Home › Downloads › Patches and Service Packs › Windows XP SP1/SP1a Patches

Windows XP SP1/SP1a Patches

by Daniel Petri - January 7, 2009

You should consider installing Service Pack 2 as soon as possible

On August 9, 2004, Microsoft released SP2 for Windows XP. SP2 is the latest collection of updates for Windows XP.

Download Windows XP SP2 Network Installation (266mb)

See the Windows 2000/XP SP Slipstreaming page for info on how to integrate SP2 into your existing media.

Required Patches

Windows XP Home or Professional with Service Pack 1 or Service Pack 1a requires the following security-related patches (If you don't know about SP1a or if you want to read about it go to my Windows XP SP1a Info page):

Make sure you read Internet Explorer 6.0 SP1 Patches and IIS 5.1 Patches before you go on.

October 2005

MS05-051 : Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400)

MS05-050 : Vulnerability in DirectShow Could Allow Remote Code Execution (904706)

MS05-049 : Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725)

MS05-048 : Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245)

MS05-047 : Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749)

MS05-046 : Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589)

MS05-045 : Vulnerability in Network Connection Manager Could Allow Denial of Service (905414)

MS05-044 : Vulnerability in the Windows FTP Client Could Allow File Transfer Location Tampering (905495)

August 2005

MS05-043 : Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423)

MS05-042 : Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587)

MS05-041 : Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591)

MS05-040 : Vulnerability in Telephony Service Could Allow Remote Code Execution (893756)

July 2005

MS05-036 : Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214)

June 2005

MS05-033 : Vulnerability in Telnet Client Could Allow Information Disclosure (896428)

MS05-032 : Vulnerability in Microsoft Agent Could Allow Spoofing (890046)

MS05-031 : Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (898458)

MS05-030 : Cumulative Security Update in Outlook Express (897715)

MS05-028 : Vulnerability in Web Client Service Could Allow Remote Code Execution (896426)

MS05-027 : Vulnerability in Server Message Block Could Allow Remote Code Execution (896422)

MS05-026 : Vulnerability in HTML Help Could Allow Remote Code Execution (896358)

April 2005

MS05-019 : Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066)

MS05-018 : Vulnerability in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859)

MS05-017 : Vulnerability in Message Queuing Could Allow Code Execution (892944)

MS05-016 : Vulnerability in Windows Shell that Could Allow Remote Code Execution (893086)

February 2005

MS05-015 : Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113)

MS05-013 : Vulnerability in the DHTML Editing ActiveX Control could allow code execution (891781)

MS05-012 : Vulnerability in OLE and COM Could Allow Remote Code Execution (873333)

MS05-011 : Vulnerability in Server Message Block Could Allow Remote Code Execution (885250)

MS05-010 : Vulnerability in the License Logging Service Could Allow Code Execution (885834)

MS05-009 : Vulnerability in PNG Processing Could Lead to Buffer Overrun (890261)

MS05-006 : Vulnerability in Windows Could Allow Information Disclosure (888302)

MS05-004 : ASP. NET Path Validation Vulnerability (887219)

January 2005

MS05-003 : Vulnerability in the Indexing Service Could Allow Remote Code Execution (871250)

MS05-002 : Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (891711)

MS05-001 : Vulnerability in HTML Help Could Allow Code Execution (890175)

December 2004

MS04-045 : Vulnerability in WINS Could Allow Remote Code Execution (870763)

MS04-044 : Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege (885835)

MS04-043 : Vulnerability in HyperTerminal Could Allow Code Execution (873339)

MS04-041 : Vulnerability in WordPad Could Allow Code Execution (885836)

October 2004

MS04-037 : Vulnerability in Windows Shell Could Allow Remote Code Execution (841356)

MS04-034 : Vulnerability in Compressed (zipped) Folders Could Allow Code Execution (873376)

MS04-032 : Security Update for Microsoft Windows (840987)

MS04-031 : Vulnerability in NetDDE Could Allow Remote Code Execution (841533)

MS04-030 : Vulnerability in WebDav XML Message Handler Could Lead to a Denial of Service (824151)

MS04-028 : Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (873374)

July 2004

TrainSignal's Unlimited IT Training For Only $49 Per Month - Start FREE Trial

MS04-024 : Vulnerability in Windows Shell Could Allow Remote Code Execution (839645)

MS04-023 : Vulnerability in HTML Help Could Allow Code Execution (840315)

MS04-022 : Vulnerability in Task Scheduler Could Allow Code Execution (841873)

Full list

For the full list of Windows XP post-SP1/1a fixes please visit the following URL:

Windows XP post-SP1/1a hotfixes, updates, and security patches

Note that this list contains ALL fixes, not just the security updates. Depending on your configuration you might not need to apply all the fixes listed above.

Download Windows Server 2012 ... 180 Day FREE Trial

Like what you're reading?

Windows XP SP1/SP1a Patches

You should consider installing Service Pack 2 as soon as possible

Required Patches

July 2004

June 2004

May 2004

April 2004

February 2004

January 2004

November 2003

October 2003

September 2003

July 2003

May 2003

April 2003

March 2003

February 2003

January 2003

December 2002

November 2002

October 2002

September 2002

Full list

Related Articles