MS12-034 / KB 2676562 / KB 2686509 mystery solvedPosted on December 21st, 2013 at 22:09 6 comments
Eighteen months ago, you might recall a pesky Black Tuesday patch that never installed, and wouldn’t go away.
Yuhong Bao, whom many of you might recognize as a frequent commenter both here and on my InfoWorld blog posts, has cracked the problem.
He found a bug in the way the installer interprets a specific Registry key. If you have an unexpected value in that key, the KB 2686509 installer fails, and your system remains vulnerable to the hole known as CVE-2012-0181.
The next time Windows Update comes up for air, it sees that the MS12-034 installation failed, and re-offers the same patch.
Microsoft has a manual workaround, described in my May 9, 2012 AskWoody article. A FixIt that allows the installer to work was issued after much sturm und drang. But Microsoft never did fix the patch. After all, it’s only for XP/Server 2003.
Yuhong concludes that MS didn’t fix the patch because a failed install doesn’t really screw up anything. Mostly, it’s just annoying.
6 responses to “MS12-034 / KB 2676562 / KB 2686509 mystery solved”
As this year starts winding down I would like to express my gratitude to you for maintaining this invaluable website. I consult it regularly, and I would not dream of applying any M$ patches without first seeing what you had to say about them. I maintain six Windows machines (both Win7 and and XP) in my household, and thanks to you, none of them has ever been bitten by a bad patch. (I also run a Linux box with xUbuntu, which offers frequent updates — no problems yet, but, hey, maybe you should start watching over that as well [grin]. I don’t want to push my luck!)
Many thanks, and best holiday wishes to you,
Ken Warner December 23rd, 2013 at 11:36
I also have the following update that does install but keeps popping up for an install. Any idea how I get rid if it?
Definition Update for Windows Defender – KB915597 (Definition 1.165.262.0)
Download size: 2.6 MB
Update type: Important
Install this update to revise the definition files used to detect spyware and other potentially unwanted software. Once you have installed this item, it cannot be removed.
Help and Support:
Don’t worry about Windows Defender updates. Just go ahead and apply them as they come through. They’re virus signature files, mostly.
Link to my blog article:
Sorry about that. I just modified the post here to point to your article.
leo8888 February 17th, 2014 at 00:40
Have had this update fail on many WinXP machines.
For me this is what works:
In regedit go to:
Delete “Scancode Map”
Leave a reply