KB929969 Security update will not install

This has been messing with my system for far too long and I've got to figure
it out.

My Windows Update has always updated itself flawlessly untill the security
update:
KB929969 - The VRML markup vulnerablity.

Windows Update downloads the update and attempts to install and then fails
at the very end with no error message (other than the one in the log)
The Windows update program registers this update as "canceled" (the grey x
symbol) so I cannot click on it to "receive information about my failed
install"

The final entry in the KB929969.log file is here:
1.062: 2007/06/22 22:45:51.750 (local)
1.062:
C:\WINDOWS\SoftwareDistribution\Download\88a28ec38 47c01e056ff4268caaa255d\update\update.exe (version 6.2.29.0)
1.062: Failed To Enable SE_SHUTDOWN_PRIVILEGE
1.078: Hotfix started with following command line: -q -z -er
/ParentInfo:c0b38e7d2dc65a40bc12750377869a1c
1.078: FileVersion of C:\Program Files\internet explorer\iexplore.exe is
Less Than 7.0.0.0
1.078: Condition succeeded for section Test.IE7InstallBlock.Section in Line
1 of PreRequisite
1.328: In Function TestVolatileFlag, line 11873, RegOpenKeyEx failed with
error 0x2
1.328: In Function TestVolatileFlag, line 11905, RegOpenKeyEx failed with
error 0x2
1.328: DoInstallation: CleanPFR failed: 0x2
1.328: SetProductTypes: InfProductBuildType=BuildType.IP
1.328: SetAltOsLoaderPath: No section uses DirId 65701; done.
1.328: CreateUninstall = 1,Directory = C:\WINDOWS\$NtUninstallKB929969$
1.328: LoadFileQueues: UpdSpGetSourceFileLocation for halaacpi.dll failed:
0xe0000102
1.343: ref tag c:\windows\system32\sp4.cab does not exist
1.343: ref tag c:\windows\system32\sp3.cab does not exist
1.343: ref tag c:\windows\system32\sp2.cab does not exist
1.343: ref tag c:\windows\system32\sp1.cab does not exist
1.343: ref tag c:\windows\system32\driver.cab does not exist
1.343: ref tag c:\windows\system32\fp40ext.cab does not exist
1.343: ref tag c:\windows\system32\fp40ext1.cab does not exist
1.343: ref tag c:\windows\system32\wms4.cab does not exist
1.343: ref tag c:\windows\system32\wms41.cab does not exist
1.343: ref tag c:\windows\system32\ims.cab does not exist
1.343: ref tag c:\windows\system32\ims1.cab does not exist
1.343: ref tag c:\windows\system32\ins.cab does not exist
1.343: ref tag c:\windows\system32\ins1.cab does not exist
1.343: Starting AnalyzeComponents
1.343: AnalyzePhaseZero used 0 ticks
1.343: No c:\windows\INF\updtblk.inf file.
1.343: OEM file scan used 0 ticks
2.687: AnalyzePhaseOne: used 1344 ticks
2.687: AnalyzeComponents: Hotpatch analysis disabled; skipping.
2.687: AnalyzeComponents: Hotpatching is disabled.
2.687: FindFirstFile c:\windows\$hf_mig$\*.*
2.765: KB929969 Setup encountered an error: The update.ver file is not
correct.
2.781: KB929969 Setup encountered an error: The update.ver file is not
correct.
2.781: KB929969 Setup encountered an error: The update.ver file is not
correct.
2.781: KB929969 Setup encountered an error: The update.ver file is not
correct.
4.140: AnalyzeForBranching: Getting file version for file c:\program
files\common files\microsoft shared\vgx\vgx.dll failed with error 0x00000057
4.140: AnalyzeForBranching used 1359 ticks.
4.218: AnalyzePhaseTwo used 78 ticks
4.218: AnalyzePhaseThree used 0 ticks
4.218: AnalyzePhaseFive used 0 ticks
4.218: AnalyzePhaseSix used 0 ticks
4.218: AnalyzeComponents used 2875 ticks
4.218: Downloading 0 files
4.218: bPatchMode = TRUE
4.218: Inventory complete: ReturnStatus=0, 2890 ticks
4.218: Num Ticks for invent : 2890
4.234: VerifyTargetFileSize: Unable to verify size as Source = NULL for file
c:\windows\inf\HFX7.tmp
4.234: Copied file: c:\windows\inf\branches.inf
24.656: Allocation size of drive C: is 4096 bytes, free space = 11037609984
bytes
24.687: AnalyzeDiskUsage: Skipping EstimateDiskUsageForUninstall.
24.687: Drive C: free 10526MB req: 12MB w/uninstall: NOT CALCULATED.
24.687: CabinetBuild complete
24.687: Num Ticks for Cabinet build : 20469
24.687: DynamicStrings section not defined or empty.
24.703: FileInUse:: Detection disabled.
25.703: LoadFileQueues: UpdSpGetSourceFileLocation for halaacpi.dll failed:
0xe0000102
31.312: ArchiveFileForUninstall:ArchiveSingleFile Cancelled
31.531: DoInstallation:UpdSpCommitFileQueue for FileQueue Failed: 0x4c7
31.609: DeRegistering the Uninstall Program -> KB929969, 2
31.609: KB929969 Setup canceled.
31.609: Update.exe extended error code = 0xf00d


