Windows 2000 Service Pack 4 is a well-tested collection of updates that focuses on a variety of customer-reported concerns with the Windows 2000 operating System. SP4 can be applied to Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server and Windows 2000 with Server Appliance Kit. Windows 2000 SP4 includes the updates contained in Windows 2000 Service Pack 1 (SP1), Windows 2000 Service Pack 2 (SP2), Windows 2000 Security Rollup Package 1 and Windows 2000 Service Pack 3 (SP3). Windows 2000 SP4 is a recommended upgrade.
Windows 2000 Service Pack 4 (SP4) provides the latest updates to the Windows 2000 family of operating systems. These updates are a collection of fixes in the following areas: application compatibility, operating system reliability, security, and setup.
Installation and download options
Windows 2000 SP4 is available from the Windows 2000 Service Pack 3 CD or via free download.
The Express Installation - The Express installation can be significantly faster to download than the Network installation. The Express installation detects the service pack files that are already installed on your computer. It then installs only those files that need to be updated. You must stay connected to the Internet during the installation.
Typical sizes and times for the Express installation:
Initial download size: 610kb
Windows 2000 Professional: 15mb
Windows 2000 Server Family: 27.4mb
This method of installation requires an Internet connection during installation.
Download from this link:
The Network Installation - Before you install SP4 on multiple computers, see the Windows 2000 Service Pack 4 Installation and Deployment Guide and the Hotfix Installation and Deployment Guide for information about installing SP4 in a corporate environment with or without Windows 2000.
Because you can use the Network installation method to install the service pack on multiple computers, and downloading the Network installation files takes a substantial amount of time, Microsoft recommends that you save the files that you download on your computer. This enables you to complete multiple installations, restart the installation, or reinstall SP4 without downloading the files again.
Because downloading these files can require considerable disk space, Microsoft recommends that you save the files to a disk other than your system disk if your computer has more than one hard disk.
After you have downloaded the installation files, you do not need to remain connected to the Internet during the Network installation of SP4.
Typical download times for the Network installation:
All Platforms: 129mb
Recommended for multiple-computer installation.
No Internet connection required during installation of Windows 2000 SP4 with this method.
Download from this link:
Security patches included in SP3
The following Microsoft Security Bulletins are included in Service Pack 4.
MS03-019 (817772) - Flaw in ISAPI extension for Windows Media Services could cause denial of service
MS03-018 (811114) - Cumulative Patch for Internet Information Service
MS03-014 (330994) - Cumulative Patch for Outlook Express
MS03-013 (811493) - Buffer Overrun in Windows Kernel Message Handling Could Lead to Elevated Privileges
MS03-010 (331953) - Flaw in RPC Endpoint Mapper Could Allow Denial of Service Attacks
MS03-008 (814078) - Flaw in Windows Script Engine Could Allow Code Execution
MS03-007 (815021) - Unchecked buffer in Windows Component Could Cause Web Server Compromise
MS03-001 (810833) - Unchecked Buffer in Locator Service Could Lead to Code Execution
MS02-071 (328310) - Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation
MS02-070 (329170) - Flaw in SMB Signing Could Enable Group Policy to be Modified
MS02-065 (329414) - Buffer Overrun in Microsoft Data Access Components Could Lead to Code Execution
MS02-063 (329834) - Unchecked Buffer in PPTP Implementation Could Enable Denial of Service Attacks
MS02-055 (323255) - Unchecked Buffer in Windows Help Facility Could Enable Code Execution
MS02-053 (324096) - Buffer Overrun in SmartHTML Interpreter Could Allow Code Execution
MS02-051 (324380) - Cryptographic Flaw in RDP Protocol can Lead to Information Disclosure
MS02-050 (329115) - Certificate Validation Flaw Could Enable Identity Spoofing
MS02-048 (323172) - Flaw in Certificate Enrollment Control Could Allow Deletion of Digital Certificates
MS02-045 (326830) - Unchecked Buffer in Network Share Provider can Lead to Denial of Service
MS02-042 (326886) - Flaw in Network Connection Manager Could Enable Privilege Elevation
MS02-032 (320920) - Cumulative Patch for Windows Media Player