# Build a Bootable Windows XP disk with SP2 and all critical post-SP2 hotfixes slipstreamed in
# Copyright (c) 2003-2008, Ross Smith. All rights reserved.
# ChangeLog:
#
# 15-Apr-08
# Added KB948590: MS08-021: Vulnerabilities in GDI Could Allow Remote Code Execution (Critical)
# Added KB944338: MS08-022: Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution (Critical)
# Added KB948881: MS08-023: Security Update of ActiveX Kill Bits (Critical)
# Added KB947864: MS08-024: Cumulative Security Update for Internet Explorer (Critical)
# Added KB945553: MS08-020: Vulnerability in DNS Client Could Allow Spoofing (Important)
# Added KB941693: MS08-025: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (Important)
# Removed KB938829
# Removed KB917344
# Removed KB944533
#
# 21-Feb-08:
# added Feb 08 security updated
# Added KB946026: MS08-007: Vulnerability in WebDAV Mini-Redirector Could Allow Remote Code Execution (Critical)
# Added KB943055: MS08-008: Vulnerability in OLE Automation Could Allow Remote Code Execution (Critical)
# Removed MS07-043
# Added KB944533: MS08-010: Cumulative Security Update for Internet Explorer (Critical)
# Removed MS07-069
# Added KB946538: MS08-003: Vulnerability in Active Directory Could Allow Denial of Service (Important)
# Added KB942831: MS08-005: Vulnerability in Internet Information Services Could Allow Elevation of Privilege (Important)
# Added KB942830: MS08-006: Vulnerability in Internet Information Services Could Allow Remote Code Execution (Important)
# Removed MS06-034
#
# 28-Jan-08:
# Added KB943485: MS08-002: Vulnerability in LSASS Could Allow Local Elevation of Privilege (Important)
# Added KB941644: MS08-001: Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (Critical)
# replaces KB917953: MS06-032
#
# 29-Dec-07
# Added Nov 07 security updates
# Added Dec 07 security updates
# Removed KB904706
# Removed KB923689
# Removed KB939653
#
# 11-Oct-07
# Added Oct 07 security updates
# Removed KB937143
#
# 24-Aug-07
# Added Aug 07 security updates
# Removed KB929969
# Removed KB933566
# Removed KB917734
#
# 20-Jul-07:
#
# Added KB939373: MS07-041: Vulnerability in Microsoft Internet Information Services Could Allow Remote Code Execution (Important)
# Changed SP2 identifying file from \WIN51IP.SP2.SP2 to \I386\sp2.cab
# $Id$
# requires the Cygwin commands:
#
# basename bash chmod cp cut cygpath echo grep ls make md5sum mkdir mv perl pwd rm test touch tr unzip wget which
#
# To have these commands, you will need to install the following optional packages:
#
# make
# perl
# unzip
# wget
#
# optional:
# mkisofs/cdrecord
# Inspiration:
# http://www.windows-help.net/WindowsXP/winxp-sp1-bootcd.html
# See also:
# http://www.theeldergeek.com/slipstream_01.htm
# Windows drive letter for CD drive containing original Windows XP disk
CD ?=D:
# cdrecord device for the CD-R drive to burn the new disk (run 'cdrecord -scanbus' to discover)
CD_DEV ?=1,0,0
# Additional cdrecord options
CDRECORD_OPTS ?=
# Set to Y to wait until you press Enter before burning CD (CD and CD_DEV above refer to the same drive)
PAUSE ?=Y
BBIE_VER?=10
PEBUILDER_VER?=3110a
BBIE_ZIP=bbie$(BBIE_VER).zip
PEBUILDER_ZIP=pebuilder$(PEBUILDER_VER).zip
NU2_MIRRORS=http://69.90.47.6/mybootdisks.com/mybootdisks_com/nu2 \
http://www.hamnerconsulting.com/nu2/mirrorfiles \
http://securitywonks.net/n2u/mirrorfiles \
http://securitywonks.org/n2u/mirrorfiles \
http://nu2.zone-x.com/mirrorfiles \
http://www.web-techs.net/bart \
http://sharkden.com/bart \
http://www.mirror.ac.uk/mirror/ftp.nu2.nu \
ftp://dl.xs4all.nl/pub/mirror/nu2files \
http://ftp.rz.tu-bs.de/pub/mirror/www.nu2.nu/nu2files \
http://downloads.planetmirror.com/pub/nu2files \
ftp://dlsrv3.winboard.org/nu2 \
http://217.160.177.182/nu2files \
http://bartpe.surfnow.nl \
http://gd.tuwien.ac.at/pc/nu2files \
http://nu2.abwehr.net \
http://nu2.gipsvagga.com \
http://nu2.phpwiz.dk \
http://nu2files.osterberg.org \
http://nu2mirror.frashii.com \
http://www.nu2.mostlycreativeworkshop.com/files
DD_MMM_YY=$(shell date +%d-%b-%y)
# http://www.microsoft.com/security/default.mspx
# http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/winxpsp2.mspx
# http://www.microsoft.com/downloads/details.aspx?FamilyID=049c9dbe-3b8e-4f30-8245-9e368d3cdb5a&DisplayLang=en
SERVICE_PACK_URL=http://download.microsoft.com/download/1/6/5/165b076b-aaa9-443d-84f0-73cf11fdcdf8/WindowsXP-KB835935-SP2-ENU.exe
SERVICE_PACK_EXE=$(shell basename $(SERVICE_PACK_URL))
# http://support.microsoft.com/kb/873339: MS04-043: Vulnerability in HyperTerminal could allow code execution
KB873339_URL?=http://download.microsoft.com/download/8/3/e/83e7e311-f8ea-4e59-9b50-64dbfdcb0f1f/WindowsXP-KB873339-x86-ENU.exe
KB873339_EXE?=$(shell basename $(KB873339_URL))
# http://support.microsoft.com/kb/885835: MS04-044: Vulnerabilities in Windows Kernel and LSASS could allow elevation of privilege
KB885835_URL?=http://download.microsoft.com/download/c/c/3/cc385a85-3a2e-4632-ad43-72e48480e69c/WindowsXP-KB885835-x86-ENU.exe
KB885835_EXE?=$(shell basename $(KB885835_URL))
# http://support.microsoft.com/kb/885836: MS04-041: A vulnerability in WordPad could allow code execution
KB885836_URL?=http://download.microsoft.com/download/3/d/a/3dafd665-ac57-4abe-9ddb-63d4398b7fd2/WindowsXP-KB885836-x86-ENU.exe
KB885836_EXE?=$(shell basename $(KB885836_URL))
# February, 2005: http://www.microsoft.com/technet/security/bulletin/ms05-feb.mspx
# http://support.microsoft.com/kb/888302: MS05-007: Vulnerability in Windows could allow information disclosure
KB888302_URL?=http://download.microsoft.com/download/e/b/8/eb8e1485-0e8e-4c52-b420-94e70f13cb0e/WindowsXP-KB888302-x86-ENU.exe
KB888302_EXE?=$(shell basename $(KB888302_URL))
:: aka 890261
# http://support.microsoft.com/kb/887472: MS05-009: Vulnerability in PNG Processing Could Allow Remote Code Execution (Critical)
KB887472_URL?=http://download.microsoft.com/download/c/7/a/c7a958a9-54cf-4336-8123-d7fb74d5cd06/WindowsXP-KB887472-x86-enu.exe
KB887472_EXE?=$(shell basename $(KB887472_URL))
# http://support.microsoft.com/kb/891781: MS05-013: Vulnerability in the DHTML Editing Component ActiveX Control Could Allow Remote Code Execution (Critical)
KB891781_URL?=http://download.microsoft.com/download/a/4/f/a4ff8b08-f40a-4b0f-8625-b253e9db911b/WindowsXP-KB891781-x86-ENU.exe
KB891781_EXE?=$(shell basename $(KB891781_URL))
# April, 2005: http://www.microsoft.com/technet/security/bulletin/ms05-apr.mspx
# http://support.microsoft.com/kb/890859: MS05-018: Vulnerabilities in Windows kernel could allow elevation of privilege and denial of service
KB890859_URL?=http://download.microsoft.com/download/1/f/c/1fccbfc9-aeb6-4762-adc1-47d512ecb61c/WindowsXP-KB890859-x86-ENU.exe
