Windows 2000 Patches & Updates Guide

Released in 1999, Windows 2000 was the beginnning of the end for the Windows 9x product line, extending upon Windows NT 4.0 it provided an unprecedented level of manageability and reliability which had not been seen before on a Windows platform. Now in 2010, Windows 2000 has finally reached the end of its extended support phase to become an unsupported operating system release.

In line with our security mandate, HPC:Factor has decided to generate and maintain a patching list for Windows 2000 Professional from now until Windows 2000 patch issuing is discontinued completely. It is not deemed necessary to add an installation guide to this document, and there are no plans to add one in the future.

To mark the transition of Windows 2000 into end of life, this guide has been updated as of October 2010 to reflect the strongest level of technologies available for Windows 2000 users (many of which are not available through Windows Update) as well as to update the critical updates list with the final patches from Windows Update.

Windows 2000 Professional Patches & Updates Guide

The following list of updates will provide you with the highest level of security available to Windows 2000. The Approximate total download size of all the listed updates is 400MB

Prerequisites

This guide assumes a certain level of system components have already been updated. Failure to install these prerequisite items before continuing with the patch process will impact significantly upon the effectiveness of this guide. These are the prerequisites for the installation:

NB: This guide does not cover updates for Internet Information Server (IIS), or fully cover updates for Windows 2000 Server or Advanced Server

Want to download all of these updates from us? If you would like to make a donation to help towards our running costs, we will provide you with a download link to the files. Find out more.

Windows 2000 Professional
Windows 2000 Service Pack 4 (Express | Network)
Windows 2000 URP1 v2 (861861)
DirectX 9.28.1886 (February 2010)
Internet Explorer 6.0 SP1
Windows Media Player 9
MDAC 2.8 SP1
Windows Script 5.7
KB842773 BITS 2.0 and WinHTTP 5.1 update
KB893803 Windows Installer 3.1
KB949104 How to obtain the latest version of the Windows Update Agent

Suggested

Microsoft XML Parser 4.0 Service Pack 3 (SP3)
Microsoft XML Parser 6.0 Service Pack 2 (SP2)
Remote Desktop Connection Client 5.2.3790.3959

Critical Updates:

Want to download all of these updates from us? If you would like to make a donation to help towards our running costs, we will provide you with a download link to the files. Find out more.

