Slashdot Mirror
Microsoft to Patch Problem Patch
slowroller writes to mention an eWeek article about a new patch to fix issues raised in their most recent release. From the article: "The company's plan is to target the rerelease only to Windows users who are affected. In a blog entry, Toulouse said the company's patch deployment technologies will have "detection logic" built into them to only offer the revised update to customers who don't have MS06-015 or are having the problem. The glitches, which Microsoft claims affect only a tiny fraction of the 120 million installations of the patch, stem from a new binary called VERCLSID.EXE that validates shell extensions before they are instantiated by the Windows Shell or Windows Explorer. On systems running Hewlett-Packard's Share-to-Web software, Sunbelt's Kerio Personal Firewall and some NVIDIA Drivers, users complained that the new binary stopped responding."
Recursive patching at last!
I am not left-handed, either!
So let me get this straight...
A critical flaw for *some* users is not patched universally.
Time is wasted while "detection logic" is coded. (Ooooh long patch time!!)
That stinks.
And what happens when the criteria for the patch is met? Does Windows XP then detect it an download it?
Just give me a patch. I don't need to be an experimental "detection logic" tester.
Another consultant who stuck it out.
"We are the Priests, of the Temples of Syrinx..."
Everyone complains that Microsoft does not release their patches fast enough or that they don't do adequate testing. They can't win either way.
Shh.
I was affected by the problem and figured it out since someone else I knew had mentioned that Windows Update broke their computer too. Lousy Microsoft works badly with HP crap programming these days. HP's programs really stink. They ignore attempts to stop software upgrade checks, crash with some deep freeze products, and don't work on small resolution screens like 640X480.
Oh You POS
For some Windows users, there will be two Patch Tuesdays in April.
;)
So, you can get two patchs and two tacos on the same day? Wow, now if MS can do the pizza deal, I might just install their OS!
Life was hell, then I discovered Linux...
Click here for the patch.
The big problem when they do this is compatibility testing. I work at numerous companies where we need to read through each patch to see what they 'fix'. Now when Microsoft does this we will just have to guess what they might break in a legacy application deployed across the world.
del c:\windows\system32\verclsid.exe
It works.
Waiting for ad.doubleclick.net...
hehe microsoft got owned
I'm an Apple user, and it always struck me as odd that they are nervous about upgrades. Each time there's an update, some brave person will install it and report as to how it behaves on that specific Mac. Is it the Firewire-delete-external-harddrive-bug from many years ago that still lives on in memory? Or is it that Apple breaks things in their updates? I have a Powerbook and have not yet experienced that updates hav broken anything on it or my familys Macs. See this forum for more info...
Nowhere did Microsoft identify WHAT disks, WHY, or HOW. It was a "throwaway line" like that referenced in the present article. Microsoft was happy to say that LBA48 was supported by Windows 2000 Service Pack 4, but NOT that if you installed it first WITHOUT Service Pack 4 and then installed SP4, that Windows 2000 would silently wait until you actually tried to use the larger partitions before trashing your hard drive.
Is it just me or wouldnt it make more sense to just have three options for updates, 1) On (or Make me safe please) Deault for all OEM and Home versions 2) Off (or I Dont Care, and whilst your at it get me on one of those botnet things) 3) Corporate (or Same as Off, - We have at least one tech who will check the patches and apply them as he sees fit) Default for corporates (VLK Media users) That way your average user will just get the patches unless they decide otherwise, and your corporates can do the sensible thing of checking their own systems first. What I am trying to say is that the logic should be with the consumer, a corporate user might not want to patch something that (they think) will not impact them, whilst home users should get every patch available just in case. The logic element of only applying patches in certain circumstances is a bit off as you end up with even more possible system configurations. Ive been down this route before with MS patches for MS SQL Server, we had an issue that MS KB listed as requiring a patch that you had to ask for, (apparently it was a rare issue that was somehow setup / hardware specific). We were 100% up to date with our patching on all our servers and then had to do this install manually on a load of boxes, about 6 months later the origional problem occured again on our test systems when another patch patched our current patch.... That little shenanigan cost me my 95% uptime record (we didnt bother with 99.999% because in a mixed environment it wasnt attainable if we were patching our Windows boxes...) I hope that there is a point in this post somewhere, Ive not slept for about 60 hours so if there isnt, well hey. (Oh and the good news is Ive set up my own company since this little story and now I have a 100% security and uptime record with MS software, I have achieved this by not using any....)