KB890859_EXE?=$(shell basename $(KB890859_URL))
# June, 2005: http://www.microsoft.com/technet/security/bulletin/ms05-jun.mspx
# http://support.microsoft.com/kb/896358: MS05-026: Vulnerability in HTML Help Could Allow Remote Code Execution
KB896358_URL?=http://download.microsoft.com/download/6/3/9/639eef80-2245-486c-a23f-914c0b31336b/WindowsXP-KB896358-x86-ENU.exe
KB896358_EXE?=$(shell basename $(KB896358_URL))
# http://support.microsoft.com/kb/896422: MS05-027: Vulnerability in Server Message Block Could Allow Remote Code Execution
#KB896422_URL?=http://download.microsoft.com/download/f/d/4/fd470cc2-1813-4a50-be2a-5b1b5a343305/WindowsXP-KB896422-x86-ENU.exe
#KB896422_EXE?=$(shell basename $(KB896422_URL))
# http://support.microsoft.com/kb/890046: MS05-032: Vulnerability in Microsoft Agent Could Allow Spoofing (Moderate)
#KB890046_URL?=http://download.microsoft.com/download/7/5/1/7514f760-a4e1-444d-8d4c-316b09e5a175/WindowsXP-KB890046-x86-ENU.exe
#KB890046_EXE?=$(shell basename $(KB890046_URL))
# http://support.microsoft.com/kb/896428: MS05-033: Vulnerability in Telnet Client Could Allow Information Disclosure
KB896428_URL?=http://download.microsoft.com/download/7/1/1/7114dee3-7f2c-4ac9-acc9-b97acde812e8/WindowsXP-KB896428-x86-ENU.exe
KB896428_EXE?=$(shell basename $(KB896428_URL))
# July, 2005: http://www.microsoft.com/technet/security/bulletin/ms05-jul.mspx
# http://support.microsoft.com/kb/901214: MS05-036: Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution
KB901214_URL?=http://download.microsoft.com/download/e/1/d/e1dea0de-8f7d-481c-b04c-c873f6140df2/WindowsXP-KB901214-x86-ENU.exe
KB901214_EXE?=$(shell basename $(KB901214_URL))
# August, 2005: http://www.microsoft.com/technet/security/bulletin/ms05-aug.mspx
# http://support.microsoft.com/kb/893756: MS05-040: Vulnerability in Telephony Service Could Allow Remote Code Execution (Important)
KB893756_URL?=http://download.microsoft.com/download/0/9/d/09d163d5-9793-458f-aeaa-b5c9dff72350/WindowsXP-KB893756-x86-ENU.exe
KB893756_EXE?=$(shell basename $(KB893756_URL))
# http://support.microsoft.com/kb/899591: MS05-041: Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (Moderate)
KB899591_URL?=http://download.microsoft.com/download/0/8/2/082a950a-fdec-4cb3-8e9c-69d877e4f922/WindowsXP-KB899591-x86-ENU.exe
KB899591_EXE?=$(shell basename $(KB899591_URL))
# http://support.microsoft.com/kb/899587: MS05-042: Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (Moderate)
KB899587_URL?=http://download.microsoft.com/download/4/3/0/430cb1fd-38b9-4dbc-9077-0cad900ca5e5/WindowsXP-KB899587-x86-ENU.exe
KB899587_EXE?=$(shell basename $(KB899587_URL))
# http://support.microsoft.com/kb/896423: MS05-043: Vulnerability in Print Spooler Service Could Allow Remote Code Execution (Critical)
KB896423_URL?=http://download.microsoft.com/download/7/a/f/7af980c5-5a65-4067-8801-1f27856ef4f3/WindowsXP-KB896423-x86-ENU.exe
KB896423_EXE?=$(shell basename $(KB896423_URL))
# October, 2005: http://www.microsoft.com/technet/security/bulletin/ms05-oct.mspx
# http://support.microsoft.com/kb/905414: MS05-045: Vulnerability in Network Connection Manager Could Allow Denial of Service (Moderate)
KB905414_URL?=http://download.microsoft.com/download/7/c/e/7ce2cf5f-7658-4835-90f4-3db49688b530/WindowsXP-KB905414-x86-ENU.exe
KB905414_EXE?=$(shell basename $(KB905414_URL))
# http://support.microsoft.com/kb/905749: MS05-047: Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (Important)
KB905749_URL?=http://download.microsoft.com/download/e/6/7/e67f4d2a-8988-485d-a0ba-4916e75173a9/WindowsXP-KB905749-x86-ENU.exe
KB905749_EXE?=$(shell basename $(KB905749_URL))
# http://support.microsoft.com/kb/901017: MS05-048: Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (Important)
KB901017_URL?=http://download.microsoft.com/download/c/e/9/ce9314f0-4dfb-4d70-9111-a2db25c381a7/WindowsXP-KB901017-x86-ENU.exe
KB901017_EXE?=$(shell basename $(KB901017_URL))
# http://support.microsoft.com/kb/900725: MS05-049: Vulnerabilities in the Windows shell could allow for remote code execution (Important)
KB900725_URL?=http://download.microsoft.com/download/4/d/a/4dadb98c-354d-4729-be91-a966adbd2e04/WindowsXP-KB900725-x86-ENU.exe
KB900725_EXE?=$(shell basename $(KB900725_URL))
# http://support.microsoft.com/kb/904706: MS05-050: Vulnerability in DirectShow Could Allow Remote Code Execution (Critical)
#KB904706_URL?=http://download.microsoft.com/download/e/3/9/e398de49-3012-446b-9ea5-36d0dfa366ef/WindowsXP-KB904706-v2-x86-ENU.exe
#KB904706_EXE?=$(shell basename $(KB904706_URL))
# November, 2005: http://www.microsoft.com/technet/security/bulletin/ms05-nov.mspx
# http://support.microsoft.com/kb/902400: MS05-051: Vulnerabilities in MS DTC and COM+ could allow remote code execution (Critical)
KB902400_URL?=http://download.microsoft.com/download/4/c/d/4cd35721-3d29-4fc5-9fb0-f9a6a2bfef41/WindowsXP-KB902400-x86-ENU.exe
KB902400_EXE?=$(shell basename $(KB902400_URL))
# http://support.microsoft.com/kb/896424: MS05-053: Vulnerabilities in Graphics Rendering Engine Could Allow Code Execution (Critical)
#KB896424_URL?=http://download.microsoft.com/download/1/7/f/17f74fcb-5a29-492e-baf5-503357aeaf2b/WindowsXP-KB896424-x86-ENU.exe
#KB896424_EXE?=$(shell basename $(KB896424_URL))
# January, 2006: http://www.microsoft.com/technet/security/bulletin/ms06-jan.mspx
# http://support.microsoft.com/kb/912919: MS06-001: Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (Critical)
#KB912919_URL?=http://download.microsoft.com/download/e/f/5/ef594826-fca1-492e-9981-22e0f579e02e/WindowsXP-KB912919-x86-ENU.exe
#KB912919_EXE?=$(shell basename $(KB912919_URL))
# http://support.microsoft.com/kb/908519: MS06-002 Vulnerability in Embedded Web Fonts Could Allow Remote Code Execution (Critical)
KB908519_URL?=http://download.microsoft.com/download/c/d/4/cd485501-656e-4f23-a196-20a4106547b4/WindowsXP-KB908519-x86-ENU.exe
KB908519_EXE?=$(shell basename $(KB908519_URL))
# February, 2006: http://www.microsoft.com/technet/security/bulletin/ms06-feb.mspx
# http://support.microsoft.com/kb/911565: MS06-005 Vulnerability in Windows Media Player could allow remote code execution (Critical)
KB911565_URL?=http://download.microsoft.com/download/e/e/c/eeca6f33-ddce-41f7-b2d1-ce2635369d29/WindowsMedia9-KB911565-x86-ENU.exe
KB911565_EXE?=$(shell basename $(KB911565_URL))
# http://support.microsoft.com/kb/911564: MS06-006 Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution (Important)
KB911564_URL?=http://download.microsoft.com/download/3/1/5/31545397-c828-49c6-a30f-65799d411ce1/WindowsMedia-KB911564-x86-ENU.exe
