Select the product you need help with

MS09-044: Description of the security update for Remote Desktop Client Version 5.2: August 11, 2009

Article ID: 958469 - View products that this article applies to.

INTRODUCTION

Microsoft has released security bulletin MS09-044. To view the complete security bulletin, visit one of the following Microsoft Web sites:

Home users:
http://www.microsoft.com/security/updates/bulletins/200908.aspx
(http://www.microsoft.com/security/updates/bulletins/200908.aspx)
Skip the details: Download the updates for your home computer or laptop from the Microsoft Update Web site now:
http://update.microsoft.com/microsoftupdate
(http://update.microsoft.com/microsoftupdate)
IT professionals:
http://www.microsoft.com/technet/security/bulletin/ms09-044.mspx
(http://www.microsoft.com/technet/security/bulletin/ms09-044.mspx)

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

(http://support.microsoft.com/ph/6527)

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

(http://technet.microsoft.com/security/bb980617.aspx)

Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center

(http://support.microsoft.com/contactus/cu_sc_virsec_master)

Local support according to your country: International Support

(http://support.microsoft.com/common/international.aspx)

Back to the top | Give Feedback

MORE INFORMATION

Security update 958469 updates the following binaries:

Collapse this tableExpand this table

Binary name	Standard locations
Mstscax.dll	a) %Windir%\System32 b) %SystemDrive%\Program Files\Remote Desktop
Mstsc.exe	a) %Windir%\System32 b) %SystemDrive%\Program Files\Remote Desktop
Msrdp.ocx	%Windir%\Download Program Files
Msrdp.cab	a) %Windir%\Web\Tsweb b) Install path under "hklm\software\microsoft\TS Web Clients" under value "InstallDir" c) %SystemDrive%\Inetpub\Remote

Note The files are updated only if the files were already present on the client computer.

Security update 958469 updates the following binaries on the following operating systems:

Collapse this tableExpand this table

	Mstscax.dll	Msrdp.ocx	Msrdp.cab	Mstsc.exe
Windows Server 2003	Yes	Yes	Yes	No
Windows XP	Yes	No	No	Yes

Note that in specific deployments on out-of-box versions of the RDP client, files may be renamed during installation. The file names listed in the "File information" in this article are the original names prior to installation.

Collapse this tableExpand this table

Platform	RDP version	Name of the binary carried in the package	Name of the binary after installation
Windows XP Professional with Service Pack 1, Service Pack 2, or Service Pack 3	5.2	2k3mstscax.dll and 2k3mstsc.exe	mstscax.dll and mstsc.exe
Windows XP Service Pack 2	5.2	2k3mstscax.dll and 2k3mstsc.exe	mstscax.dll and mstsc.exe

Known issues with this security update

After you install this update, gridlines may be visible in a terminal session window when you use Remote Desktop Client (RDC) to connect to a terminal server and then scroll up and down in a Web page in the terminal session. For more information about how to resolve this issue, click the following article numbers to view the articles in the Microsoft Knowledge Base:

975153

(http://support.microsoft.com/kb/975153/ )

A hotfix is available for Remote Desktop Client (RDC) 5.1 to fix a drawing failure after you apply the security update 958470 (MS09-044) on a computer that is running Windows XP Service Pack 2

975158

(http://support.microsoft.com/kb/975158/ )

A hotfix is available for Remote Desktop Client (RDC) 5.2 to fix a drawing failure after you apply the security update 958470 (MS09-044) on a computer that is running Windows XP Service Pack 3 or Windows Server 2003 Service Pack 2

Frequently asked questions

Question If I have an application that deploys the Remote Desktop Web Connection binaries in non-default locations, will this security update patch my installation?
Answer This update updates the Microsoft Remote Desktop Web Connection binaries in standard locations. If your redistributed Microsoft Remote Desktop Web Connection binaries are in a custom location, you will have to update the custom location with the updated Microsoft Remote Desktop Web Connection binaries.