Seriously? There are flaws in Microsoft code? Maybe it's news that a patch is actually going to be released but with all the problems in Windows, is this even news?
I've always pictured the color of OS zealotry as a sort of bright flamingo pinkish hue
I have a friend in law school who was a victim of this last patch. She was complaining that attempting to use the menubar of any IE-based interface caused her system to lock up. She could double click on an icon to open a document, but she could not save it without locking up. (I don't know if she could use CTRL-S.)
I noticed that my laptop's touchpad started acting the way the little markings said it should (i.e., the scroll part of the pad finally scrolls). This is quite annoying after having gotten used to it _not_ working.
What those who want activist courts fear is rule by the people.
I wonder how this will appear in WSUS. Critical update? Update Rollup? I've got a couple HP's on site and I've got everything set to auto-install criticals & security updates, everything else is admin-approve.
MS may make buggy insecure software, but at least WSUS lets you keep decent tabs on how insecure your boxes are.
There are some people that if they don't know, you can't tell 'em.
I fear that the following is because of the patch/update.
All of my Visual Studio versions (2003, 2005 express) have stopped working. They display a message of "unknown error" when starting. I can only get them to run if I shut down explorer.exe before launching them.
I've been using a ux theme patch for years to be able to use unsigned themes.
Has anyone experienced similar problems? Can anyone suggest a solution?
yes it goes on and on my friend. Some people started using it, not knowing what it was, and they'll continue using it forever just because...This is the patch that never ends, yes it goes on and on my friend... :-)
"Only two things are infinite, the universe and human stupidity, and I'm not sure about the former."
I've already encountered two computers on my companies network that were having this annoying problem. There are probably other systems that will pop up with this problem next week. Here's a few different temporary fixes, but I'm not sure how effective they are for more than a few days (or atleast until Microsoft offers a patch):
1. Directly from MS.
2. Rename C:\WINDOWS\SYSTEM32\VERCLSID.EXE to something else (i.e. VERCLSID.OLD) and turn off automatic updates.. otherwise it will try to update Windows again and re-add the executable.
3. Reinstall the HP application. I didn't think that this would work since it appears to reinstall Share-to-Web software, but everything seemed fine afterwards.. so far for one day atleast.
The real annoying thing about this bug is that I think it effects everything using the explorer shell. Click on the arrow at the end of your address bar in IE? Locks the app. Click on arrow to expand your drives while trying to attach a file to email? Locks the app. I'm sure it does the same thing all over the OS when you are trying to do the same function, but those are the only two I really came across before I wanted to fix the problem ASAP.
At work today we were trying to figure out why all of our servers were locking up every time we tried to right-click anywhere. THANKS MICROSOFT! Thicrosoft.
I know this is not a popular opinion here, but MSFT really does have a tough job, if you are objective about it, from an engineering point of view.
This issue is a bit more complicated than you think.
I have Kerio Personal Firewall and an Nvidia video card and my system is running fine. I guess I got lucky.
You want to know who isn't running Firefox 2.x? They spell it "definately" and "rediculous".
Try as they might, companies can't validate everything. Apple has a much easier time of it since they largely control the hardware, but there's still a ton of devices one can add to a Mac, and then of course the software. This one on Windows conflicts with certian 3rd party software... But only in some situations. I run Kerio and have an nVidia card, yet have no problems.
So it's easily possible to go on with your life and never experience a problem with an update, but it does happen sometimes. It can really make peopel skittish too, unfortunately. People don't want to do something that could break their computer (understandibly) and the thought process is along the lines of "Well it works now, and an update might break it, so I should just not update."
At work we don't let our servers auto install patches for just this reason. We want to test them on less critical systems first. Now 999 times out of 1000, they work just fine. However, every so often we have something break. Happened not to long ago with a Solaris 10 patch. I never found out what went wrong precisely, but our Sun guy commented he'd messed up our 10 test box.