KB911564_EXE?=$(shell basename $(KB911564_URL))
# http://support.microsoft.com/kb/913446: MS06-007 Vulnerability in TCP/IP Could Allow Denial of Service (Important)
#KB913446_URL?=http://download.microsoft.com/download/1/a/a/1aa60d30-9cb8-4fc8-bb79-21e0420a76ed/WindowsXP-KB913446-x86-ENU.exe
#KB913446_EXE?=$(shell basename $(KB913446_URL))
# http://support.microsoft.com/kb/911927: MS06-008 Vulnerability in Web Client Service Could Allow Remote Code Execution (Important)
KB911927_URL?=http://download.microsoft.com/download/0/9/6/096b63e5-4f08-44e7-9152-01a602d5881b/WindowsXP-KB911927-x86-ENU.exe
KB911927_EXE?=$(shell basename $(KB911927_URL))
# http://support.microsoft.com/kb/901190: MS06-009 Vulnerability in the Korean Input Method Editor Could Allow Elevation of Privilege (Important)
KB901190_URL?=http://download.microsoft.com/download/3/7/6/376001e0-a856-439f-8fc1-46501464a97b/WindowsXP-KB901190-x86-ENU.exe
KB901190_EXE?=$(shell basename $(KB901190_URL))
# April, 2006: http://www.microsoft.com/technet/security/bulletin/ms06-apr.mspx
# http://support.microsoft.com/kb/911562: MS06-014: Vulnerability in the Microsoft Data Access Components (MDAC) Function Could Allow Code Execution (Critical)
KB911562_URL?=http://download.microsoft.com/download/c/f/b/cfb8825f-4515-4c9f-af56-ff8c4eeb5b3b/WindowsXP-KB911562-x86-ENU.exe
KB911562_EXE?=$(shell basename $(KB911562_URL))
# http://support.microsoft.com/kb/908531: MS06-015: Vulnerability in Windows Explorer Could Allow Remote Code Execution (Critical)
KB908531_URL?=http://download.microsoft.com/download/5/d/c/5dc567bf-cd78-46f2-a714-7c3d7f8c66a0/WindowsXP-KB908531-v2-x86-ENU.exe
KB908531_EXE?=$(shell basename $(KB908531_URL))
# http://support.microsoft.com/kb/911567: MS06-016: Cumulative Security Update for Outlook Express (Important)
#KB911567_URL?=http://download.microsoft.com/download/c/f/8/cf80d522-c5b1-4b4d-b25a-24041cdd0654/WindowsXP-KB911567-x86-ENU.exe
#KB911567_EXE?=$(shell basename $(KB911567_URL))
# May, 2006: http://www.microsoft.com/technet/security/bulletin/ms06-may.mspx
# http://support.microsoft.com/kb/913580: MS06-018: Vulnerability in Microsoft Distributed Transaction Coordinator Could Allow Denial of Service (Moderate)
KB913580_URL?=http://download.microsoft.com/download/9/6/e/96ed59fb-8182-4f51-8c5e-1d14d8eca039/WindowsXP-KB913580-x86-ENU.exe
KB913580_EXE?=$(shell basename $(KB913580_URL))
# June, 2006: http://www.microsoft.com/technet/security/bulletin/ms06-jun.mspx
# http://support.microsoft.com/kb/918439: MS06-022: Vulnerability in ART Image Rendering Could Allow Remote Code Execution (Critical)
KB918439_URL?=http://download.microsoft.com/download/3/5/6/35603869-9f86-4cf8-9db1-bc9a06c32f63/WindowsXP-KB918439-x86-ENU.exe
KB918439_EXE?=$(shell basename $(KB918439_URL))
# http://support.microsoft.com/kb/917344: MS06-023: Vulnerability in Microsoft JScript Could Allow Remote Code Execution (Critical)
# replaced
#KB917344_URL?=http://download.microsoft.com/download/4/6/b/46bf4848-a039-429d-a222-6143a12e2cdd/WindowsXP-KB917344-x86-ENU.exe
#KB917344_EXE?=$(shell basename $(KB917344_URL))
# http://support.microsoft.com/kb/917734: MS06-024: Vulnerability in Windows Media Player Could Allow Remote Code Execution (Critical)
#KB917734_URL?=http://download.microsoft.com/download/b/8/e/b8e2b561-79bb-4c27-bb23-9333c14a73eb/WindowsMedia9-KB917734-x86-ENU.exe
#KB917734_EXE?=$(shell basename $(KB917734_URL))
# http://support.microsoft.com/kb/917734: MS06-024: Vulnerability in Windows Media Player Could Allow Remote Code Execution (Critical)
#KB917734b_URL?=http://download.microsoft.com/download/9/2/b/92bcc86c-73c9-4876-b5a2-d97cf7abec8f/WindowsMedia10-KB917734-x86-ENU.exe
#KB917734b_EXE?=$(shell basename $(KB917734b_URL))
# http://support.microsoft.com/kb/911280: MS06-025: Vulnerability in Routing and Remote Access Could Allow Remote Code Execution (Critical)
KB911280_URL?=http://download.microsoft.com/download/2/7/a/27a678b5-d598-4f54-8cef-282dc63afa04/WindowsXP-KB911280-v2-x86-ENU.exe
KB911280_EXE?=$(shell basename $(KB911280_URL))
# http://support.microsoft.com/kb/914389: MS06-030: Vulnerability in Server Message Block Could Allow Elevation of Privilege (Important)
KB914389_URL?=http://download.microsoft.com/download/d/d/3/dd3348ec-0dbf-4639-b9de-d13e62aa5542/WindowsXP-KB914389-x86-ENU.exe
KB914389_EXE?=$(shell basename $(KB914389_URL))
# http://support.microsoft.com/kb/917953: MS06-032: Vulnerability in TCP/IP Could Allow Remote Code Execution (Important)
#KB917953_URL?=http://download.microsoft.com/download/0/0/7/007eec69-c7a8-4503-b46b-50996c16fc87/WindowsXP-KB917953-x86-ENU.exe
#KB917953_EXE?=$(shell basename $(KB917953_URL))
# July, 2006: http://www.microsoft.com/technet/security/bulletin/ms07-jul.mspx
# http://support.microsoft.com/kb/917537: MS06-034: Vulnerability in Microsoft Internet Information Services using Active Server Pages Could Allow Remote Code Execution (Important)
KB917537_URL?=http://download.microsoft.com/download/a/9/f/a9f7ef10-6b38-40ba-8256-42ce8e9308aa/WindowsXP-KB917537-x86-ENU.exe
KB917537_EXE?=$(shell basename $(KB917537_URL))
# http://support.microsoft.com/kb/917159 MS06-035: Vulnerability in Server Service Could Allow Remote Code Execution (Critical)
#KB917159_URL?=http://download.microsoft.com/download/0/c/5/0c5b050f-9852-4cf9-b064-5b895133834f/WindowsXP-KB917159-x86-ENU.exe
#KB917159_EXE?=$(shell basename $(KB917159_URL))
# http://support.microsoft.com/kb/914388 MS06-036: Vulnerability in DHCP Client Service Could Allow Remote Code Execution (Critical)
KB914388_URL?=http://download.microsoft.com/download/a/d/5/ad51c62d-3cc9-4e7a-8603-2909a8cce99d/WindowsXP-KB914388-x86-ENU.exe
KB914388_EXE?=$(shell basename $(KB914388_URL))
# August, 2006: http://www.microsoft.com/technet/security/bulletin/ms06-aug.mspx
# http://support.microsoft.com/kb/920683: MS06-041: Vulnerability in DNS Resolution Could Allow Remote Code Execution (Critical)
KB920683_URL?=http://download.microsoft.com/download/5/1/a/51ad2a54-4439-4e9a-8305-11b1fd640298/WindowsXP-KB920683-x86-ENU.exe
KB920683_EXE?=$(shell basename $(KB920683_URL))
# http://support.microsoft.com/kb/920214: MS06-043: Vulnerability in Microsoft Windows Could Allow Remote Code Execution (Critical) (Security Update for Outlook Express for Windows XP)
#KB920214_URL?=http://download.microsoft.com/download/2/8/a/28a18ea6-0d1c-414d-afd5-56c835c46969/WindowsXP-KB920214-x86-ENU.exe
#KB920214_EXE?=$(shell basename $(KB920214_URL))
