registry subkey does not exist to validate the presence of this update. Deployment information
3,
To install the update
4,

When you install this security update, the installer checks whether one or more of the files that are being updated on the system have previously been updated by a Microsoft hotfix.
For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
824684

(http://support.microsoft.com/kb/934307/
)

Description of the Windows Update Stand-alone Installer (Wusa.exe) and of .msu files in Windows Vista and in Windows Server 2008
To verify that the update was applied
4,
Microsoft Baseline Security AnalyzerTo verify that a security update was applied to an affected system, you may be able to use the Microsoft Baseline Security Analyzer (MBSA) tool. See the “Detection and deployment tools and guidance” section for more information. Detection and deployment tools and guidance

This section describes how to manage the software and security updates that you have to deploy to the servers, to the desktop computers, and to the mobile computers in your organization. For more information, visit the following Microsoft TechNet webpage:
http://technet.microsoft.com/en-us/updatemanagement/default.aspx
(http://technet.microsoft.com/en-us/updatemanagement/default.aspx)
For more information about security in Microsoft products, visit the following Microsoft TechNet webpage:
http://technet.microsoft.com/en-us/security/default.aspx
(http://technet.microsoft.com/en-us/security/default.aspx)
Security updates are available from Microsoft Update, from Windows Update, and from Office Update. Security updates are also available at the Microsoft Download Center. You can find them most easily by searching for the keyword “security update.”Finally, security updates can be downloaded from the Microsoft Update Catalog. For more information, visit the following Microsoft webpage:
http://catalog.update.microsoft.com/v7/site/Home.aspx
(http://catalog.update.microsoft.com/v7/site/Home.aspx)
The Microsoft Update Catalog provides a catalog of content that is searchable and that is available through Windows Update and through Microsoft Update. This content includes security updates, drivers, and service packs. By using a security bulletin number such as “MS08-010″ for your search, you can add all the applicable updates to your basket. You can also add different languages for an update to your basket, and you can download the content to any folder that you want. For more information about the Microsoft Update Catalog, visit the following Microsoft webpage:
http://catalog.update.microsoft.com/v7/site/faq.aspx
(http://catalog.update.microsoft.com/v7/site/faq.aspx)
Detection and deployment guidance
3,
Microsoft has provided detection and deployment guidance for this month’s security updates. This guidance will also help IT professionals understand how they can use various tools to help deploy the security update. These tools include Windows Update, Microsoft Update, Office Update, Microsoft Baseline Security Analyzer (MBSA), the Office Detection Tool, Microsoft Systems Management Server (SMS), and the Extended Security Update Inventory Tool.
For more information, click the following article number to view the article in the Microsoft Knowledge Base:
910723

(http://support.microsoft.com/kb/910723/
)

Summary list of monthly detection and deployment guidance articles
Microsoft Baseline Security Analyzer
3,
Microsoft Baseline Security Analyzer (MBSA) lets administrators scan local and remote systems for missing security updates. MBSA can also identify common security misconfigurations. For more information about MBSA, visit the following Microsoft TechNet webpage:
http://technet.microsoft.com/en-us/security/cc184924.aspx
(http://technet.microsoft.com/en-us/security/cc184924.aspx)
The following table provides the MBSA detection summary for this security update.
Collapse this tableExpand this tableSoftwareMBSA 2.1Windows 2000 with Service Pack 4 YesWindows XP Service Pack 2 and Windows XP Service Pack 3YesWindows XP Professional and Windows XP Professional Service Pack 2, x64-based versionsYesWindows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2YesWindows Server 2003 and Windows Server 2003 Service Pack 2, x64-based versionsYesWindows Server 2003 with SP1 for Itanium-based systems and Windows Server 2003 with SP2 for Itanium-based systemsYesWindows Vista and Windows Vista Service Pack 1YesWindows Vista and Windows Vista Service Pack 1, 64-bit versions YesWindows Server 2008 for 32-bit systemsYesWindows Server 2008 for 64-bit systemsYesWindows Server 2008 for Itanium-based systemsYesFor more information about MBSA 2.1, visit the following Microsoft webpage for MBSA 2.1 Frequently Asked Questions:
http://technet.microsoft.com/en-us/security/cc184922.aspx
(http://technet.microsoft.com/en-us/security/cc184922.aspx)
Windows Server Update Services
3,
By using Windows Server Update Services (WSUS), administrators can deploy the latest critical updates and security updates for Windows 2000 operating systems and for later versions, for Microsoft Office XP and for later versions, for Microsoft Exchange Server 2003, and for Microsoft SQL Server 2000 and for later versions. For more information about how to deploy this security update by using WSUS, visit the following Microsoft TechNet webpage:
http://technet.microsoft.com/en-us/wsus/bb466208.aspx
(http://technet.microsoft.com/en-us/wsus/bb466208.aspx)
Systems Management Server
3,

