MS08-052: Description of the security update for GDI+ for Forefront Client Security that is installed in Windows 2000: September 9, 2008

Microsoft has released security bulletin MS08-052. To view the complete security bulletin, visit one of the following Microsoft Web sites:

• Home users:
  http://www.microsoft.com/protect/computer/updates/bulletins/200809.mspx (http://www.microsoft.com/protect/computer/updates/bulletins/200809.mspx)
  Skip the details: Download the updates for your home computer or laptop from the Microsoft Update Web site now:
  http://update.microsoft.com/microsoftupdate/ (http://update.microsoft.com/microsoftupdate/)
• IT professionals:
  http://www.microsoft.com/technet/security/bulletin/MS08-052.msp (http://www.microsoft.com/technet/security/bulletin/MS08-052.mspx)

How to obtain help and support for this security update

For home users, no-charge support is available by calling 1-866-PCSAFETY in the United States and Canada or by contacting your local Microsoft subsidiary. For more information about how to contact your local Microsoft subsidiary for support issues with security updates, visit the Microsoft International Support Web site: North American customers can also obtain instant access to unlimited no-charge e-mail support or to unlimited individual chat support by visiting the following Microsoft Web site: For enterprise customers, support for security updates is available through your usual support contacts.

Known issues with this security update

• This update is not listed in the Add\Remove Programs item in Control Panel. To uninstall this update, open a command prompt, type the following command, and then press ENTER:
  Msiexec.exe/i {E8B56B38-A826-11DB-8C83-0011430C73A4} MSIPATCHREMOVE={1D07A92B-5945-4369-84B7-6BE19AF5714D}
• To function appropriately, the Forefront Client Security anti-malware agent requires that GDI+ is installed. However, GDI+ is not present on Microsoft Windows 2000 Service Pack 4. For this is reason, Forefront Client Security client setup installs Gdiplus.dll into the anti-malware subdirectory on a Windows 2000 SP4-based computer. Bulletin MS08-052 states that Windows 2000 Service Pack 4 is non-affected software. Therefore, this security update is required to resolve the vulnerabilities that are introduced by the deployment of Forefront Client Security in Windows 2000 Service Pack 4.
  
  This update only applies to Windows 2000 Service Pack 4, and this update only updates the Gdiplus.dll that is deployed by the Forefront Client Security client setup. If a Windows 2000-based computer together with Forefront Client Security has additional vulnerable GDI+ libraries that other software packages install, this installation does not update those GDI+ libraries.

File information

The English (United States) version of this security update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.