# http://support.microsoft.com/kb/921398: MS06-045: Vulnerability in Windows Explorer Could Allow Remote Code Execution (Important)
#KB921398_URL?=http://download.microsoft.com/download/9/4/7/947f67c2-7d13-4b53-b0d3-efd5b4d8059f/WindowsXP-KB921398-x86-ENU.exe
#KB921398_EXE?=$(shell basename $(KB921398_URL))
# http://support.microsoft.com/kb/922616: MS06-046: Vulnerability in HTML Help Could Allow Remote Code Execution (Critical)
#KB922616_URL?=http://download.microsoft.com/download/3/2/7/327df13f-17e8-4a47-af39-eb12c29f97c5/WindowsXP-KB922616-x86-ENU.exe
#KB922616_EXE?=$(shell basename $(KB922616_URL))
# http://support.microsoft.com/kb/920670 : MS06-050: Vulnerabilities in Microsoft Windows Hyperlink Object Library Could Allow Remote Code Execution (Important)
KB920670_URL?=http://download.microsoft.com/download/3/2/0/32020229-01a6-459a-bb5c-38a853340620/WindowsXP-KB920670-x86-ENU.exe
KB920670_EXE?=$(shell basename $(KB920670_URL))
# http://support.microsoft.com/kb/917422: MS06-051: Vulnerability in Windows Kernel Could Result in Remote Code Execution (Critical)
# replaced by KB935839: MS07-035:
#KB917422_URL?=http://download.microsoft.com/download/9/7/0/9701897a-9321-4989-a521-3f8b48deaaa4/WindowsXP-KB917422-x86-ENU.exe
#KB917422_EXE?=$(shell basename $(KB917422_URL))
# September, 2006: http://www.microsoft.com/technet/security/bulletin/ms07-sep.mspx
# http://support.microsoft.com/kb/919007: MS06-052: Vulnerability in Reliable Multicast Program (PGM) Could Allow Remote Code Execution (Important)
KB919007_URL?=http://download.microsoft.com/download/8/6/8/86836047-735d-4ef2-9ff6-b1bf9bc787ac/WindowsXP-KB919007-x86-ENU.exe
KB919007_EXE?=$(shell basename $(KB919007_URL))
# http://support.microsoft.com/kb/920685: MS06-053: Vulnerability in Indexing Service Could Allow Cross-Site Scripting (Moderate)
KB920685_URL?=http://download.microsoft.com/download/6/3/a/63aa78dc-1fdc-4ae3-adb6-027f5ffd1c12/WindowsXP-KB920685-x86-ENU.exe
KB920685_EXE?=$(shell basename $(KB920685_URL))
# http://support.microsoft.com/kb/925486: MS06-055: Vulnerability in Vector Markup Language Could Allow Remote Code Execution (Critical)
#KB925486_URL?=http://download.microsoft.com/download/9/b/7/9b75170e-adf2-4baa-b3c0-6063dc518fa7/WindowsXP-KB925486-x86-ENU.exe
#KB925486_EXE?=$(shell basename $(KB925486_URL))
# October, 2006: http://www.microsoft.com/technet/security/bulletin/ms08-oct.mspx
# http://support.microsoft.com/kb/923191: MS06-057: Vulnerability in Windows Explorer Could Allow Remote Execution (Critical)
KB923191_URL?=http://download.microsoft.com/download/d/b/2/db2ff020-6bb2-4297-9e26-12a4d2f28831/WindowsXP-KB923191-x86-ENU.exe
KB923191_EXE?=$(shell basename $(KB923191_URL))
# http://support.microsoft.com/kb/924191: MS06-061: Vulnerabilities in Microsoft XML Core Services could allow remote code execution (Critical)
KB924191_URL?=http://download.microsoft.com/download/9/6/b/96bc5707-1992-489c-8245-31e6217038bd/WindowsXP-KB924191-x86-ENU.exe
KB924191_EXE?=$(shell basename $(KB924191_URL))
# http://support.microsoft.com/kb/923414: MS06-063: Vulnerability in Server Service Could Allow Denial of Service and Remote Code Execution (Important)
# replaces KB917159
KB923414_URL?=http://download.microsoft.com/download/c/a/7/ca7f6705-cfd1-4506-a823-a096d8d91b65/WindowsXP-KB923414-x86-ENU.exe
KB923414_EXE?=$(shell basename $(KB923414_URL))
# http://support.microsoft.com/kb/922819: MS06-064: Vulnerabilities in TCP/IP IPv6 Could Allow Denial of Service (Low)
KB922819_URL?=http://download.microsoft.com/download/3/c/a/3caf8bbd-a491-4a39-a46c-b9ada6661997/WindowsXP-KB922819-x86-ENU.exe
KB922819_EXE?=$(shell basename $(KB922819_URL))
# http://support.microsoft.com/kb/924496: MS06-065: Vulnerability in Windows Object Packager Could Allow Remote Execution (Moderate)
KB924496_URL?=http://download.microsoft.com/download/4/8/9/48996817-d742-41d3-9e47-304297b5d7b2/WindowsXP-KB924496-x86-ENU.exe
KB924496_EXE?=$(shell basename $(KB924496_URL))
# November, 2006: http://www.microsoft.com/technet/security/bulletin/ms06-nov.mspx
# http://support.microsoft.com/kb/923980">MS06-066: Vulnerabilities in Client Service for NetWare Could Allow Remote Code Execution (Important)
KB923980_URL?=http://download.microsoft.com/download/b/f/3/bf33facd-f628-4c19-bd69-86341da0db23/WindowsXP-KB923980-x86-ENU.exe
KB923980_EXE?=$(shell basename $(KB923980_URL))
# http://support.microsoft.com/kb/922760: MS06-067: Cumulative Security Update for Internet Explorer (Critical)
#KB922760_URL?=http://download.microsoft.com/download/b/9/3/b9399063-044c-426d-b780-44f9257bbde1/WindowsXP-KB922760-x86-ENU.exe
#KB922760_EXE?=$(shell basename $(KB922760_URL))
# http://support.microsoft.com/kb/920213: MS06-068: Vulnerability in Microsoft Agent Could Allow Remote Code Execution (Critical)
KB920213_URL?=http://download.microsoft.com/download/d/4/9/d493b510-0145-47f8-8fd3-b488cd5db59f/WindowsXP-KB920213-x86-ENU.exe
KB920213_EXE?=$(shell basename $(KB920213_URL))
# http://support.microsoft.com/kb/923789: MS06-069: Vulnerabilities in Macromedia Flash Player from Adobe Could Allow Remote Code Execution (Critical)
#KB923789_URL?=http://download.microsoft.com/download/0/5/2/052a7c81-831f-46aa-b707-bb5ec050f4db/WindowsXP-KB923789-x86-ENU.exe
#KB923789_EXE?=$(shell basename $(KB923789_URL))
# http://support.microsoft.com/kb/924270: MS06-070: Vulnerability in Workstation Service Could Allow Remote Code Execution (Critical)
KB924270_URL?=http://download.microsoft.com/download/d/1/b/d1b1e9ea-140c-4e37-99d1-49c0efa88e1d/WindowsXP-KB924270-x86-ENU.exe
KB924270_EXE?=$(shell basename $(KB924270_URL))
# December, 2006: http://www.microsoft.com/technet/security/bulletin/ms06-dec.mspx
# http://support.microsoft.com/kb/925454: MS06-072: Cumulative Security Update for Internet Explorer (Critical)
#KB925454_URL?=http://download.microsoft.com/download/e/e/6/ee66d1a5-0a2f-4a82-8abd-c86fc268282d/WindowsXP-KB925454-x86-ENU.exe
#KB925454_EXE?=$(shell basename $(KB925454_URL))
# http://support.microsoft.com/kb/926247: MS06-074: Vulnerability in SNMP Could Allow Remote Code Execution (Important)
KB926247_URL?=http://download.microsoft.com/download/e/e/0/ee0263ec-f5b4-4c92-820d-16fa70802495/WindowsXP-KB926247-x86-ENU.exe
KB926247_EXE?=$(shell basename $(KB926247_URL))
# http://support.microsoft.com/kb/926255: MS06-075: Vulnerability in Windows Could Allow Elevation of Privilege (Important)
KB926255_URL?=http://download.microsoft.com/download/1/e/1/1e143649-1ae5-407f-8037-548986fcfe49/WindowsXP-KB926255-x86-ENU.exe
KB926255_EXE?=$(shell basename $(KB926255_URL))