Application of this patch MS06-015 (KB 908531) may break: - "register under..." in excel 2003 and word 2003 - norton ghost 9.0 - Wireless network - Ms Word Looks that this patch just breaks your PC thus the security wholes are not a problem any more.
...that Microsoft doesn't make cars.
People still use 640x480? I know when my Win98 box got fubar'd and I had to reboot in safe mode, 640x480 wouldn't even display half my desktop. =(
Windows has detected an undetectable error.
Now I can't watch my pron!!
The worst of it is that even when you uninstall the damn patches, your system remains screwed up. Have to reinstall Windows jus so I can get my HP Scanner & Cameras working again, screwed up my Nvidia drivers, have to wipe and reinstall windows to get it working right, screwed up DX9, have to wipe and reinstall due to other patches. Thanks MSFT, I guess I'll go back to using Gentoo once the damn semester ends and I don't need your buggy patches.
The funniest thing about it is my scanner and camera work better under linux, while the xorg nv driver is only 200 fps slower in glxgears then the Nvidia closed source driver.
Is that even a word? Is anyone else reading this word for the first time? It shows up in the dictionary.com database as a completely unrelated word. So how long has "instantiated" been the passive voice of "to load an instance of"?
"Detection logic" sounds like one of them, what do you call thems... ALGORITHMS! Yeah, that's it. Ought to get a patent on that.
The bug seems to that Mac users are running Windows. This has upset the entire Microsoft culture. Therefore, all Macs running Windows will be erased and set back to running OS X. How else will Microsoft actually make money selling Office, since only the Mac users pay for it?
In Soviet Russia, duplicate comments repost YOU.
it's a blue bright blue Saturday hey hey
XP without SP1 will do this as well. I once reinstalled XP onto a machine that had an 80GB system drive and a 200GB data drive. It installed onto the smaller drive properly, but the disk manager cheerfully and silently altered the partition on the 200GB drive to fit within 137GB.
It looked like all the data had been wiped, but I shut down, disconnected the big drive, installed SP1 and reattached the drive. The partition was still hosed, but Partition Rescue got it back again. Not what you need on a Friday afternoon...
"I've got more toys than Teruhisa Kitahara."
They have a created a Ver2 patch based on patch Ver1 of this .EXE, and it's targetted to a specific set of users, what happens if they need a Ver3 patch later on in the year? Which version do they patch (Ver1 or Ver 2 or both) and send out? Are they going to create Ver3 from Ver2 on the assumption that the Ver2 will not create any problems for those still using Ver1 (i.e. those not part of this targetted release of Ver2).
"The hands that help are better far than lips that pray." - Robert Ingersoll (1833-1899)
Ok. This patch is really funny - just RTFA:
"What the new [re-engineered] update essentially does is simply add the affected third-party software to an 'exception list' so that the problem does not occur."
So what they did? Made a patch, that breaks some functionality and then added some exceptions not to use it, where it breaks things.
I've got no idea how did they let it happen... patch is basically broken, they know it, some applications don't use that patch, because it breaks them and old bugs normally corrected by ver1 patch are still present there. What was the point of releasing patches again?
Worst support ever...
Steve: Ok, guys, I love this company...repeat...I looove this company (throws chair around). Bill: And remember, if it compiles, it ships... Dev-Team: But we're already special casing here... Steve: (looking angry) Bill: If it compiles, it is good enough for shipping, let the active user basis sort it out... Dev-Team: Well, look this special case here, where it says that all of Microsoft is GOOD and everything else is BAD, it might cause systems to go awry... Bill: It's awry in the first place, so don't care on fixing this until it is required to be fixed, we definetly can introduce more special casing if required...does it compile already? Dev-Team: Well, er, yes, a few errors and a few warnings, but no black box testing was done yet... Bill: Testing? Steve: (whispering into Bill's ear) you know that sort of thing that would prevent us from shipping early... Bill: Ah, erm, yes, ok. It compiles. Comment out the lines that produce the errors and re-compile. Ignore the warnings...and ship that damn patch. We have this initiative running, you know, security it was called, I believe. Ah, I love this company. Steve: (remember Dim from the Clockwork Orange?) Ah, I love this company... Dev-Team: Bill, you are genius, after commenting out the faulty lines and setting the compiler flag to ignore all warnings, it compiles just fine. Thanks for your great insight...a pleasure to be working for you! Ah, we love this company (even more so like Dim). SCNR. Carsten
I found a cool article on this at http://inurajongokide.g-portal.hu/... It's the second entry.
