Software manufacturers can create the setup of their products to use Windows Installer to help make software installation, maintenance, and uninstallation straightforward and easy. Windows Installer 4.5 is released with Windows Vista Service Pack 2 (SP2) and Windows Server 2008 SP2.

A hotfix is available for various issues that prevent successful product installation or upgrade by using Windows Installer on computers that are running Windows XP, Windows Server 2003, Windows Vista, or Windows Server 2008.

Resolves a vulnerability in Windows that could allow remote code execution if a user opens a specially crafted document or visits a malicious webpage that embeds TrueType or OpenType font files.

A remote code execution vulnerability exists in Remote Desktop Services in the affected Windows platforms. To learn more about this release, go to 4500705. To learn more about the vulnerability, go to CVE-2019-0708. Note: This update also applies to Windows XP Embedded Service Pack 3.

Resolves vulnerabilities in Microsoft Windows that could allow remote code execution if an attacker sends a specially crafted response to a Windows print spooler request.

Resolves a vulnerability in Windows Remote Desktop Client that could allow remote code execution if a user views a specially crafted webpage.

Resolves vulnerabilities that could allow remote code execution if an attacker sends a sequence of specially crafted RDP packets to an affected system. By default, the Remote Desktop Protocol (RDP) is not enabled on any Windows operating system. Systems that do not have RDP enabled are not at risk.

To work around this issue, follow these steps: Install update 973685.

Resolves a vulnerability in Windows that could allow remote code execution if an attacker sends specially crafted packets to an affected Windows-based server.

Resolves a vulnerability in Windows that could allow remote code execution if a user applies a specially crafted Windows theme on their system. In every case, a user cannot be forced to open the file or apply the theme. For an attack to be successful, a user must be convinced to open the file or apply the theme.