# http://support.microsoft.com/kb/923694: MS06-076: Cumulative Security Update for Outlook Express (Important)
# replaced by kb929123: MS07-034:
#KB923694_URL?=http://download.microsoft.com/download/0/c/a/0ca13e7b-7be3-4a42-9ce0-c52bf0d5c96d/WindowsXP-KB923694-x86-ENU.exe
#KB923694_EXE?=$(shell basename $(KB923694_URL))
# http://support.microsoft.com/kb/923689: MS06-078: Vulnerability in Windows Media Format Could Allow Remote Code Execution (Critical)
#KB923689_URL?=http://download.microsoft.com/download/a/e/e/aee71db4-96b2-471e-81d0-2f1e906a86c5/WindowsXP-KB923689-v2-x86-ENU.exe
#KB923689_EXE?=$(shell basename $(KB923689_URL))
# http://support.microsoft.com/kb/925398: MS06-078: Security Update for Windows Media Player 6.4 for Windows (Critical)
KB925398_URL?=http://download.microsoft.com/download/e/6/7/e6763a48-52bf-49cb-b111-1873472a5d1c/WindowsMedia6-KB925398-v2-x86-ENU.exe
KB925398_EXE?=$(shell basename $(KB925398_URL))
# January, 2007: http://www.microsoft.com/technet/security/bulletin/ms07-jan.mspx
# http://support.microsoft.com/kb/929969: MS07-004: Vulnerability in Vector Markup Language Could Allow Remote Code Execution (Critical)
#KB929969_URL?=http://download.microsoft.com/download/a/4/4/a44b9b3f-cc2d-4b94-aa78-b5bdd7c8912d/WindowsXP-KB929969-x86-ENU.exe
#KB929969_EXE?=$(shell basename $(KB929969_URL))
# February, 2007: http://www.microsoft.com/technet/security/bulletin/ms07-feb.mspx
# http://support.microsoft.com/kb/923723: MS07-005: Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (Important)
# non-standard update
# http://support.microsoft.com/kb/928255: MS07-006: Vulnerability in Windows Shell Could Allow Elevation of Privilege (Important)
KB928255_URL?=http://download.microsoft.com/download/0/4/7/04702a8b-faba-4f4b-8d30-bca5bea0205f/WindowsXP-KB928255-x86-ENU.exe
KB928255_EXE?=$(shell basename $(KB928255_URL))
# http://support.microsoft.com/kb/927802: MS07-007: Vulnerability in Windows Image Acquisition Service Could Allow Elevation of Privilege (Important)
KB927802_URL?=http://download.microsoft.com/download/8/c/f/8cfc2424-ac8f-4be6-9335-1bb544dd5ab6/WindowsXP-KB927802-x86-ENU.exe
KB927802_EXE?=$(shell basename $(KB927802_URL))
# http://support.microsoft.com/kb/928843: MS07-008: Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution (Critical)
KB928843_URL?=http://download.microsoft.com/download/4/a/9/4a949682-0ac9-4cf0-9480-7ce87effa8e2/WindowsXP-KB928843-x86-ENU.exe
KB928843_EXE?=$(shell basename $(KB928843_URL))
# http://support.microsoft.com/kb/927779: MS07-009: Vulnerability in Microsoft Data Access Components Could Allow Remote Code Execution (Critical)
KB927779_URL?=http://download.microsoft.com/download/b/0/0/b00522fd-1831-4d44-8dc6-107ef278cd6a/WindowsXP-KB927779-x86-ENU.exe
KB927779_EXE?=$(shell basename $(KB927779_URL))
# http://support.microsoft.com/kb/926436: MS07-011: Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution (Important)
KB926436_URL?=http://download.microsoft.com/download/6/3/2/632df28b-c7e1-438a-aefb-e34edc911eb9/WindowsXP-KB926436-x86-ENU.exe
KB926436_EXE?=$(shell basename $(KB926436_URL))
# http://support.microsoft.com/kb/924667: MS07-012: Vulnerability in Microsoft MFC Could Allow Remote Code Execution (Important)
KB924667_URL?=http://download.microsoft.com/download/4/4/a/44a8b098-0a37-4174-9c97-9f00413a7b2d/WindowsXP-KB924667-x86-ENU.exe
KB924667_EXE?=$(shell basename $(KB924667_URL))
# http://support.microsoft.com/kb/918118: MS07-013: Vulnerability in Microsoft RichEdit Could Allow Remote Code Execution (Important)
KB918118_URL?=http://download.microsoft.com/download/6/6/0/6604493f-e2d7-425b-b240-e5cc71a7cecb/WindowsXP-KB918118-x86-ENU.exe
KB918118_EXE?=$(shell basename $(KB918118_URL))
# http://support.microsoft.com/kb/928090: MS07-016: Cumulative Security Update for Internet Explorer (Critical)
#KB928090_URL?=http://download.microsoft.com/download/9/a/7/9a78af7d-f060-4b4e-ad2c-72815a125e99/WindowsXP-KB928090-x86-ENU.exe
#KB928090_EXE?=$(shell basename $(KB928090_URL))
# April, 2007: http://www.microsoft.com/technet/security/bulletin/ms07-apr.mspx
# http://support.microsoft.com/kb/925902: MS07-017 Security Update for Windows XP (Critical)
KB925902_URL?=http://download.microsoft.com/download/b/4/4/b44dc17e-5d55-4d5f-9723-fce9b01f1ade/WindowsXP-KB925902-x86-ENU.exe
KB925902_EXE?=$(shell basename $(KB925902_URL))
# http://support.microsoft.com/kb/931261: MS07-019: Vulnerability in Universal Plug and Play Could Allow Remote Code Execution (Critcal)
KB931261_URL?=http://download.microsoft.com/download/4/3/3/4330ac20-d88e-4e61-98ed-4f45f3b2da96/WindowsXP-KB931261-x86-ENU.exe
KB931261_EXE?=$(shell basename $(KB931261_URL))
# http://support.microsoft.com/kb/932168: MS07-020: Vulnerability in Microsoft Agent Could Allow Remote Code Execution (Critical)
KB932168_URL?=http://download.microsoft.com/download/1/2/d/12df2548-8691-465e-9b3d-83f3666aabb1/WindowsXP-KB932168-x86-ENU.exe
KB932168_EXE?=$(shell basename $(KB932168_URL))
# http://support.microsoft.com/kb/930178: MS07-021: Vulnerabilities in CSRSS Could Allow Remote Code Execution (Critical)
KB930178_URL?=http://download.microsoft.com/download/7/3/7/737816fb-a2e1-4f25-9869-bcac08436253/WindowsXP-KB930178-x86-ENU.exe
KB930178_EXE?=$(shell basename $(KB930178_URL))
# http://support.microsoft.com/kb/931784: MS07-022: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (Important)
KB931784_URL?=http://download.microsoft.com/download/e/1/d/e1d5f9e9-34fb-4262-9daa-4b34195561f5/WindowsXP-KB931784-x86-ENU.exe
KB931784_EXE?=$(shell basename $(KB931784_URL))
# May, 2007: http://www.microsoft.com/technet/security/bulletin/ms07-may.mspx
# http://support.microsoft.com/kb/931768: MS07-027: Cumulative Security Update for Internet Explorer (Critical)
# replaced by KB933566: MS07-033:
#KB931768_URL?=http://download.microsoft.com/download/2/6/7/267e88e0-554e-42e9-89e3-db498f8635ad/WindowsXP-KB931768-x86-ENU.exe
#KB931768_EXE?=$(shell basename $(KB931768_URL))
# http://www.msfn.org/board/index.php?&showtopic=31886
# 885835 must come before 885250 or we'll get errors
# http://support.microsoft.com/kb/935840: MS07-031: Vulnerability in the Windows Schannel Security Package Could Allow Remote Code Execution (Critical)
KB935840_URL?=http://download.microsoft.com/download/c/d/e/cde599c9-9cf2-40d5-9e50-49be0794e692/WindowsXP-KB935840-x86-ENU.exe
KB935840_EXE?=$(shell basename $(KB935840_URL))
# http://support.microsoft.com/kb/933566: MS07-033: Cumulative Security Update for Internet Explorer (Critical)
#KB933566_URL?=http://download.microsoft.com/download/b/d/9/bd9cca9e-3035-4b19-86e9-0ee644c2ba61/WindowsXP-KB933566-x86-ENU.exe
