Description: Install this update to resolve an issue in the Background Intelligenct Transfer Service (BITS).

Update type: Important

Release date: August 27, 2007

Applies to: All versions

Knowledge base: support.microsoft.com/kb/939159

Download link: 32-bit | 64-bit

Comments: When updates are being downloaded from Windows Update on a Windows Vista-based computer, you may experience the following symptoms:

• A dialog box appears that indicates that the host process for Windows Services has stopped working.
• After you restart the computer, you receive the following error message in a Windows Update dialog box:
  

  Some Updates were not installed
  Failed: xx updates
  Error(s) Found:
  Code 800706BA

• An event that resembles the following is logged in the Application log:
  

  Event Type: Error
  Event Source: Application Error
  Event Category: None
  Event ID: 1000
  Date: date
  Time: time
  Computer: computer name
  User: N/A
  Description: Faulting application svchost.exe_BITS, version 6.0.6000.16386, time stamp 0×4549adc4, faulting module qmgr.dll, version 7.0.6000.16386, time stamp 0×4549bd9f, exception code 0xc0000005

This problem occurs because the Background Intelligent Transfer Service (BITS) state files are corrupted. This problem stops the host process for Windows Services. This behavior prevents you from using BITS to transfer files.

Description: Kernel Patch Protection protects code and critical structures in the Windows kernel from modification by unknown code or data. This update adds additional checks to this protection for increased reliability, performance, and resiliency of Windows.

Update type: Recommended

Release date: August 14, 2007

Applies to: All 64-bit versions

Knowledge base: support.microsoft.com/kb/932596

Download link: 32-bit | 64-bit

Comments: While this updates adds additional checks to the Kernel Patch Protection system, it does not involve a security vulnerability, but does increase the reliability, performance, and resiliency provided by Kernel Patch Protection.

Description: Security issues have been identified that could allow an attacker to compromise a system running Internet Explorer and gain control over it.

Update type: Important

Release date: August 14, 2007

Applies to: All versions

Knowledge base: support.microsoft.com/kb/937143

Download link: 32-bit | 64-bit

Comments: Following are known issues with this update:

• Controls that prompt before they are loaded
  Note: This issue occurs on Web sites that do not use the recommended techniques. This issue is resolved by using the techniques that are described on the following Microsoft Web site

  http://msdn.microsoft.com/ieupdate

  When certain controls are loaded on a Web page, the controls are not correctly masked by the functionality of this update. These controls include controls that are used in Macromedia Shockwave Director, in QuickTime Player, and in Virtools Web Player. When Windows determines that a control is inactive, the system prompts the user before the control is loaded.

• Using monikers is no longer supported in Internet Explorer. For more information about this issue, click the following article number to view the article in the Microsoft Knowledge Base:
  906294 The use of monikers is no longer supported in Internet Explorer after installing the security updates provided by

…

Description: This security update resolves a privately reported vulnerability in the Vector Markup Language (VML) implementation in Windows that could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer.

Update type: Critical

Release date: August 14, 2007

Applies to: All versions

Knowledge base: support.microsoft.com/kb/938127

Download link: 32-bit | 64-bit

Comments: To view this vulnerability as a standard entry in the Common Vulnerabilities and Exposures list, see CVE-2007-1749.

Description: This important security update resolves two privately reported vulnerabilities in addition to other vulnerabilities identified during the course of the investigation. These vulnerabilities could allow an anonymous remote attacker to run code with the privileges of the logged on user. If a user subscribed to a malicious RSS feed in the Feed Headlines Gadget or added a malicious contacts file in the Contacts Gadget or a user clicked on a malicious link in the Weather Gadget an attacker could potentially run code on the system.

Update type: Important

Release date: August 14, 2007

Applies to: All versions

Knowledge base: support.microsoft.com/kb/938123

Download link: 32-bit | 64-bit

Comments: After you install Windows Gadgets security update 938123, you may experience the following issues in the RSS Feeds Gadget.

• Text in the RSS Feed Gadget's headline does not change from bold text to plain text until the next refresh occurs in Gadget.
• RSS Feed Gadget's headline is truncated and is shown as one line with ellipses. A new line is present in the title.

For more information, click the following article number to view the article in the Microsoft Knowledge Base:
941099 The headline of the RSS Feed

…

Description: This important security update resolves two privately reported vulnerabilities that could allow code execution if a user viewed a specially crafted file in Windows Media Player.

Update type: Important

Release date: August 14, 2007

Applies to: All versions

Knowledge base: support.microsoft.com/kb/936782

Download link: 32-bit | 64-bit

Comments: Though not for Vista specifically, most versions of Vista comes with Media Player installed, so those installs would be affected. Following are known issues with this update:

• After you apply this security update, you cannot open .swf files in Windows Media Player. You receive an error message that resembles the following
  

  you must install a later version of the Macromedia Flash Player…

  For more information, click the following article number to view the article in the Microsoft Knowledge Base:
  941197 After you apply security update 936782, you cannot open .swf files in Windows Media Player

• You cannot auto-dismiss the Windows Media Download dialog box that appears when you try to install a Microsoft Windows Media Player skin file. For more information, click the following article number to view the article in the Microsoft Knowledge Base:
  940893 You cannot auto-dismiss the Windows Media Download dialog box that

…