MS05-052: Cumulative security update for Internet Explorer (896688)


The information in this article applies to:

  • Microsoft Windows Server 2003, Standard Edition
  • Microsoft Windows Server 2003, Enterprise Edition
  • Microsoft Windows Server 2003, Datacenter Edition
  • Microsoft Windows Server 2003, Web Edition
  • Microsoft Windows Server 2003, Enterprise Edition for Itanium-based Systems
  • Microsoft Windows Server 2003, Datacenter Edition for Itanium-based Systems
  • Microsoft Windows Server 2003, Standard x64 Edition
  • Microsoft Windows Server 2003, Enterprise x64 Edition
  • Microsoft Windows Server 2003, Datacenter x64 Edition
  • Microsoft Windows Small Business Server 2003, Premium Edition
  • Microsoft Windows Small Business Server 2003, Standard Edition
  • Microsoft Windows XP Professional 64-Bit Edition (Itanium) 2003
  • Microsoft Windows XP Professional 64-Bit Edition (Itanium)
  • Microsoft Windows XP Professional x64 Edition
  • Microsoft Windows XP Media Center Edition 2005
  • Microsoft Windows XP Tablet PC Edition 2005
  • Microsoft Windows XP Service Pack 2, when used with:
    • Microsoft Windows XP Home Edition
    • Microsoft Windows XP Professional
  • Microsoft Windows XP Service Pack 1, when used with:
    • Microsoft Windows XP Home Edition
    • Microsoft Windows XP Professional
    • Microsoft Windows XP Media Center Edition
    • Microsoft Windows XP Tablet PC Edition
  • Microsoft Small Business Server 2000
  • Microsoft Windows 2000 Professional SP4
  • Microsoft Windows 2000 Server SP4
  • Microsoft Windows 2000 Advanced Server SP4
  • Microsoft Windows 2000 Datacenter Server SP4
  • Microsoft Windows 2000 Server SP3
  • Microsoft Windows 2000 Advanced Server SP3
  • Microsoft Windows Millennium Edition
  • Microsoft Windows 98 Second Edition
  • Microsoft Internet Explorer 6.0 SP1
  • Microsoft Internet Explorer 5.5 SP2
  • Microsoft Internet Explorer 5.01 SP4
Microsoft has released security bulletin MS05-052. The security bulletin contains all the relevant information about the cumulative security update for Internet Explorer. This information includes file manifest information and deployment options. To view the complete security bulletin, visit the following Microsoft Web sites:

Notes

  • Update rollup 896727 includes the cumulative security fixes that are documented in security bulletin MS05-038. The update rollup also includes hotfixes for Microsoft Internet Explorer that have been released after the release of security bulletin MS04-004 and of security bulletin MS04-038.
  • If update rollup 873377, update rollup 889669, or an Internet Explorer hotfix that was released after security bulletin MS04-038 are not installed, and if you want to install the hotfixes that are included in update rollup 896727, you must follow the instructions in Microsoft Knowledge Base article 897225. Otherwise, all Internet Explorer hotfixes that you have installed are removed. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

    897225 How to install hotfixes that are included in cumulative security updates for Internet Explorer 6 Service Pack 1

    The update rollup 896727 installer verifies whether one or more of the files that are being updated on the computer have previously been updated by an Internet Explorer hotfix. However, the installer detects only hotfixes that were released after security bulletin MS04-038, after update rollup 873377, or after update rollup 889669. Therefore, if you have installed update rollup 873377, update rollup 889669, or an Internet Explorer hotfix that was released after update rollup 873377, the update rollup 896727 installer automatically installs the hotfixes and the security updates that are included in update rollup 896727.
  • A Microsoft Systems Management Server (SMS) deployment version of this update rollup is available. For more information about this version, click the following article number to view the article in the Microsoft Knowledge Base:

    907416 A Systems Management Server deployment package is available that includes security update MS05-052 for Internet Explorer 6 Service Pack 1

The following software updates are included in all the security update 896727 packages:

  • 899528 The "Open" button is missing when you click a Hypertext Transfer Protocol Secure link in Microsoft Internet Explorer 6 to open a Citrix MetaFrame file

  • 899284 An unhandled access violation may occur in the Mshtml.dll file when you use the IAccessible functions to retrieve information in Internet Explorer 6 Service Pack 1

Known issues

  • In Microsoft Windows XP with Service Pack 2 and in Microsoft Windows Server 2003 with Service Pack 1, the Add or Remove Programs item in Control Panel lists software updates. Add or Remove Programs lists software updates under the name of the product that the updates apply to. In Windows XP with Service Pack 2, Add or Remove Programs lists this update under Windows XP - Software Updates. In Windows XP with Service Pack 2, Add or Remove Programs does not show "Installed On" information for this software update. Therefore, this software update does not appear in the order of installation. Instead, this software update appears at the top of the Windows XP - Software Updates list.
  • After you install this security update, chapters in some Windows Media High Definition Video (WMV HD) DVDs do not play when you click the chapters in Microsoft Windows Media Player.

    For more information about this issue, click the following article number to view the article in the Microsoft Knowledge Base:

    884487 A chapter does not play when you click it in some WMV HD DVD disks in Windows Media Player

  • ActiveX controls may not load as you expect in Internet Explorer. For more information about this issue, click the following article number to view the article in the Microsoft Knowledge Base:

    909889 ActiveX controls may not load as expected in Internet Explorer due to defense in depth changes introduced in cumulative security update 896688 (MS05-052)

  • A Web page that contains an ActiveX control may not load as you expect in Internet Explorer. For more information about this issue, click the following article number to view the article in the Microsoft Knowledge Base:

    909738 A Web page that contains a custom ActiveX control may not load as expected in Internet Explorer due to defense in depth changes introduced in cumulative security update 896688 (MS05-052)

  • The use of monikers is no longer supported in Internet Explorer. For more information about this issue, click the following article number to view the article in the Microsoft Knowledge Base:

    906294 The use of monikers is no longer supported in Internet Explorer after installing the security updates provided by cumulative security update 896727 (MS05-038)

Modification Type:MinorLast Reviewed:7/26/2006
Keywords:kbQFE kbSecurity KbSECBulletin KbSECVulnerability kbWinXPpreSP2fix kbBug kbfix kbWinServ2003preSP1fix kbWin2000preSP5fix kbWinNT400PreSP7Fix kbHotfixServer kbpubtypekc KB896688 kbAudGeneralUser kbAudITPRO
©2004 Microsoft Corporation. All rights reserved.