#KB933566_EXE?=$(shell basename $(KB933566_URL))
# http://support.microsoft.com/kb/929123: MS07-034: Cumulative Security Update for Outlook Express and Windows Mail (Critcal)
KB929123_URL?=http://download.microsoft.com/download/7/5/d/75d37934-43cc-4ded-9fe4-e8cd292b87cb/WindowsXP-KB929123-x86-ENU.exe
KB929123_EXE?=$(shell basename $(KB929123_URL))
# http://support.microsoft.com/kb/935839: MS07-035: Vulnerability in Win32 API Could Allow Remote Code Execution (Critical)
KB935839_URL?=http://download.microsoft.com/download/c/6/b/c6babe1a-30f5-4f3e-a343-5167d9e2a914/WindowsXP-KB935839-x86-ENU.exe
KB935839_EXE?=$(shell basename $(KB935839_URL))
# Jul, 2007: http://www.microsoft.com/technet/security/bulletin/ms07-jul.mspx
# http://support.microsoft.com/kb/939373: MS07-041: Vulnerability in Microsoft Internet Information Services Could Allow Remote Code Execution (Important)
KB939373_URL?=http://download.microsoft.com/download/e/f/5/ef55d3c1-6f01-4a96-99ca-5b5bdabe2509/WindowsXP-KB939373-x86-ENU.exe
KB939373_EXE?=$(shell basename $(KB939373_URL))
# Aug, 2007: http://www.microsoft.com/technet/security/bulletin/ms07-aug.mspx
# http://support.microsoft.com/kb/921503: MS07-043: Vulnerability in OLE Automation Could Allow Remote Code Execution (Critical)
#KB921503_URL?=http://download.microsoft.com/download/5/e/a/5eae9026-c6a5-4e4d-834b-acb04417819f/WindowsXP-KB921503-x86-ENU.exe
#KB921503_EXE?=$(shell basename $(KB921503_URL))
# http://support.microsoft.com/kb/937143: MS07-045: Cumulative Security Update for Internet Explorer (Critical)
# replaced by MS07-057
#KB937143_URL?=http://download.microsoft.com/download/b/0/6/b0680345-8d2e-4ba5-953d-774978e60dbb/WindowsXP-KB937143-x86-ENU.exe
#KB937143_EXE?=$(shell basename $(KB937143_URL))
# http://support.microsoft.com/kb/938829: MS07-046: Vulnerability in GDI Could Allow Remote Code Execution (Critical)
# replaced
#KB938829_URL?=http://download.microsoft.com/download/5/4/7/54797ac0-4407-4642-9530-9f70f6ba9ded/WindowsXP-KB938829-x86-ENU.exe
#KB938829_EXE?=$(shell basename $(KB938829_URL))
# http://support.microsoft.com/kb/936782: MS07-047: Vulnerability in Windows Media Player Could Allow Remote Code Execution (Important)
KB936782_URL?=http://download.microsoft.com/download/9/8/4/98475109-621b-44b9-8a8d-f792832b91aa/WindowsMedia9-KB936782-x86-ENU.exe
KB936782_EXE?=$(shell basename $(KB936782_URL))
KB936782b_URL?=http://download.microsoft.com/download/2/7/3/2739ed8d-1a58-42a0-8c98-1b208ae7de55/WindowsMedia10-KB936782-x86-ENU.exe
KB936782b_EXE?=$(shell basename $(KB936782b_URL))
# http://support.microsoft.com/kb/938127: MS07-050: Vulnerability in Vector Markup Language Could Allow Remote Code Execution (Critical)
KB938127_URL?=http://download.microsoft.com/download/e/4/8/e484fd13-4498-4cbf-92d3-7be52b8efd97/WindowsXP-KB938127-x86-ENU.exe
KB938127_EXE?=$(shell basename $(KB938127_URL))
# Oct, 2007: http://www.microsoft.com/technet/security/bulletin/ms07-oct.mspx
# http://support.microsoft.com/kb/923810: MS07-055: Vulnerability in Kodak Image Viewer Could Allow Remote Code Execution (Critical)
KB923810_URL?=http://download.microsoft.com/download/6/1/c/61cb7c72-4d7a-4b20-8638-7d59bba31781/WindowsXP-KB923810-x86-ENU.exe
KB923810_EXE?=$(shell basename $(KB923810_URL))
# http://support.microsoft.com/kb/941202: MS07-056: Security Update for Outlook Express and Windows Mail (Critical)
KB941202_URL?=http://download.microsoft.com/download/5/0/8/50875ac0-81c1-47c9-922b-7a6c32ae2a37/WindowsXP-KB941202-x86-ENU.exe
KB941202_EXE?=$(shell basename $(KB941202_URL))
# http://support.microsoft.com/kb/939653: MS07-057: Cumulative Security Update for Internet Explorer (Critical)
#KB939653_URL?=http://download.microsoft.com/download/1/4/f/14fc331a-8c4c-4ede-a706-4f8b25bb97c3/WindowsXP-KB939653-x86-ENU.exe
#KB939653_EXE?=$(shell basename $(KB939653_URL))
# http://support.microsoft.com/kb/933729: MS07-058: Vulnerability in RPC Could Allow Denial of Service (Important)
KB933729_URL?=http://download.microsoft.com/download/7/a/0/7a062b2e-29c5-4c97-b521-adfc95754281/WindowsXP-KB933729-x86-ENU.exe
KB933729_EXE?=$(shell basename $(KB933729_URL))
# Nov, 2007: http://www.microsoft.com/technet/security/bulletin/ms07-nov.mspx
# http://support.microsoft.com/kb/943460: MS07-061: Vulnerability in Windows URI Handling Could Allow Remote Code Execution (Critical)
KB943460_URL?=http://download.microsoft.com/download/0/e/b/0eb29ece-fb34-4eb6-ae49-a6e816a9fa5b/WindowsXP-KB943460-x86-ENU.exe
KB943460_EXE?=$(shell basename $(KB943460_URL))
# Dec, 2007: http://www.microsoft.com/technet/security/bulletin/ms07-dec.mspx
# http://support.microsoft.com/kb/941568: MS07-064: Vulnerabilities in DirectX Could Allow Remote Code Execution (Critical)
KB941568_URL?=http://download.microsoft.com/download/d/a/d/dad1a90b-ebc2-4742-b3af-4e0d5585fcca/WindowsXP-KB941568-x86-ENU.exe
KB941568_EXE?=$(shell basename $(KB941568_URL))
# http://support.microsoft.com/kb/937894: MS07-065: Vulnerability in Message Queuing Could Allow Remote Code Execution (Important)
KB937894_URL?=http://download.microsoft.com/download/f/e/c/fec064d8-b343-4526-a8b7-584665eeeb97/WindowsXP-KB937894-x86-ENU.exe
KB937894_EXE?=$(shell basename $(KB937894_URL))
# http://support.microsoft.com/kb/944653: MS07-067: Vulnerability in Macrovision Driver Could Allow Local Elevation of Privilege (Important)
KB944653_URL?=http://download.microsoft.com/download/6/2/5/6253c779-e0a4-453a-9d04-96257376ce5c/WindowsXP-KB944653-x86-ENU.exe
KB944653_EXE?=$(shell basename $(KB944653_URL))
# http://support.microsoft.com/kb/941569: MS07-068: Vulnerability in Windows Media File Format Could Allow Remote Code Execution (Critical)
KB941569_URL?=http://download.microsoft.com/download/5/8/3/583b15f7-da90-4e23-aa7d-2770fc2a02d3/WindowsXP-KB941569-x86-ENU.EXE
KB941569_EXE?=$(shell basename $(KB941569_URL))
# http://support.microsoft.com/kb/942615: MS07-069: Cumulative Security Update for Internet Explorer (Critical)
#KB942615_URL?=http://download.microsoft.com/download/3/a/d/3add927d-65b4-4809-b609-6bc960963c11/WindowsXP-KB942615-x86-ENU.exe
#KB942615_EXE?=$(shell basename $(KB942615_URL))
# Jan, 2008: http://www.microsoft.com/technet/security/bulletin/ms08-jan.mspx
# http://support.microsoft.com/kb/941644: MS08-001: Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (Critical)
KB941644_URL?=http://download.microsoft.com/download/3/e/3/3e3b48d5-1897-44f5-8271-127e09ba97f3/WindowsXP-KB941644-x86-ENU.exe
KB941644_EXE?=$(shell basename $(KB941644_URL))
