Woody Leonhard's no-bull news, tips and help for Windows and Office
Home icon Home icon Home icon Email icon RSS icon
  • MS12-034 / KB 2676562 / KB 2686509 mystery solved

    Posted on December 21st, 2013 at 22:09 woody 6 comments

    Eighteen months ago, you might recall a pesky Black Tuesday patch that never installed, and wouldn’t go away.

    Yuhong Bao, whom many of you might recognize as a frequent commenter both here and on my InfoWorld blog posts, has cracked the problem.

    He found a bug in the way the installer interprets a specific Registry key. If you have an unexpected value in that key, the KB 2686509 installer fails, and your system remains vulnerable to the hole known as  CVE-2012-0181.

    The next time Windows Update comes up for air, it sees that the MS12-034 installation failed, and re-offers the same patch.

    Microsoft has a manual workaround, described in my May 9, 2012 AskWoody article. A FixIt that allows the installer to work was issued after much sturm und drang. But Microsoft never did fix the patch. After all, it’s only for XP/Server 2003.

    Yuhong concludes that MS didn’t fix the patch because a failed install doesn’t really screw up anything. Mostly, it’s just annoying.

    If that helped, take a second to support AskWoody on Patreon

    6 Responses to “MS12-034 / KB 2676562 / KB 2686509 mystery solved”

    1. Marty says:

      Hi Woody,

      As this year starts winding down I would like to express my gratitude to you for maintaining this invaluable website. I consult it regularly, and I would not dream of applying any M$ patches without first seeing what you had to say about them. I maintain six Windows machines (both Win7 and and XP) in my household, and thanks to you, none of them has ever been bitten by a bad patch. (I also run a Linux box with xUbuntu, which offers frequent updates — no problems yet, but, hey, maybe you should start watching over that as well [grin]. I don’t want to push my luck!)

      Many thanks, and best holiday wishes to you,


    2. Ken Warner says:

      I also have the following update that does install but keeps popping up for an install. Any idea how I get rid if it?

      Definition Update for Windows Defender – KB915597 (Definition

      Download size: 2.6 MB

      Update type: Important

      Install this update to revise the definition files used to detect spyware and other potentially unwanted software. Once you have installed this item, it cannot be removed.

      More information:

      Help and Support:

      • woody says:

        @Ken –

        Don’t worry about Windows Defender updates. Just go ahead and apply them as they come through. They’re virus signature files, mostly.

    3. leo8888 says:

      Have had this update fail on many WinXP machines.
      For me this is what works:

      In regedit go to:
      HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Keyboard Layout

      Delete “Scancode Map”

      Install update

    Leave a Reply