Question Before I installed the security update, I had the RDC 5.1 version of Msrdp.ocx. After I installed the security update, I do not see the RDC 5.1 version of Msrdp.ocx. Why?
Answer After you install this security update, the RDC 5.1 version of Msrdp.ocx is upgraded to the RDC 5.2 version of Msrdp.ocx.

Question I installed the security update, and now if I try to use ActiveX component of MSTSC (Msrdp.ocx), I cannot connect. Why?
Answer The scenario is broken (see Figure 1) because server is not updated. Therefore, the server is still pushing the vulnerable Msrdp.ocx file to the clients. Before you install the security update, the client computer does not have the ActiveX control (Msrdp.ocx). After you install the security update, the vulnerable ActiveX ClassIds were blocked. Therefore, if you try to use the vulnerable ActiveX Msrdp.ocx by using Internet Explorer, you cannot connect until the client computer receives the new Msrdp.ocx file. To resolve the problem, follow these steps:

Reinstall the security update on the client workstation to update the older version of the Msrdp.ocx file that was downloaded from the server.

Note The Msrdp.ocx file is updated only in the standard locations.
Ask your Web server administrators to update the server-side Msrdp.cab file by using the security update. Administrators should be aware that the update updates only Msrdp.cab files that are found in the standard locations. To update Msrdp.cab files that are in custom locations, follow these steps:
1. Extract the update (KB) by using the KB /x:<path> command.
2. Copy the Msrdp.cab from <location> to the custom path.

Collapse this imageExpand this image

Figure 1: The Remote Desktop Web connection will not work until the client receives an updated Msrdp.ocx file. Note that Windows Update will offer the update automatically if the vulnerable Msrdp.ocx file is available in the standard location on the computer. For more information, visit the following Microsoft Web site:

http://technet.microsoft.com/en-us/library/cc775764(WS.10).aspx

(http://technet.microsoft.com/en-us/library/cc775764(WS.10).aspx)

* This scenario works if you have RDC 6.0 or a later version installed on the client (workstation) computer.

Back to the top | Give Feedback

Question After I install the update, I do not have the Msrdp.ocx file. Why?
Answer This update updates only the files that were present on the computer before you installed the update. Therefore, if the Msrdp.ocx file was not on the Windows XP SP2-based computer before you installed the update, the Msrdp.ocx file is not downloaded to or installed on the computer. When the client obtains the Msrdp.ocx file, Windows Update reoffers the update to the client computer.

Question How can I determine whether I have the Msrdp.ocx file on my computer?
Answer To determine whether the Msrdp.ocx file exists in the default location, run the following command at a command prompt:

dir "%windir%\downloaded program files"

Question After I installed the update, I do not have the Msrdp.cab file. Why?
Answer This update updates only the files that were present on the computer before you installed the update. Therefore, if the Msrdp.cab file was not on the Windows XP SP2-based computer before you installed the update, the Msrdp.cab file is not downloaded to or installed on the computer.

Question I have an old Msrdp.cab file that is being redistributed from my Terminal Server Web Server computer. Are my clients vulnerable?
Answer Your updated client computers will not be vulnerable even if the server is not updated. We strongly recommend that you install the update on the Terminal Server Web Server computer so that redistributing of vulnerable Msrdp.ocx files can be prevented to any clients that are not updated.

Back to the top | Give Feedback

KB offer matrix based on the RDC version and platforms

RDC versions (in-band and Microsoft-supported out-of-band releases)

Collapse this tableExpand this table

	RDC 5.0	RDC 5.1	RDC 5.2	RDC 6.0	RDC 6.1
Windows Vista RTM	x	x	x	KB956744*	x
Windows Vista SP1 and Windows Vista SP2	x	x	x	x	KB956744*
Windows XP SP2	x	KB958470*	KB958469	KB956744*	KB956744*
Windows XP SP3	x	x	KB958469	x	KB956744*
Windows Server 2003 SP2	x	x	KB958469*	KB956744*	x
Windows 2000 SP4	KB958471*	KB958470*	KB958470	x	x

Note In this table, x = not applicable.
Note In this table, almost all users are represented by the scenarios in the table that contain asterisks (*).