# http://support.microsoft.com/kb/943485: MS08-002: Vulnerability in LSASS Could Allow Local Elevation of Privilege (Important)
KB943485_URL?=http://download.microsoft.com/download/7/f/c/7fc13744-155a-416a-acfd-553d119542d4/WindowsXP-KB943485-x86-ENU.exe
KB943485_EXE?=$(shell basename $(KB943485_URL))
# Feb, 2008: http://www.microsoft.com/technet/security/bulletin/ms08-feb.mspx
# http://support.microsoft.com/kb/946538: MS08-003: Vulnerability in Active Directory Could Allow Denial of Service (Important)
KB946538_URL?=http://download.microsoft.com/download/5/d/5/5d5eba28-9c33-4c1b-9bb6-b3bf93ac9d2e/WindowsXP-KB931374-x86-ENU.exe
KB946538_EXE?=$(shell basename $(KB946538_URL))
# http://support.microsoft.com/kb/942831: MS08-005: Vulnerability in Internet Information Services Could Allow Elevation of Privilege (Important)
KB942831_URL?=http://download.microsoft.com/download/8/3/c/83c0f86f-d893-4555-8705-9c261558215c/WindowsXP-KB942831-x86-ENU.exe
KB942831_EXE?=$(shell basename $(KB942831_URL))
# http://support.microsoft.com/kb/942830: MS08-006: Vulnerability in Internet Information Services Could Allow Remote Code Execution (Important)
KB942830_URL?=http://download.microsoft.com/download/c/2/d/c2da7f69-b802-4729-b495-0dcc51ae29bb/WindowsXP-KB942830-x86-ENU.exe
KB942830_EXE?=$(shell basename $(KB942830_URL))
# http://support.microsoft.com/kb/946026: MS08-007: Vulnerability in WebDAV Mini-Redirector Could Allow Remote Code Execution (Critical)
KB946026_URL?=http://download.microsoft.com/download/e/8/8/e880c2e0-2784-4a94-80b4-dcee47f74b10/WindowsXP-KB946026-x86-ENU.exe
KB946026_EXE?=$(shell basename $(KB946026_URL))
# http://support.microsoft.com/kb/947890: MS08-008: Vulnerability in OLE Automation Could Allow Remote Code Execution (Critical)
KB947890_URL?=http://download.microsoft.com/download/1/8/6/1869bfdb-c0ce-4efa-ad8a-9075f06456e7/WindowsXP-KB943055-x86-ENU.exe
KB947890_EXE?=$(shell basename $(KB947890_URL))
# http://support.microsoft.com/kb/944533: MS08-010: Cumulative Security Update for Internet Explorer (Critical)
# replaced
#KB944533_URL?=http://download.microsoft.com/download/c/7/c/c7c3d934-0af9-4e72-ac42-6f676c6af56a/WindowsXP-KB944533-x86-ENU.exe
#KB944533_EXE?=$(shell basename $(KB944533_URL))
# Mar, 2008: http://www.microsoft.com/technet/security/bulletin/ms08-mar.mspx
# none
# Apr, 2008: http://www.microsoft.com/technet/security/bulletin/ms08-apr.mspx
# http://support.microsoft.com/kb/948590: MS08-021: Vulnerabilities in GDI Could Allow Remote Code Execution (Critical)
KB948590_URL?=http://download.microsoft.com/download/d/7/7/d779b3b3-b27f-4555-b9c0-3afdd2eb920b/WindowsXP-KB948590-x86-ENU.exe
KB948590_EXE?=$(shell basename $(KB948590_URL))
# http://support.microsoft.com/kb/944338: MS08-022: Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution (Critical)
KB944338_URL?=http://download.microsoft.com/download/0/9/b/09befb90-0f87-486c-875a-3997128a2ec1/WindowsXP-KB944338-x86-ENU.exe
KB944338_EXE?=$(shell basename $(KB944338_URL))
# http://support.microsoft.com/kb/948881: MS08-023: Security Update of ActiveX Kill Bits (Critical)
KB948881_URL?=http://download.microsoft.com/download/e/8/d/e8d609c2-712b-40dd-a453-b587394957c5/WindowsXP-KB948881-x86-ENU.exe
KB948881_EXE?=$(shell basename $(KB948881_URL))
# http://support.microsoft.com/kb/947864: MS08-024: Cumulative Security Update for Internet Explorer (Critical)
KB947864_URL?=http://download.microsoft.com/download/1/5/0/150fa950-4f20-4668-b0ec-fe19c816a3c1/WindowsXP-KB947864-x86-ENU.exe
KB947864_EXE?=$(shell basename $(KB947864_URL))
# http://support.microsoft.com/kb/947864: MS08-024: Cumulative Security Update for Internet Explorer (Critical)
#KB947864b_URL?=http://download.microsoft.com/download/c/e/d/ced9e834-14b1-4844-a39b-86a9f93b9e3e/IE7-WindowsXP-KB947864-x86-ENU.exe
#KB947864b_EXE?=$(shell basename $(KB947864b_URL))
# http://support.microsoft.com/kb/945553: MS08-020: Vulnerability in DNS Client Could Allow Spoofing (Important)
KB945553_URL?=http://download.microsoft.com/download/f/0/7/f0750de6-7f6a-4671-b741-067add005328/WindowsXP-KB945553-x86-ENU.exe
KB945553_EXE?=$(shell basename $(KB945553_URL))
# http://support.microsoft.com/kb/941693: MS08-025: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (Important)
KB941693_URL?=http://download.microsoft.com/download/9/5/f/95faaae2-bb9a-4ed0-a758-6327fe1aba73/WindowsXP-KB941693-x86-ENU.exe
KB941693_EXE?=$(shell basename $(KB941693_URL))
KBS=\
873339 \
885835 \
885836 \
887472 \
888302 \
890859 \
891781 \
893756 \
896358 \
896423 \
896424 \
896428 \
899587 \
899591 \
900725 \
901017 \
901190 \
901214 \
902400 \
905414 \
905749 \
908519 \
908531 \
911280 \
911562 \
911564 \
911565 \
911927 \
913580 \
914388 \
914389 \
918118 \
918439 \
919007 \
920213 \
920670 \
920683 \
920685 \
922819 \
923191 \
923414 \
923810 \
923980 \
924191 \
924270 \
924496 \
924667 \
925398 \
925902 \
926247 \
926255 \
926436 \
927779 \
927802 \
928255 \
928843 \
929123 \
930178 \
931261 \
931784 \
932168 \
933729 \
935839 \
935840 \
936782 \
936782b \
937894 \
938127 \
939373 \
941202 \
941568 \
941569 \
941644 \
941693 \
942830 \
942831 \
943460 \
943485 \
944338 \
944653 \
945553 \
946026 \
946538 \
947864 \
947890 \
948590 \
948881
# doesn't work :(
#define kbexe
#KB$(1)_EXE=$(shell basename $$(KB$(1)_URL))
#endef
#$(foreach kb,$(KBS),$(eval $(call kbexe,$(kb))))
define kbtouch
KB$(1)_TOUCH=$$(KB$(1)_EXE).touch
endef
$(foreach kb,$(KBS),$(eval $(call kbtouch,$(kb))))
define kbsetup
KB_EXES+=$$(KB$(1)_EXE)
endef
$(foreach kb,$(KBS),$(eval $(call kbsetup,$(kb))))
KB_TOUCHES=$(KB_EXES:.exe=.exe.touch)
WGET?=wget -N
CYGPATH_EXE:=$(shell which cygpath)
BUILD_DIR:=$(shell pwd)
BUILD_DIR_WIN:=$(shell $(CYGPATH_EXE) -m -s "$(BUILD_DIR)")
CD_DIR_WIN=$(BUILD_DIR_WIN)/$(CD_DIR)
LOCAL_MAK?=$(shell ls local.mak 2>/dev/null)
ifneq ('$(LOCAL_MAK)', '')
include local.mak
endif
#ifeq ('$(VOLID)', '')
# #Get the volume ID from the CD volume label itself (the CD must be in the drive)
# VOLID=$(shell cmd /c vol $(CD) | grep "Volume in" | cut -b 23-34)
#endif
ifeq ('$(VOLID)', '')
# Volume ID of new disk (11 characters max)
# 12345678901
VOLID=xpsp2
#$(error Please define the VOLID variable: VOLID=A_11CHAR_ID make)
endif
# Label to display after CD is burned
CD_LABEL=Windows XP SP2 + Hotfixes as of $(DD_MMM_YY) ($(VOLID))
CD_DIR=$(VOLID)_cd
I386=$(CD_DIR)/I386
SVCPACK_DIR=$(I386)/svcpack
BOOT_DIR=$(VOLID)_boot_image
BOOT_IMG=image1.bin
VOLID_ISO=$(VOLID).ISO
BOOT_TOUCH=$(BOOT_DIR).touch
PEBUILDER_TOUCH=$(PEBUILDER_ZIP).touch
SERVICE_PACK_TOUCH=$(SERVICE_PACK_EXE).touch
VOLID_ISO_TOUCH=$(VOLID_ISO).touch
VOLID_TOUCH=$(VOLID).touch
.PHONY: all
all: cdrecord
XP2MD5S=
$(VOLID_TOUCH):
@echo Copying $(CD) to $(CD_DIR)...