I've searched for months for an answer using all the error codes as search
terms and am not having any luck.
To top it all off, Microsoft is telling me that my version of Windows is not
"supported" by them. It is the legal version that has passed verification
many times that came with my system... Hologram disk and all.

I'm using Windows XP Professional with all updates (except this single one
and IE7 which will also not install, aparantly because the first update is
not installed)

I would be happy with any help at all, even if it's just some new search
terms because this is really driving me crazy.

"PastorVor" <> schrieb:

> This has been messing with my system for far too long and I've got to figure
> it out.
>
> My Windows Update has always updated itself flawlessly untill the security
> update:
> KB929969 - The VRML markup vulnerablity.

> 4.140: AnalyzeForBranching: Getting file version for file c:\program
> files\common files\microsoft shared\vgx\vgx.dll failed with error 0x00000057

Here's the culprit.

> I'm using Windows XP Professional with all updates (except this single one
> and IE7 which will also not install, aparantly because the first update is
> not installed)

Could it be that you've used calcs to restrict user rights for vgx.dll
as a temporary workaround which has been propagated before KB929969 has
been released? See also the FAQ section of the relevant Security Bulletin:
http://www.microsoft.com/technet/sec.../ms06-055.mspx

| Can I deploy this security update after I have applied the workarounds
| provided in Microsoft Security Advisory 925568?
|
| If the workaround "Modify the Access Control List on Vgx.dll to be more
| restrictive" has been applied to systems, the security updates provided
| with this security bulletin may not install correctly. See the Workarounds
| for VML Buffer Overrun Vulnerability - CVE-2006-4868 section in this
| security bulletin for instructions on how to revert this workaround before
| applying this security update.
[...]
| Note If this workaround is applied, software that redistributes vgx.dll may
| fail to install. An example of this is Internet Explorer 7 Release Candidate
| 1 and subsequent versions of Internet Explorer 7. Before this software can
| be installed, this workaround must be reverted to the previous ACL
| configuration for vgx.dll.
| Note Customers wishing to revert to the default installed ACL configuration
| for vgx.dll, type the following: [...]
| - For Windows XP Service Pack 1 and Windows XP Service Pack 2:
|
| echo y| cacls "%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll" /P BUILTIN\Users:R "BUILTIN\Power Users:C"
BUILTIN\Administrators:F "NT AUTHORITY\SYSTEM:F"

Note that the command above is *one* line that needs to be entered in a
command line windows, which you may want to open via Start -> Run -> cmd
and hitting the [Enter] key or click on "OK".

HTH,
Freudi

Never had a problem with updates until today either. I installed IE7 and then
attempted to install the updates which became immediately available.
Received the message that 'some updates could not be installed' Retried many
times to no avail.

I've read the reply which you received PastorVor but this is too complicated
for me and I wondered whether anyone could explain this in simpler terms
please? Haven't Microsoft found a way to overcome this yet without me having
to attempt to re-configure anything as I'm really not confident with this
kind of stuff.

All help gratefully received...
"PastorVor" wrote:

