Microsoft has released security bulletin MS09-010. To view the complete security bulletin, visit one of the following Microsoft Web sites.
How to obtain help and support for this security update
Help installing updates:
Support for Microsoft Update
Security solutions for IT professionals:
TechNet Security Troubleshooting and Support
Help protect your computer that is running Windows from viruses and malware:
Virus Solution and Security Center
Local support according to your country:
More information about this security update
Known issues with this security update
After you apply this security update, you may have to accept the Microsoft Software License Terms when you start a Microsoft Office XP program. If you do not accept the Microsoft Software License Terms, the Office XP program may not start.
The Html32.cnv file is installed from any one of the following sources:
- Windows NT 4.0
- Windows 2000
- Windows Server 2003
- Windows XP
- Microsoft FrontPage 2002 (Html32.cnv only)
- A version of Microsoft Office 2002 that includes Microsoft FrontPage 2002 (Html32.cnv only)
After you install this security update, the Html32.cnv, Mswrd832.cnv, and Msconv97.dll files may not be updated.
If Office is not installed, the Office update will not install on the computer if Office is not present. WordPad or Office will not use these converter files, although they remain present on the system.
By default, if Office is installed, the Mswrd832.cnv and Msconv97.dll files are installed only on first use by Office. The files in the TextConv location may not be the Office versions of the files but the operating system versions.
After you install this security update, the Mswrd832.cnv and Msconv97dll files may not be updated. However, the update will install the updated files in the MSOCache. The first time that you open a Word file, the updated converter will be installed into the TextConv location. This is by design.
HTML32.cnv: This file may not update if you are running a version of Office 2002 that does not include FrontPage.
This security update does not successfully install on Office XP Personal Edition, a release version of Office XP. However, security update MS09-073 supersedes this update for Office XP Personal Edition. We recommend that customers of Office XP Personal Edition install security update MS09-073
, which will help protect them against the vulnerabilities that are addressed by security bulletin MS09-010.Am I still vulnerable after I apply this update?
No, WordPad uses the WPC files in the TextConv location to open files. When Office requests a relevant file to be loaded, the latest copy will be installed from MSOCache, which was updated by the security update.
Prerequisites to install this security update
To apply this security update, you must have Office XP Service Pack 3 (SP3) installed.
For more information about how to obtain this service pack, click the following article number to view the article in the Microsoft Knowledge Base:
How to obtain the latest Office XP service pack
To remove this security update, use Add or Remove Programs
in Control Panel.
The English (United States) version of this security update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone
tab in the Date and Time
item in Control Panel.
Collapse this tableExpand this table
|File name||File version||File size||Date||Time|