Back to the top | Give Feedback

FILE INFORMATION

The English (United States) version of this security update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.

For all supported x86-based versions of Windows Server 2003

Collapse this tableExpand this table

File name	File version	File size	Date	Time	Platform	SP requirement	Service branch
Mstscax.dll	5.2.3790.4524	755,200	06-Jun-2009	22:53	x86	SP2	SP2GDR
Msrdp.ocx	5.2.3790.4524	760,320	07-Jun-2009	11:23	x86	SP2	SP2GDR\MSRDP.CAB_CAB_FILES
Mstscax.dll	5.2.3790.4524	755,200	06-Jun-2009	23:02	x86	SP2	SP2QFE
Msrdp.ocx	5.2.3790.4522	759,808	06-Jun-2009	23:01	x86	SP2	SP2QFE\ARA
Msrdp.ocx	5.2.3790.4522	759,808	06-Jun-2009	23:01	x86	SP2	SP2QFE\BR
Msrdp.ocx	5.2.3790.4522	757,248	06-Jun-2009	23:01	x86	SP2	SP2QFE\CHS
Msrdp.ocx	5.2.3790.4522	757,248	06-Jun-2009	23:01	x86	SP2	SP2QFE\CHT
Msrdp.ocx	5.2.3790.4522	759,808	06-Jun-2009	23:01	x86	SP2	SP2QFE\CS
Msrdp.ocx	5.2.3790.4522	760,320	06-Jun-2009	23:01	x86	SP2	SP2QFE\DA
Msrdp.ocx	5.2.3790.4522	761,856	06-Jun-2009	23:01	x86	SP2	SP2QFE\EL
Msrdp.ocx	5.2.3790.4522	760,320	06-Jun-2009	23:02	x86	SP2	SP2QFE\ENU
Msrdp.ocx	5.2.3790.4522	760,320	06-Jun-2009	23:01	x86	SP2	SP2QFE\ES
Msrdp.ocx	5.2.3790.4522	760,320	06-Jun-2009	23:01	x86	SP2	SP2QFE\FI
Msrdp.ocx	5.2.3790.4522	760,832	06-Jun-2009	23:01	x86	SP2	SP2QFE\FR
Msrdp.ocx	5.2.3790.4522	761,344	06-Jun-2009	23:01	x86	SP2	SP2QFE\GER
Msrdp.ocx	5.2.3790.4522	759,296	06-Jun-2009	23:01	x86	SP2	SP2QFE\HEB
Msrdp.ocx	5.2.3790.4522	760,320	06-Jun-2009	23:01	x86	SP2	SP2QFE\HU
Msrdp.ocx	5.2.3790.4522	760,320	06-Jun-2009	23:01	x86	SP2	SP2QFE\IT
Msrdp.ocx	5.2.3790.4522	758,272	08-Jun-2009	07:46	x86	SP2	SP2QFE\JPN
Msrdp.ocx	5.2.3790.4522	758,272	06-Jun-2009	23:01	x86	SP2	SP2QFE\KOR
Msrdp.ocx	5.2.3790.4524	760,320	07-Jun-2009	11:32	x86	SP2	SP2QFE\MSRDP.CAB_CAB_FILES
Msrdp.ocx	5.2.3790.4522	760,832	06-Jun-2009	23:01	x86	SP2	SP2QFE\NL
Msrdp.ocx	5.2.3790.4522	760,832	06-Jun-2009	23:01	x86	SP2	SP2QFE\NO
Msrdp.ocx	5.2.3790.4522	760,320	06-Jun-2009	23:01	x86	SP2	SP2QFE\PL
Msrdp.ocx	5.2.3790.4522	760,320	06-Jun-2009	23:02	x86	SP2	SP2QFE\PT
Msrdp.ocx	5.2.3790.4522	760,832	06-Jun-2009	23:02	x86	SP2	SP2QFE\RU
Msrdp.ocx	5.2.3790.4522	760,320	06-Jun-2009	23:02	x86	SP2	SP2QFE\SV
Msrdp.ocx	5.2.3790.4522	760,320	06-Jun-2009	23:02	x86	SP2	SP2QFE\TR
Msrdpcustom.dll	Not Applicable	17,408	06-Jun-2009	22:53	x86	None	Not Applicable

