MS07-005: Vulnerability in Step-by-Step Interactive Training could allow remote code execution
- Home users:Skip the details: Download the updates for your home computer or laptop from the Microsoft Update Web site now:
- IT professionals:
How to obtain help and support for this security updateHelp installing updates: Support for Microsoft Update
Security solutions for IT professionals: TechNet Security Troubleshooting and Support
Help protect your computer that is running Windows from viruses and malware:Virus Solution and Security Center
Local support according to your country: International Support
Known issue with this security updateWhen a user visits Windows Update, the Step-by-Step Interactive Training application is continuously reoffered, and the installation is always unsuccessful.
Note The symptoms occur when the user installs the Step-by-Step Interactive Training application that includes Lrun32.exe and then applies security update 923723.
Consider the following scenario:
- The user uninstalls the Step-by-Step Interactive Training application.
Note Because the Lrun32.exe file was modified by security update 923723, this operation leaves the updated file on the computer.
- The user enables the display of updates in the Add or remove programs dialog box.
- The user uninstalls the Step-by-Step Interactive Training security update.
Note The user must know which security update is associated with the Step-by-Step Interactive Training application. This operation makes the updated Lrun32.exe revert to the original version.
- The next time that the user visits Windows Update, the Step-by-Step Interactive Training application is reoffered. However, the installation is unsuccessful because the version of the Lrun32.exe file that is located on the computer is a partially installed version of the Step-by-Step Interactive Training application.
ResolutionImportant This section, method, or task contains steps that tell you how to modify the registry. However, serious problems might occur if you modify the registry incorrectly. Therefore, make sure that you follow these steps carefully. For added protection, back up the registry before you modify it. Then, you can restore the registry if a problem occurs. For more information about how to back up and restore the registry, click the following article number to view the article in the Microsoft Knowledge Base:
Step 1: Remove Step-by-Step Interactive Training
- Click Start, and then click Search.
- Use Windows Search to locate and to delete the following files:
- If you are asked to confirm the deletion of a file, click Yes or Confirm.
Step 2: Remove registry subkeys for Step-by-Step Interactive Training
- Click Start, and then click Run.
- Copy and then paste (or type) the following command in the Open box, and then press ENTER: regedt32Note Before you edit the registry, you must create a backup of the registry. To do this, follow these steps:
- In Registry Editor, click My Computer, click File, and then click Export.
- Select a location for the registry backup file.
- Type a name for the registry backup file, and then click Save. The registry is now backed up.
- In Registry Editor, delete the following registry subkeys:\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft Press Interactive Training\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft Interactive Training\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Interactive Training\HKEY_CLASSES_ROOT\.cbl(This is for Microsoft Press Interactive Training.)\HKEY_CLASSES_ROOT\.cbo(This is for Microsoft Interactive Training.)\HKEY_CLASSES_ROOT\.cbm(This is for Interactive Training.)
- For each subkey that is found, click the subkey, and then press DELETE.
- In the Confirm Key Delete dialog box, click OK.
- Exit Registry Editor.
Article ID: 923723 - Last Review: 05/08/2012 16:13:00 - Revision: 6.0
- kbresolve kbexpertiseinter kbexpertisebeginner kbqfe kbsecurity kbsecbulletin kbsecvulnerability kbbug kbfix kbwin2000presp5fix KB923723