MS02-050	KB329115	Certificate Validation Flaw Could Enable Identity Spoofing
	KB818043	L2TP/IPsec NAT-T update
	KB828026	Windows Media Player URL script command update
	KB870669	Disable the ADODB.Stream object from IE
MS05-040	KB893756	Telephony Service Remote Code Execution
MS05-026	KB896358	HTML Help code execution
MS05-027	KB896422	SMB Remote Code Execution
MS05-043	KB896423	Print Spooler Service Remote Code Execution
MS05-042	KB899587	Kerberos Denial of Service
MS05-046	KB899589	Client Service for NetWare Remote Code Execution
MS05-049	KB900725	Windows in shell could remote code execution
MS05-048	KB901017	Microsoft CDO Remote Code Execution
MS05-036	KB901214	Vulnerability in Color Management Module remote code execution
MS05-045	KB905414	Vulnerability in Network Connection Manager DOS
MS05-044	KB905495	Windows FTP client vulnerability
MS05-047	KB905749	Plug and Play Remote Code Execution
MS06-015	KB908531	Windows Explorer Remote Code Execution
	KB909520	Microsoft Base Smart Card Cryptographic Service Provider Package
MS06-006	KB911564	Windows Media Player Plug-in Remote Code Execution
MS06-018	KB913580	MSDTC denial of service
MS06-036	KB914388	DHCP Client remote code execution
MS06-044	KB917008	Microsoft Management Console remote code execution
MS07-013	KB918118	RichEdit remote code execution
MS06-068	KB920213	Microsoft Agent remote code execution
MS06-050	KB920670	Windows Hyperlink Object Library CouldRemote Code Execution
MS06-041	KB920683	DNS resolution remote code execution
MS06-045	KB921398	Windows Explorer remote code execution
MS06-057	KB923191	Windows Explorer Remote Execution
	KB922582	Error 0x80070002 when you try install an update
MS09-010	KB923561	WordPad Converter update
MS07-055	KB923810	Kodak Image Viewer remote code execution
MS06-066	KB923980	Client Service remote code execution
MS06-070	KB924270	Workstation Service remote code execution
MS07-012	KB924667	Microsoft Foundation Classes remote code execution
MS07-017	KB925902	GDI remote code execution
MS07-039	KB926122	Windows Active Directory remote code execution
MS07-011	KB926436	OLE Dialog remote code execution
MS07-009	KB927779	MDAC remote code execution
	KB927891	Access violation error from Windows Update
MS07-008	KB928843	HTML Help ActiveX remote code execution
MS07-035	KB935839	Win32 API remote code execution
MS07-065	KB937894	Message Queuing Service remote code execution
MS07-051	KB938827	Microsoft Agent remote code execution
MS07-068	KB941569	Windows Media file format remote code execution
MS08-008	KB943055	Security Update for Windows 2000
MS08-002	KB943485	LSASS local elevation of privilege
MS08-028	KB950749	Microsoft Jet Database Engine remote code execution
MS08-032	KB950760	ActiveX kill bits update
MS08-049	KB950974	Event System remote code execution
MS08-037	KB951748	Security update for DNS
MS09-012	KB952004	Security update for MSDTC Transaction Facility
MS08-076	KB952069	Windows Media Format Runtime 7.1 9.0 9.5, and 11 update
MS08-046	KB952954	Microsoft Windows Image Color Management remote code execution
MS09-051	KB954155	Windows Media Audio Voice Decoder update
MS08-076	KB954600	Windows Media Player 6.4 update
MS08-069	KB955069	XML Core Services 3.0 Update
	KB955759	AppCompat update for Indeo Codec
MS08-071	KB956802	GDI remote code execution
MS09-046	KB956844	DHTML Editing Component ActiveX control remote code execution
MS08-068	KB957097	SMB remote code execution
MS09-044	KB958470	Desktop Client Version 5.1 update
MS08-067	KB958644	Server service remote code execution
MS09-062	KB958869	Security update for GDI+
MS09-015	KB959426	SearchPath elevation of privilege
MS09-007	KB960225	SChannel spoofing
MS09-013	KB960803	Windows HTTP services remote code execution
MS09-042	KB960859	Telnet remote code execution
MS09-022	KB961501	Windows Print Spooler remote code execution
	KB967715	Disable the Autorun functionality in Windows
MS09-047	KB968816	Windows Media Format Runtime update
MS09-057	KB969059	Indexing Service remote code execution
MS09-026	KB970238	RPC elevation of privilege
MS10-012	KB971468	SMB Server remote code execution
MS10-001	KB972270	Embedded OpenType Font Engine remote code execution
MS09-037	KB973507	Active Template Library update
MS09-037	KB973540	Security update for Windows Media Player
MS09-037	KB973869	Security update for the DHTML editing component ActiveX control
MS09-073	KB973904	Security Update for Windows 2000
MS09-052	KB974112	Windows Media Player remote code execution
MS09-071	KB974318	Internet Authentication service remote code execution
MS09-069	KB974392	Local Security Authority Subsystem service denial of service
MS09-056	KB974571	CryptoAPI spoofing
MS09-045	KB975542	Security update for Jscript 5.7
MS10-013	KB975560	Security update for Quartz
MS10-033	KB975562	Security update for Quartz.dll
MS10-026	KB977816	Microsoft MPEG Layer-3 codec remote code execution
MS10-013	KB977914	Security update for AVI filter
MS10-011	KB978037	Windows Client Server Run-time Subsystem elevation of privilege
MS10-030	KB978542	Outlook Express and Windows Mail remote code execution
MS10-019	KB978601	Security update for Windows Authenticode Signature Verification
MS10-005	KB978706	Microsoft Paint remote code execution
MS10-019	KB979309	Cabinet File Viewer Shell Extension update
MS10-027	KB979402	Windows Media Player remote code execution
MS10-033	KB979482	Security update for Asycfilt.dll
MS10-032	KB979559	Kernel-Mode drivers remote code execution
MS10-021	KB979683	Windows Kernel elevation of privilege
MS10-034	KB980195	ActiveX kill bits
MS10-037	KB980218	OpenType Compact Font Format driver elevation of privilege
MS10-020	KB980232	SMB client remote code execution
MS10-022	KB981349	Security update for Visual Basic Scripting 5.7
MS10-035	KB982381	Cumulative security update for Internet Explorer