Automatically Slipstream Windows XP with SP3 and All Post-SP3 Security Hotfixes with a Single Command (Updated 10-Sep-08)
For information about slipstreaming Windows XP SP2, visit http://smithii.com/slipstream_xpsp2.
I've written the batch file xpsp3.cmd (updated 10-Sep-08) to automatically download and slipstream a standard Windows XP boot disk with Service Pack 2 and all post-SP3 security hotfixes.
It uses wget or curl (if either are found in the PATH), or your installed browser to download the updates. I have tested this with Internet Explorer, Firefox, and Opera. Other browsers should work, as well. The batch file xpsp3local.cmd (updated 10-Sep-08) will update the copy of Windows XP that is installed on the computer you run the command on. You may wish to do this, if you do not have, or want, the machine you want to hotfix connected to the internet, or if you are unable to run Windows Update for some reason (for example, if Internet Explorer isn't installed, or doesn't work properly, due to a virus or similar mishap). To slipstream the hotfixes, and burn the slipstreamed disk, I've created the makefile xpsp3.mak (updated 10-Sep-08). Details on usage below.The xpsp3* scripts listed above include the following security updates found at http://www.microsoft.com/technet/security/current.aspx:
Sep 08: MS08-052 - Critical Vulnerabilities in GDI+ Could Allow Remote Code Execution (954593) SP2: replaces none SP3: replaces none MS08-053 - Critical Vulnerability in Windows Media Encoder 9 Could Allow Remote Code Execution (954156) SP2: replaces none SP3: replaces none MS08-054 - Critical Vulnerability in Windows Media Player Could Allow Remote Code Execution (954154) SP2: replaces none SP3: replaces none Aug 08: MS08-045 - Critical Cumulative Security Update for Internet Explorer (953838) SP2: replaces MS08-031 SP3: replaces MS08-031 MS08-046 - Critical Vulnerability in Microsoft Windows Image Color Management System Could Allow Remote Code Execution (952954) SP2: replaces none SP3: replaces none MS08-048 - Important Security Update for Outlook Express and Windows Mail (951066) SP2: replaces none SP3: replaces none MS08-049 - Important Vulnerabilities in Event System Could Allow Remote Code Execution (950974) SP2: replaces none SP3: replaces none MS08-050 - Important Vulnerability in Windows Messenger Could Allow Information Disclosure (955702) SP2: replaces none SP3: replaces none Jul 08: MS08-037 - Important Vulnerabilities in DNS Could Allow Spoofing (953230) SP2: replaces MS06-064, MS08-001 SP3: replaces none Jun 08: MS08-030 - Critical Vulnerability in Bluetooth Stack Could Allow Remote Code Execution (951376) SP2: replaces none SP3: replaces none MS08-031 - Critical Cumulative Security Update for Internet Explorer (950759) SP2: replaces MS08-024 SP3: replaces none replaced by MS08-45 MS08-032 - Moderate Cumulative Security Update of ActiveX Kill Bits (950760) SP2: replaces MS08-023 SP3: replaces none MS08-033 - Critical Vulnerabilities in DirectX Could Allow Remote Code Execution (951698) SP2: replaces MS07-064 SP3: replaces none MS08-035 - Important Vulnerability in Active Directory Could Allow Denial of Service (953235) SP2: replaces MS08-003 SP3: replaces none MS08-036 - Important Vulnerabilities in Pragmatic General Multicast (PGM) Could Allow Denial of Service (950762) SP2: replaces MS06-052 SP3: replaces none
These updates are not included as they have been superceeded by a following update:
The following security updates are not presently included:
Fitting All the Hotfixes onto a 700MB CD
If you slipstream all of the hotfixes listed above, the resulting size will be greater than will fit on a single 700MB "80 minute" CD-R. There are two options to get around this limitation:1. Burn to a DVD instead of a CD. Of course, this isn't an option if the computer you are installing on does not have a DVD drive, or you don't have software to burn an .ISO file to a DVD.
2. Remove unneeded directories from the CD. On my Windows XP SP1 CD, I found I could delete the following directories before creating the .ISO:
D:\I386\WIN9XMIG: 33.5MB (Windows 9x migration files, not used when performing a fresh XP installation) D:\DOTNETFX: 33.1MB (.NET Framework, install this manually later if needed) D:\cmpnents 26.5MB (.NET Framework, TabletPC) D:\SUPPORT: 11.3MB (Support tools, not used by the installer) D:\VALUEADD: 9.1MB (Value added programs, not used by the installer) D:\I386\WIN9XUPG: 3.9MB (Windows 9x upgrade files, not used when performing a fresh XP installation) D:\DOCS: 0.1MB (Miscellaneous documents, not used by the installer)
If you don't need to install the Recovery Console, you can remove:
D:\I386\WINNTUPG: 1.0MB (Windows NT/2000 upgrade files, not used when performing a fresh XP installation)
If you don't need to install languages other than English, you can remove:
D:\I386\LANG: 101.7MB
If you remove all of the above directories, you will have reduced the size of the CD by over 223MB. Using my Windows XP SP1 disk, I went from 786MB, to 563MB, which easily fits on most sizes of CD-R media (see the table below).