The two keys to recovering from malware / a botched patch / user error are: 1. Have an image that's known to be clean without doubt. A fresh install with no network connection will usually suffice, Novell historical trivia notwithstanding. A system with absolutely anything installed and then uninstalled, no matter how carefully, just won't work. One that's touched a LAN, even behind a NAT router, isn't "known to be clean". 2. When you blow out your system image, don't corrupt your data files. Obviously if your data is on a drive that's been removed, it's safe. Not everyone is willing to go that far -- all data stored somewhere besides on your system (C:\) drive is a must.
You will need "Drive Image" software. Examples include PowerQuest DriveImage, Altiris RapidDeploy, Norton Ghost. This software list is not a recommendation -- do your own homework on what suits your needs. Maybe someone will reply with suggestions. This software takes a point-in-time snapshot of the data on your system drive, called an "image". You're going to need access to a drive to store your system images. A basic XP image is about 1.5GB compressed, with applications will vary. I've seen with Office and Photoshop with common options go to 6GB, multiple massive games go as high as 30GB. Plan ahead, especially if you want to take periodic backup images or application rollback images. Some people take drive images of their data file drives now and then for backups also.
You're going to need to move your data files someplace safe, like a server or a separate partition. A dedicated drive works well. You're going to need installation CD's for the OS and all your applications, and all of the patches you can get on convenient media. Pendrive or cd work well usually.
Before installing Windows, disconnect from the network. If you're imaging to a network drive, know what you're doing. If your system starts to boot to Windows while connected before your working image is taken, start over.
Install Windows. During install, do not connect to the network. Use the telephone activation option. Get all your updates from the technet executables on local media as previously mentioned. Get the firewall up and running. Don't connect to the network. Point your My Documents folder to the place your datafiles are. Do your base security configuration --firewall settings, replace all the pages in Explorer with about:blank, etc. Do NOT connect to the network.
Take a system image. This is what you recover to if you need a major application overhaul, the "Base" image. If you are storing the image on the network you must make great care while doing this that the system does not boot to the installed OS with the network connected. Your OS install is in a very vulnerable state. If you have to restore to this image, you won't have to re-validate Windows.
If you connected the network during the previous step for network imaging, disconnect it before rebooting.
If you have other applications that require activation and allow telephone activation, you might want to install them now and take an "activated but still network clean" image.
All the software that will install without the network, install and update it. Install Spybot Search & Destroy, with the Tea Timer option. Don't connect to the network. Install Ad-aware or whatever else you're using. Don't connect to the network. Take a system image. This is your "Working" image.
Now you can connect to the network. Immediately go to Windows update and get the latest patches, and their patches, and the patches for those patches. If any of the patched patches' patches have updates, get those too. During this step you'll probably reboot over and over. In Spybot Search & Destroy ge
Help stamp out iliturcy.
the patch to fix the problem patch was a problem?
we'd need a patch to patch the problem patch that patched the problem patch..
They can, will, and had better do both:
- Release patches quickly
- Release patches with adequate testing
Yeah...and while they're at it, why don't you lobby them to open source Windows. Not that I'm surprised to see this comment from someone who's calling for Bush to go on trial for war crimes in their sig, but billions of dollars aside you might want to actually think about the logistics of testing patches. If they didn't test them "adequately" I imagine we'd see this kind of problem on a much larger scale and more often.
I used to get angry at the poor quality of software I saw - it seemed as though as the hardware got more reliable over the years, the software got buggier.
I used to gripe about, it, complain to anyone that would listen.
Now, I just smile: Microsoft, and companies that have followed its lead into the never-ending cycle of rushed releases, patches, then new versions without ever fixing the old ones earn me money. A LOT of money.
So, I don't ever want them to stop.