The following table provides the SMS detection and deployment summary for this security update.
Collapse this tableExpand this tableSoftwareSMS 2.0SMS 2003 with SUSFPSMS 2003 with ITMUConfiguration Manager 2007Windows 2000 with Service Pack 4 YesYesYesYesWindows XP Service Pack 2 and Windows XP Service Pack 3YesYesYesYesWindows XP Professional and Windows XP Professional Service Pack 2, x64-based versionsNoNoYesYesWindows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2YesYesYesYesWindows Server 2003 and Windows Server 2003 Service Pack 2, x64-based versionsNoNoYesYesWindows Server 2003 with SP1 for Itanium-based systems and Windows Server 2003 with SP2 for Itanium-based systemsNoNoYesYesWindows Vista and Windows Vista Service Pack 1NoNoSee the “Note for Windows Vista and for Windows Server 2008″ section later in this articleYesWindows Vista and Windows Vista Service Pack 1, 64-bit versionsNoNoSee the “Note for Windows Vista and for Windows Server 2008″ section later in this articleYesWindows Server 2008 for 32-bit systemsNoNoSee the “Note for Windows Vista and for Windows Server 2008″ section later in this articleYesWindows Server 2008 for 64-bit systemsNoNoSee the “Note for Windows Vista and for Windows Server 2008″ section later in this articleYesWindows Server 2008 for Itanium-based systemsNoNoSee the “Note for Windows Vista and for Windows Server 2008″ section later in this articleYesFor SMS 2.0 and for SMS 2003, the SMS SUS Feature Pack (SUSFP) that includes the Security Update Inventory Tool (SUIT) can be used by SMS to detect security updates. For more information, visit the following Microsoft webpage for downloads for Systems Management Server 2.0:
http://technet.microsoft.com/en-us/sms/bb676799.aspx
(http://technet.microsoft.com/en-us/sms/bb676799.aspx)
For SMS 2003, the SMS 2003 Inventory Tool for Microsoft Updates (ITMU) can be used by SMS to detect security updates that are offered by Microsoft Update and that are supported by Windows Server Update Services. For more information about the SMS 2003 ITMU, visit the following Microsoft webpage for SMS 2003 Inventory Tool for Microsoft updates:
http://technet.microsoft.com/en-us/sms/bb676783.aspx
(http://technet.microsoft.com/en-us/sms/bb676783.aspx)
SMS 2003 can also use the Microsoft Office Inventory Tool to detect required updates for Microsoft Office applications. For more information, visit the following Microsoft webpages: Systems Management Server 2003 software update scanning tools
http://technet.microsoft.com/en-us/sms/bb676786.aspx
(http://technet.microsoft.com/en-us/sms/bb676786.aspx)
Downloads for Systems Management Server 2003

http://technet.microsoft.com/en-us/sms/bb676766.aspx
(http://technet.microsoft.com/en-us/sms/bb676766.aspx)
System Center Configuration Manager 2007 (Configuration Manager 2007) uses WSUS 3.0 for detecting updates. For more information about Configuration Manager 2007 software update management, visit the following Microsoft webpage:
http://technet.microsoft.com/en-us/library/bb735860.aspx
(http://technet.microsoft.com/en-us/library/bb735860.aspx)
Note for Windows Vista and for Windows Server 2008
4,
Microsoft Systems Management Server 2003 with Service Pack 3 includes support for Windows Vista and for Windows Server 2008. For more information about SMS, visit the following Microsoft webpage:
http://www.microsoft.com/smserver/default.mspx
(http://www.microsoft.com/smserver/default.mspx)

For more information about detection and deployment guidance articles, click the following article number to view the article in the Microsoft Knowledge Base:
910723

(http://support.microsoft.com/kb/910723/
)

Summary list of monthly detection and deployment guidance articles
Windows Vista (all versions)

(http://support.microsoft.com/kb/824684/
)
Description of the standard terminology that is used to describe Microsoft software updates
This security update supports the following setup switches.
Collapse this tableExpand this tableSupported security update installation switchesSwitchDescription/?, /h, /helpDisplays help on supported switches. /quietSuppresses the display of status or error messages. /norestartWhen this switch is combined with the /quiet switch, the system is not restarted after installation even if a restart is required to complete the installation.
For more information about the installer, click the following article number to view the article in the Microsoft Knowledge Base:
934307

(http://support.microsoft.com/kb/934307/
)

Reference table
3,

The following table contains the security update information for this software. You can find more information in the “Deployment information” section.
Collapse this tableExpand this tableInclusion in future service packsThe update for this issue will be included in a future service pack or update rollupDeploymentInstalling without requiring user interventionAll supported 32-bit versions of Windows Server 2008:
Windows6.0-KB2508272-x86/quietAll supported 64-bit versions of Windows Server 2008:
Windows6.0-KB2508272-x64/quietAll supported Itanium-based versions of Windows Server 2008:
Windows6.0-KB2508272-ia64/quietInstalling without restartingAll supported 32-bit versions of Windows Server 2008:
Windows6.0-KB2508272-x86/quiet/norestartAll supported 64-bit versions of Windows Server 2008:
Windows6.0-KB2508272-x64/quiet/norestartAll supported Itanium-based versions of Windows Server 2008:
Windows6.0-KB2508272-ia64/quiet/norestartMore informationSee the “Detection and deployment tools and guidance” section.Restart requirementRestart required?In some cases, this update does not require a restart. If a restart is required, you receive a message that advises you to restart. HotpatchingNot applicable. Removal informationWUSA.exe does not support the uninstallation of updates.
To uninstall an update that is installed by WUSA, open Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
Registry subkey verificationA registry subkey does not exist to validate the presence of this update. Deployment information
3,
To install the update
4,

When you install this security update, the installer checks whether one or more of the files that are being updated on the system have previously been updated by a Microsoft hotfix.
For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
824684

(http://support.microsoft.com/kb/934307/
)

Description of the Windows Update Stand-alone Installer (Wusa.exe) and of .msu files in Windows Vista and in Windows Server 2008
To verify that the update was applied
4,
Microsoft Baseline Security AnalyzerTo verify that a security update was applied to an affected system, you may be able to use the Microsoft Baseline Security Analyzer (MBSA) tool. See the “Detection and deployment tools and guidance” section for more information. Detection and deployment tools and guidance

(http://support.microsoft.com/kb/910723/
)

For more information about detection and deployment guidance articles, click the following article number to view the article in the Microsoft Knowledge Base:
910723

(http://support.microsoft.com/kb/910723/
)

Summary list of monthly detection and deployment guidance articles

For File Repair and Data Recovery, visit File Repair / Data Recovery

Category: Internet Explorer 6.0