Here is a table listing the different sizes of CD media. The sizes listed below I discovered empirically, and may vary depending on the type of media used.
Disk Type Size ------------------------ ----------- 80 minute/"700MB" CD-R 697,425,920 74 minute/"650MB" CD-R 642,883,584 80 minute/"700MB" CD-R/W 598,808,576 74 minute/"650MB" CD-R/W 557,260,800
Of course, using a program such as nLite, you can accomplish a far greater size reduction that what is listed above.
For more information, see:
http://unattended.msfn.org/unattended.xp/view/web/57/
http://pages.videotron.com/tbone/unattended/#_Toc79089721
Using Cygwin to Burn a Bootable CD
If you have, or install, Cygwin, you can build and burn a bootable CD, by editing the CD and CD_DEV variables at the beginning of xpsp3.mak, and typing: $ make -f xpsp3.mak If you include md5s.txt (updated 10-Sep-08), make will verify the files downloaded correctly before executing them. Of course, to run make, you will need to install Cygwin and select the make, perl, and wget packages. To create a Windows XP boot disk with Service Pack 1a and Update Rollup 1 (KB826939), use xpsp1_ru.mak.Older Scripts
To slipstream a Windows XP boot disk with SP2, use xpsp2.cmd. To update Windows XP with SP2, use xpsp2local.cmd. To create a Windows XP boot disk with SP2, use xpsp2.mak. To create a Windows XP boot disk with only SP1a, use xpsp1.mak. To create a Windows 2000 boot disk with SP4, use w2k_sp4.mak.Microsoft XML Core Services Hotfixes
For Microsoft XML Core Services, run msxml_hotfixes.cmd (updated 01-Jan-08) to install the latest hotfixes locally.
Microsoft Office 2003 SP3 and Hotfixes
For Office 2003, run office_2003_hotfixes.cmd (updated 31-Dec-07) to install Service Pack 2, and all post-SP3 hotfixes locally.
- ross's blog
- Login or register to post comments
xpsp3.bat update
to update the script with the latest updates do we just need to update the bulletin section?
I updated the bulletin list and it seems to have work. I am posting the section here to hopefully save you guys some work.
:: Jun 08:
:: MS08-030 – Critical
:: Vulnerability in Bluetooth Stack Could Allow Remote Code Execution (951376)
:: SP2: replaces none
:: SP3: replaces none
call :download http://download.microsoft.com/download/a/6/5/a65308a2-7ede-4219-981a-20feb38bfd0e/WindowsXP-KB951376-v2-x86-ENU.exe
:: MS08-031 - Critical
:: Cumulative Security Update for Internet Explorer (950759)
:: SP2: replaces MS08-024
:: SP3: replaces none
:: replaced by MS08-45
:: call :download http://download.microsoft.com/download/2/2/5/2255ad65-47ba-44f1-9e88-feba8f019c55/WindowsXP-KB950759-x86-ENU.exe
:: MS08-032 - Moderate
:: Cumulative Security Update of ActiveX Kill Bits (950760)
:: SP2: replaces MS08-023
:: SP3: replaces none
call :download http://download.microsoft.com/download/c/6/e/c6e4b3e0-0af6-4ac8-92f7-5f7e8d471fb2/WindowsXP-KB950760-x86-ENU.exe
:: MS08-033 – Critical
:: Vulnerabilities in DirectX Could Allow Remote Code Execution (951698)
:: SP2: replaces MS07-064
:: SP3: replaces none
call :download http://download.microsoft.com/download/3/1/5/315c86ba-2910-47f0-9f02-b5616511536d/WindowsXP-KB951698-x86-ENU.exe
:: MS08-035 – Important
:: Vulnerability in Active Directory Could Allow Denial of Service (953235)
:: SP2: replaces MS08-003
:: SP3: replaces none
call :download http://download.microsoft.com/download/5/f/a/5fa7006d-023f-496f-9c85-796fb82dfd16/WindowsXP-KB949269-x86-ENU.exe
:: MS08-036 – Important
:: Vulnerabilities in Pragmatic General Multicast (PGM) Could Allow Denial of Service (950762)
:: SP2: replaces MS06-052
:: SP3: replaces none
call :download http://download.microsoft.com/download/1/4/3/1438b520-8200-466d-9daf-4de18bd4dc0f/WindowsXP-KB950762-x86-ENU.exe
:: Jul 08:
:: MS08-037 – Important
:: Vulnerabilities in DNS Could Allow Spoofing (953230)
:: SP2: replaces MS06-064, MS08-001
:: SP3: replaces none