In fact, I want to thank them for making my lifestyle possible: If it weren't for Microsoft, and their impact on the PC software industry, software might be solid and stable, and then I'd have to find a real job.
a new binary called VERCLSID.EXE
:-)
Note that they still use 8.3 ALL-CAPS names for their files
This "patch" cost me a half of days work trying to figure out why my notebook was almost completely unresponsive. As I had both NVIDIA software and HP All-In-One software installed, it looks like I got the worst of it all. Needless to say the automatic updates have been turned off and reaffirms I'd be better off on a MAC running OSX.
'Two for Tuesdays' is infamous where I work for it's, umm, fast results.
Personally, I had Monty Python and the Holy Grail on my mind...
"We apologise again for the fault in the operating system. Those responsible for patching the exploits that have just been patched have been patched."
Microsoft is a corporation with enormous resources, which they leveraged to dominate the worldwide personal computer market. Now we want them to release their patches: a) on time, AND b) with sufficient testing. What are you saying, they don't have enough resources to do this? They want to be remembered for bringing MS Windows to every man, woman and child, but don't want the responsibility of maintaining *their*[1] systems now that everyone is using it?
They have the capability and certainly the choice. Instead of bringing out WinXP, they could have shored up Win2k; or instead of WinFS, they could have shored up WinXP. And did they *have to* branch out into the Xbox market when they needed more work on their OS?
But if they don't want the responsibility, that's fine, they don't have to maintain it; let the people use some other OS, and they don't have to be responsible for it. Open up the formats for MS Word or MS Exchange, and we'll make our own Eudora for BeOS or AbiWord for OS X. Instead, they jealously guard their position as king of the dungheap, and keep making noises about "Yeah, this is the *last* patch you'll need, because *next* time, you'll be running Vista!" (and then, "Ooops, that last patch you got? Here's a patch for it.")
So, we don't need to apologize at all for demanding sufficient and timely patching, because the two really go hand-in-hand. Next thing you know, we might shock you by demanding an OS that's actually reliable.
[1] "their system": no, not yours. You don't own MS Windows; they simply deign to allow you to use it, per their EULA.
404555974007725459910684486621289147856453481154 in hex is "You sank my Battleship?"
[GPG key in journal]
I work at numerous companies where we need to read through each patch to see what they 'fix'.
/Devil's advocate
Didn't we read a few days ago how MS is silently patching things in addition to what they're saying is being patched? If so, how would "reading through each patch" help? Wouldn't you actually have to patch a test machine to be sure?
microsoft should make a patch to patch themselves. else they will get in an infinite loop of patches while patching the next generation of patch-needy o/s they are going to put out :)
Read radical news here
http://support.microsoft.com/?kbid=889320&SD=tech
you can't get the fix unless you are a still supported oem or retail if not please pay $35 for this hotfix.
for those of us who are going to be using out computers between now and whenever, i have interpolated my own patch for the NVIDIA drivers registry entry changes, based off the stated changes for that weird hp-network thing (i dont even know why anyone has that installed anyway, it sounds like bloatware).
r entVersion\Shell Extensions\Cached
n /ms06-015.mspx
in the registry location:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Cur
add:
{1E9B04FB-F9E5-4718-997B-B8DA88302A47} {000214E6-0000-0000-C000-000000000046} 0x401
{1E9B04FB-F9E5-4718-997B-B8DA88302A48} {000214E6-0000-0000-C000-000000000046} 0x401
{1CDB2949-8F65-4355-8456-263E7C208A5D} {000214E6-0000-0000-C000-000000000046} 0x401
I got the idea from looking here:
http://www.microsoft.com/technet/security/bulleti
and here:
http://support.microsoft.com/kb/918165
Dunno if it works yet.
The problem with Microsoft is that it's whole mental attitude is with making a buck by making products which are badly engineered and designed to obsolete quickly, establish/change existing standards Willy nilly, and rip off other peoples ideas/products...what do you expect from this attitude? Better patches? If they make bad/untested products, how can they possibly make good patches for said products?
If you want a better computing future for humanity, then dump MS and go open source. (or apple)
I wonder if this patch is what has prevented me from installing my new webcam. I have a Dell D800 (nVidia Go5200) running XP Pro SP2. I would get STOP errors (BSOD) and some would reference video drivers. I'll try again after I get the new update. Anybody else had this happen? My next step is an OS reinstall (which isn't a completely bad idea, since I've been running on this for a year and a half).