For all supported x86-based versions of Windows XP

Collapse this tableExpand this table

File name	File version	File size	Date	Time	Platform	SP requirement	Service branch
2k3mstsc.exe	5.2.3790.4522	421,376	09-Jun-2009	10:15	x86	SP3	SP3GDR
2k3mstscax.dll	5.2.3790.4524	755,200	09-Jun-2009	15:32	x86	SP3	SP3GDR
2k3mstsc.exe	5.2.3790.4522	421,376	09-Jun-2009	10:15	x86	SP3	SP3QFE
2k3mstscax.dll	5.2.3790.4524	755,200	09-Jun-2009	15:27	x86	SP3	SP3QFE

For all supported x64-based versions of Windows Server 2003 and Windows XP

Collapse this tableExpand this table

File name	File version	File size	Date	Time	Platform	SP requirement	Service branch
Mstscax.dll	5.2.3790.4524	1,079,808	08-Jun-2009	07:09	x64	SP2	SP2GDR
Msrdp.ocx	5.2.3790.4524	760,320	07-Jun-2009	11:23	x86	SP2	SP2GDR\MSRDP.CAB_CAB_FILES
Wmstscax.dll	5.2.3790.4524	755,200	08-Jun-2009	07:09	x86	SP2	SP2GDR\WOW
Mstscax.dll	5.2.3790.4524	1,079,808	07-Jun-2009	12:44	x64	SP2	SP2QFE
Msrdp.ocx	5.2.3790.4522	759,808	07-Jun-2009	12:44	x86	SP2	SP2QFE\ARA
Msrdp.ocx	5.2.3790.4522	759,808	07-Jun-2009	12:44	x86	SP2	SP2QFE\BR
Msrdp.ocx	5.2.3790.4522	757,248	07-Jun-2009	12:44	x86	SP2	SP2QFE\CHS
Msrdp.ocx	5.2.3790.4522	757,248	07-Jun-2009	12:44	x86	SP2	SP2QFE\CHT
Msrdp.ocx	5.2.3790.4522	759,808	07-Jun-2009	12:44	x86	SP2	SP2QFE\CS
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\DA
Msrdp.ocx	5.2.3790.4522	761,856	07-Jun-2009	12:44	x86	SP2	SP2QFE\EL
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\ENU
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\ES
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\FI
Msrdp.ocx	5.2.3790.4522	760,832	07-Jun-2009	12:44	x86	SP2	SP2QFE\FR
Msrdp.ocx	5.2.3790.4522	761,344	07-Jun-2009	12:44	x86	SP2	SP2QFE\GER
Msrdp.ocx	5.2.3790.4522	759,296	07-Jun-2009	12:44	x86	SP2	SP2QFE\HEB
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\HU
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\IT
Msrdp.ocx	5.2.3790.4522	758,272	07-Jun-2009	12:44	x86	SP2	SP2QFE\JPN
Msrdp.ocx	5.2.3790.4522	758,272	07-Jun-2009	12:44	x86	SP2	SP2QFE\KOR
Msrdp.ocx	5.2.3790.4524	760,320	07-Jun-2009	11:32	x86	SP2	SP2QFE\MSRDP.CAB_CAB_FILES
Msrdp.ocx	5.2.3790.4522	760,832	07-Jun-2009	12:44	x86	SP2	SP2QFE\NL
Msrdp.ocx	5.2.3790.4522	760,832	07-Jun-2009	12:44	x86	SP2	SP2QFE\NO
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\PL
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\PT
Msrdp.ocx	5.2.3790.4522	760,832	07-Jun-2009	12:44	x86	SP2	SP2QFE\RU
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\SV
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\TR
Wmstscax.dll	5.2.3790.4524	755,200	07-Jun-2009	12:44	x86	SP2	SP2QFE\WOW
Msrdpcustom.dll	Not Applicable	18,944	08-Jun-2009	08:35	x64	None	Not Applicable