call :download http://download.microsoft.com/download/f/5/f/f5f31962-0215-44e6-be41-02818b4373f3/WindowsXP-KB951748-x86-ENU.exe
:: Aug 08:
:: MS08-045 - Critical replaced by MS08-058 - Critical
:: Cumulative Security Update for Internet Explorer (953838)
:: SP2: replaces MS08-031
:: SP3: replaces MS08-031
:: call :download http://download.microsoft.com/download/3/9/3/3933471e-a08e-4640-8980-d3d3eb5b3c34/WindowsXP-KB953838-x86-ENU.exe
:: MS08-046 – Critical
:: Vulnerability in Microsoft Windows Image Color Management System Could Allow Remote Code Execution (952954)
:: SP2: replaces none
:: SP3: replaces none
call :download http://download.microsoft.com/download/a/1/9/a19c9aff-bd94-4fc1-98ff-db432358f902/WindowsXP-KB952954-x86-ENU.exe
:: MS08-048 - Important
:: Security Update for Outlook Express and Windows Mail (951066)
:: SP2: replaces none
:: SP3: replaces none
call :download http://download.microsoft.com/download/3/a/f/3afd84f3-729c-4f54-9d38-e77c5112ae0d/WindowsXP-KB951066-x86-ENU.exe
:: MS08-049 – Important
:: Vulnerabilities in Event System Could Allow Remote Code Execution (950974)
:: SP2: replaces none
:: SP3: replaces none
call :download http://download.microsoft.com/download/5/d/d/5dd0ab05-b357-4175-bd93-894903f07579/WindowsXP-KB950974-x86-ENU.exe
:: MS08-050 – Important
:: Vulnerability in Windows Messenger Could Allow Information Disclosure (955702)
:: SP2: replaces none
:: SP3: replaces none
call :download http://download.microsoft.com/download/4/d/8/4d84fd95-9124-461a-95eb-6b5908b6fe62/WindowsXP-KB946648-x86-ENU.exe
:: Ssep 08:
:: MS08-052 - Critical
:: Vulnerabilities in GDI+ Could Allow Remote Code Execution (954593)
:: SP2: replaces none
:: SP3: replaces none
call :download http://download.microsoft.com/download/7/8/1/78141dc7-3b1d-42f3-9aa2-4dca79ad739b/WindowsXP-KB938464-x86-ENU.exe
:: MS08-053 - Critical
:: Vulnerability in Windows Media Encoder 9 Could Allow Remote Code Execution (954156)
:: SP2: replaces none
:: SP3: replaces none
call :download http://download.microsoft.com/download/2/b/2/2b252ed6-39fe-423d-a74e-d48c85d24c2a/WindowsMedia9-KB954156-x86-ENU.exe
:: MS08-054 - Critical
:: Vulnerability in Windows Media Player Could Allow Remote Code Execution (954154)
:: SP2: replaces none
:: SP3: replaces none
call :download http://download.microsoft.com/download/b/6/6/b662a844-9aa2-4b80-8713-27a6c0da16d8/WindowsMedia11-KB954154-x86-ENU.exe
:: Oct 08:
:: MS08-061 – Important
:: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (954211)
:: SP3: replaces none
call :download http://download.microsoft.com/download/2/5/3/25324004-a2df-4163-95f5-ae9127b0f3ad/WindowsXP-KB954211-x86-ENU.exe
:: MS08-062 - Important
:: Vulnerability in Windows Internet Printing Service Could Allow Remote Code Execution (953155)
:: SP3: replaces none
call :download http://download.microsoft.com/download/d/7/f/d7f097e0-f290-4ff6-98ea-edaf8e78140f/WindowsXP-KB953155-x86-ENU.exe
:: MS08-063 – Important
:: Vulnerability in SMB Could Allow Remote Code Execution (957095)
:: SP2: replaces MS06-063
:: SP3: replaces none
call :download http://download.microsoft.com/download/3/3/f/33f997d5-b567-4ee9-82aa-3868629a1ec5/WindowsXP-KB957095-x86-ENU.exe
:: MS08-064 – Important
:: Vulnerability in Virtual Address Descriptor Manipulation Could Allow Elevation of Privilege (956841)
:: SP2: replaces MS07-022
:: SP3: replaces none
call :download http://download.microsoft.com/download/0/0/9/009cb4f8-9a59-412b-8811-f9f0b7703ee6/WindowsXP-KB956841-x86-ENU.exe
:: MS08-066 – Important
:: Vulnerability in the Microsoft Ancillary Function Driver Could Allow Elevation of Privilege (956803)
:: SP2: replaces none
:: SP3: replaces none
call :download http://download.microsoft.com/download/4/0/5/405222d0-5171-4ffb-a86e-7889e1161c1d/WindowsXP-KB956803-x86-ENU.exe
:: MS08-067 – Critical
:: Vulnerability in Server Service Could Allow Remote Code Execution (958644)
:: SP2: replaces MS06-040