mkdir -p $(CD_DIR)
xcopy $(CD)\\ $(CD_DIR)\\ /e /r /y
touch $@
define md5sum
if [ -f md5s.txt ] ;\
then \
echo Verifying MD5 checksum for $(1).. ;\
grep -i $(1) md5s.txt | md5sum --check - || exit 1;\
fi
endef
$(SERVICE_PACK_EXE):
@if [ ! -e $(CD_DIR)/I386/sp2.cab ] ;\
then \
echo Downloading $(SERVICE_PACK_URL)... ;\
$(WGET) $(SERVICE_PACK_URL) ;\
$(call md5sum,$(SERVICE_PACK_EXE)) ;\
chmod +rx $@ ;\
fi
$(SERVICE_PACK_TOUCH): $(SERVICE_PACK_EXE)
@# Don't update if the disk already has SP2
@if [ ! -e $(CD_DIR)/I386/sp2.cab ] ;\
then \
echo Integrating $(SERVICE_PACK_EXE) into $(CD_DIR_WIN)... ;\
chmod +rx $< ;\
./$< /quiet /integrate:"$(CD_DIR_WIN)" ;\
fi
touch $@
define kbapply
$(info Preprocessing $(1)...)
$$(KB$(1)_EXE):
@echo Downloading $$(KB$(1)_URL)...
$(WGET) $$(KB$(1)_URL)
@$(call md5sum,$$(KB$(1)_EXE))
@chmod +rx $$(KB$(1)_EXE)
$$(KB$(1)_TOUCH): $$(KB$(1)_EXE) $(SERVICE_PACK_TOUCH)
@chmod +rx $$(KB$(1)_EXE)
-@if [ ! -e $(SVCPACK_DIR)/KB$(1).cat ] ; \
then \
echo Integrating $$(KB$(1)_EXE) into $(CD_DIR_WIN)... ;\
./$$(KB$(1)_EXE) /quiet /integrate:"$(CD_DIR_WIN)" ; \
fi
@#if [ ! -e $(SVCPACK_DIR)/KB$(1).cat ] ; \
@#then \
@# /bin/false ;\
@#fi
@# Note: KB885835 and KB885250 share the same file (mrxsmb.sys), so they can't be applied together.
@# This script solves this issue by ignoring KB885835's version of the file (5.1.2600.2541, xpsp_sp2_gdr.040919-1056, dated 10-27-2004, 448,128 bytes),
@# and using KB885250's version (5.1.2600.2598, xpsp_sp2_gdr.041130-1729, dated 1-18-2005, 451,584 bytes) as it is newer.
@if [ "$(1)" = "885835" ] ; \
then \
perl -pi.bak -e 's/mrxsmb\.sys/;mrxsmb\.sys: replaceed by KB885250/i' $(SVCPACK_DIR)/HFINT.dat ; \
fi
touch $$(KB$(1)_TOUCH)
.PHONY: KB$(1)
KB$(1): $$(KB$(1)_TOUCH)
endef
$(foreach kb,$(KBS),$(eval $(call kbapply,$(kb))))
$(info Preprocessing finished)
#################################
define download
@for url in "$(2)" ; \
do \
echo Downloading $$url/$(1)... ;\
$(WGET) $$url/$(1) && break ;\
done
endef
# from
$(BBIE_ZIP):
$(call download,$@,"$(NU2_MIRRORS)")
bbie.exe: $(BBIE_ZIP)
unzip -o $(BBIE_ZIP) $@
chmod +rx bbie.exe
touch $@
$(BOOT_TOUCH): bbie.exe
mkdir -p $(BOOT_DIR)
bbie.exe $(CD)
mv image*.bin $(BOOT_DIR)
touch $@
# patched mkisofs from pebuilder
$(PEBUILDER_ZIP):
$(call download,$@,"$(NU2_MIRRORS)")
mkisofs.exe: $(PEBUILDER_ZIP)
unzip -o $(PEBUILDER_ZIP) $@
chmod +rx $@
download: ${KB_TOUCHES}
$(VOLID_ISO_TOUCH): \
$(VOLID_TOUCH) \
$(SERVICE_PACK_TOUCH) \
${KB_TOUCHES} \
$(BOOT_TOUCH) \
mkisofs.exe
cd $(CD_DIR) && \
PATH="$$PATH:.." mkisofs.exe \
-iso-level 4 \
-force-uppercase \
-volid "$(VOLID)" \
-A MKISOFS \
-sysid "DOS" \
-b "$(BOOT_IMG)" \
-no-emul-boot \
-boot-load-size 4 \
-hide "$(BOOT_IMG)" \
-hide "boot.catalog" \
-o "../$(VOLID_ISO)" \
"../$(BOOT_DIR)" \
.
touch $@
cdrecord.exe: $(PEBUILDER_ZIP)
unzip -o $(PEBUILDER_ZIP) $@
chmod +rx $@
.PHONY: cdrecord
cdrecord: $(VOLID_ISO_TOUCH) cdrecord.exe
ifneq ('$(PAUSE)', '')
@echo
@echo Insert a blank CD-R/CD-RW/DVD±R/DVD±RW into the following drive
@-PATH="$$PATH:." cdrecord --scanbus | grep "$(CD_DEV)" | cut -b 2-
@echo and press [Enter] to continue
@echo -e \\a
@read dummy
endif
PATH="$$PATH:." cdrecord -dev=$(CD_DEV) -v $(CDRECORD_OPTS) $(VOLID_ISO)
@echo
@echo "Please label this disk '$(CD_LABEL)'"
.PHONY: tidy
tidy:
rm -fr \
$(VOLID_TOUCH) \
$(SERVICE_PACK_TOUCH) \
${KB_TOUCHES} \
$(BOOT_TOUCH) \
$(BOOT_DIR) \
$(CD_DIR) \
$(BBIE_ZIP) \
$(PEBUILDER_ZIP)
.PHONY: clean
clean: tidy
rm -fr \
$(VOLID_ISO_TOUCH) \
$(VOLID_ISO)
.PHONY: realclean
realclean: clean
rm -fr \
bbie.exe \
cdrecord.exe \
mkisofs.exe \
$(SERVICE_PACK_EXE) \
${KB_EXES}
.PHONY: undo
undo:
rm -f *.exe.touch $(SVCPACK_DIR)/*
.PHONY: md5sum md5s
md5sum: md5s.txt
md5s: md5s.txt
md5s.txt: *.exe
md5sum [Ww]indows*.[Ee][Xx][Ee] | sort -k 2 >md5s.txt