For all supported IA-64-based versions of Windows Server 2003

Collapse this tableExpand this table

File name	File version	File size	Date	Time	Platform	SP requirement	Service branch
Mstscax.dll	5.2.3790.4524	2,077,696	08-Jun-2009	07:08	IA-64	SP2	SP2GDR
Msrdp.ocx	5.2.3790.4524	760,320	07-Jun-2009	11:23	x86	SP2	SP2GDR\MSRDP.CAB_CAB_FILES
Wmstscax.dll	5.2.3790.4524	755,200	08-Jun-2009	07:09	x86	SP2	SP2GDR\WOW
Mstscax.dll	5.2.3790.4524	2,077,696	07-Jun-2009	12:44	IA-64	SP2	SP2QFE
Msrdp.ocx	5.2.3790.4522	759,808	07-Jun-2009	12:44	x86	SP2	SP2QFE\ARA
Msrdp.ocx	5.2.3790.4522	759,808	07-Jun-2009	12:44	x86	SP2	SP2QFE\BR
Msrdp.ocx	5.2.3790.4522	757,248	07-Jun-2009	12:44	x86	SP2	SP2QFE\CHS
Msrdp.ocx	5.2.3790.4522	757,248	07-Jun-2009	12:44	x86	SP2	SP2QFE\CHT
Msrdp.ocx	5.2.3790.4522	759,808	07-Jun-2009	12:44	x86	SP2	SP2QFE\CS
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\DA
Msrdp.ocx	5.2.3790.4522	761,856	07-Jun-2009	12:44	x86	SP2	SP2QFE\EL
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\ENU
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\ES
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\FI
Msrdp.ocx	5.2.3790.4522	760,832	07-Jun-2009	12:44	x86	SP2	SP2QFE\FR
Msrdp.ocx	5.2.3790.4522	761,344	07-Jun-2009	12:44	x86	SP2	SP2QFE\GER
Msrdp.ocx	5.2.3790.4522	759,296	07-Jun-2009	12:44	x86	SP2	SP2QFE\HEB
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\HU
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\IT
Msrdp.ocx	5.2.3790.4522	758,272	07-Jun-2009	12:44	x86	SP2	SP2QFE\JPN
Msrdp.ocx	5.2.3790.4522	758,272	07-Jun-2009	12:44	x86	SP2	SP2QFE\KOR
Msrdp.ocx	5.2.3790.4524	760,320	07-Jun-2009	11:32	x86	SP2	SP2QFE\MSRDP.CAB_CAB_FILES
Msrdp.ocx	5.2.3790.4522	760,832	07-Jun-2009	12:44	x86	SP2	SP2QFE\NL
Msrdp.ocx	5.2.3790.4522	760,832	07-Jun-2009	12:44	x86	SP2	SP2QFE\NO
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\PL
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\PT
Msrdp.ocx	5.2.3790.4522	760,832	07-Jun-2009	12:44	x86	SP2	SP2QFE\RU
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\SV
Msrdp.ocx	5.2.3790.4522	760,320	07-Jun-2009	12:44	x86	SP2	SP2QFE\TR
Wmstscax.dll	5.2.3790.4524	755,200	07-Jun-2009	12:44	x86	SP2	SP2QFE\WOW
Msrdpcustom.dll	Not Applicable	31,744	08-Jun-2009	08:35	IA-64	None	Not Applicable