:: SP3: replaces none
call :download http://download.microsoft.com/download/4/f/a/4fabe08e-5358-418b-81dd-d5038730b324/WindowsXP-KB958644-x86-ENU.exe
:: Nov 08
:: MS08-068 – Important
:: Vulnerability in SMB Could Allow Remote Code Execution (957097)
:: SP2: replaces MS05-011
:: SP3: replaces none
call :download http://download.microsoft.com/download/4/b/c/4bcfd71b-1f5a-4f9c-8c57-0b7ba2aae684/WindowsXP-KB957097-x86-ENU.exe
:: MS08-069 – Critical
:: Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution (955218)
:: SP2: replaces MS07-042
:: SP3: replaces none
call :download http://download.microsoft.com/download/d/6/5/d65961a2-d09b-4560-af78-1e4f97b77359/WindowsXP-KB955069-x86-ENU.exe
:: Dec 08
:: MS08-071 – Critical
:: Vulnerabilities in GDI Could Allow Remote Code Execution (956802)
:: SP2: replaces MS08-021
:: SP3: replaces none
call :download http://download.microsoft.com/download/0/0/D/00DBCA9D-B3CF-4F9E-A671-6CD79FC1DC4C/WindowsXP-KB956802-x86-ENU.exe
:: MS08-073 - Critical
:: Cumulative Security Update for Internet Explorer (958215)
:: SP2: replaces MS08-058
:: SP3: replaces MS08-058
call :download http://download.microsoft.com/download/0/2/9/0297FF58-CEFC-48DB-9CED-97796B754137/IE7-WindowsXP-KB958215-x86-ENU.exe
:: MS08-076 – Important
:: Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)
:: SP2: replaces none
:: SP3: replaces none
call :download http://download.microsoft.com/download/8/8/2/8822FCC3-55EB-4B37-B448-51FBE65DDC39/WindowsXP-WindowsMedia-KB952069-x86-ENU.exe
:: MS08-078 - Critical
:: Security Update for Internet Explorer (960714)
:: SP2: replaces none
:: SP3: replaces none
call :download http://download.microsoft.com/download/6/C/3/6C3F5EB1-846B-4E59-8346-6A380A77125C/IE7-WindowsXP-KB960714-x86-ENU.exe
about 'xpsp3.mak ' how-to
You wrote, "I've created the makefile xpsp3.mak .... Details on usage below." yet no such details no how to use exists. The only other entry is under, "Using Cygwin to Burn a Bootable CD" which show how one can make a change within it but does not say how to use the xpsp3.mak.
I am assuming that this file needs to be either placed somewhere or executed somehow, or am I wrong?
slipstreaming if OS is not on C: drive
I have/had 2 physical hard drives. After I replaced one HDD, where the OS was, somehow the tech at the shop (where I bought the PC and had the HDD replaced) did the wiring and jumpers wrong.
Anyhow, in installing Windows XP Home I had no choice but to place the OS in the 2nd (new drive) which was G: and NOT C: (C; and D; partitions/drives were taken from the other drive where I had files--this was my backup drive). Having work to do I had no choice but do the WIndows installation on G: which now only boots with the CD still in the drive.
Anyhow, since Windows was updated with SP3 and other updates I was wondering if it is safe to do a slipstream CD seeing that I will need to get the image (or whatever you call it) and files from the OS which does not sit on C but rather on G:
Or to put it simply, does the fact that presently my os is not on C: but rather on G: and that I need to use the original install CD to boot from make a difference or not?
Thank you
What about Office 2003
For Office 2003, run office_2003_hotfixes.cmd (updated 31-Dec-08) to install Service Pack 2, and all post-SP3 hotfixes locally.
Are you time travelling? I hoped to find this current but I see it is 9 months out of date. Any chance of updating it?
Methanoid
You're right. It should say 31-Dec-07. I'll fix that soon. Thanks for the heads up.
sp3 local...
Small issue with the sp3 local (i have not tried the slipstream one yet), you can change the hotfix dir to download too but it still downloads files to the run location. I had to add -P "%hotfixdir% to the wget part to get it to download to the correct directory. I am not sure what curls syntax is for that.
Only thing to look forward to in life is death.