> This has been messing with my system for far too long and I've got to figure
> it out.
>
> My Windows Update has always updated itself flawlessly untill the security
> update:
> KB929969 - The VRML markup vulnerablity.
>
> Windows Update downloads the update and attempts to install and then fails
> at the very end with no error message (other than the one in the log)
> The Windows update program registers this update as "canceled" (the grey x
> symbol) so I cannot click on it to "receive information about my failed
> install"
>
> The final entry in the KB929969.log file is here:
> 1.062: 2007/06/22 22:45:51.750 (local)
> 1.062:
> C:\WINDOWS\SoftwareDistribution\Download\88a28ec38 47c01e056ff4268caaa255d\update\update.exe (version 6.2.29.0)
> 1.062: Failed To Enable SE_SHUTDOWN_PRIVILEGE
> 1.078: Hotfix started with following command line: -q -z -er
> /ParentInfo:c0b38e7d2dc65a40bc12750377869a1c
> 1.078: FileVersion of C:\Program Files\internet explorer\iexplore.exe is
> Less Than 7.0.0.0
> 1.078: Condition succeeded for section Test.IE7InstallBlock.Section in Line
> 1 of PreRequisite
> 1.328: In Function TestVolatileFlag, line 11873, RegOpenKeyEx failed with
> error 0x2
> 1.328: In Function TestVolatileFlag, line 11905, RegOpenKeyEx failed with
> error 0x2
> 1.328: DoInstallation: CleanPFR failed: 0x2
> 1.328: SetProductTypes: InfProductBuildType=BuildType.IP
> 1.328: SetAltOsLoaderPath: No section uses DirId 65701; done.
> 1.328: CreateUninstall = 1,Directory = C:\WINDOWS\$NtUninstallKB929969$
> 1.328: LoadFileQueues: UpdSpGetSourceFileLocation for halaacpi.dll failed:
> 0xe0000102
> 1.343: ref tag c:\windows\system32\sp4.cab does not exist
> 1.343: ref tag c:\windows\system32\sp3.cab does not exist
> 1.343: ref tag c:\windows\system32\sp2.cab does not exist
> 1.343: ref tag c:\windows\system32\sp1.cab does not exist
> 1.343: ref tag c:\windows\system32\driver.cab does not exist
> 1.343: ref tag c:\windows\system32\fp40ext.cab does not exist
> 1.343: ref tag c:\windows\system32\fp40ext1.cab does not exist
> 1.343: ref tag c:\windows\system32\wms4.cab does not exist
> 1.343: ref tag c:\windows\system32\wms41.cab does not exist
> 1.343: ref tag c:\windows\system32\ims.cab does not exist
> 1.343: ref tag c:\windows\system32\ims1.cab does not exist
> 1.343: ref tag c:\windows\system32\ins.cab does not exist
> 1.343: ref tag c:\windows\system32\ins1.cab does not exist
> 1.343: Starting AnalyzeComponents
> 1.343: AnalyzePhaseZero used 0 ticks
> 1.343: No c:\windows\INF\updtblk.inf file.
> 1.343: OEM file scan used 0 ticks
> 2.687: AnalyzePhaseOne: used 1344 ticks
> 2.687: AnalyzeComponents: Hotpatch analysis disabled; skipping.
> 2.687: AnalyzeComponents: Hotpatching is disabled.
> 2.687: FindFirstFile c:\windows\$hf_mig$\*.*
> 2.765: KB929969 Setup encountered an error: The update.ver file is not
> correct.
> 2.781: KB929969 Setup encountered an error: The update.ver file is not
> correct.
> 2.781: KB929969 Setup encountered an error: The update.ver file is not
> correct.
> 2.781: KB929969 Setup encountered an error: The update.ver file is not
> correct.
> 4.140: AnalyzeForBranching: Getting file version for file c:\program
> files\common files\microsoft shared\vgx\vgx.dll failed with error 0x00000057
> 4.140: AnalyzeForBranching used 1359 ticks.
> 4.218: AnalyzePhaseTwo used 78 ticks
> 4.218: AnalyzePhaseThree used 0 ticks
> 4.218: AnalyzePhaseFive used 0 ticks
> 4.218: AnalyzePhaseSix used 0 ticks
> 4.218: AnalyzeComponents used 2875 ticks
> 4.218: Downloading 0 files
> 4.218: bPatchMode = TRUE
> 4.218: Inventory complete: ReturnStatus=0, 2890 ticks
> 4.218: Num Ticks for invent : 2890
> 4.234: VerifyTargetFileSize: Unable to verify size as Source = NULL for file
> c:\windows\inf\HFX7.tmp
> 4.234: Copied file: c:\windows\inf\branches.inf
> 24.656: Allocation size of drive C: is 4096 bytes, free space = 11037609984
> bytes
> 24.687: AnalyzeDiskUsage: Skipping EstimateDiskUsageForUninstall.
> 24.687: Drive C: free 10526MB req: 12MB w/uninstall: NOT CALCULATED.
> 24.687: CabinetBuild complete
> 24.687: Num Ticks for Cabinet build : 20469
> 24.687: DynamicStrings section not defined or empty.
> 24.703: FileInUse:: Detection disabled.
> 25.703: LoadFileQueues: UpdSpGetSourceFileLocation for halaacpi.dll failed:
> 0xe0000102
> 31.312: ArchiveFileForUninstall:ArchiveSingleFile Cancelled
> 31.531: DoInstallation:UpdSpCommitFileQueue for FileQueue Failed: 0x4c7
> 31.609: DeRegistering the Uninstall Program -> KB929969, 2
> 31.609: KB929969 Setup canceled.
> 31.609: Update.exe extended error code = 0xf00d
>
>
> I've searched for months for an answer using all the error codes as search
> terms and am not having any luck.
> To top it all off, Microsoft is telling me that my version of Windows is not
> "supported" by them. It is the legal version that has passed verification
> many times that came with my system... Hologram disk and all.
>
> I'm using Windows XP Professional with all updates (except this single one
> and IE7 which will also not install, aparantly because the first update is
> not installed)
>
> I would be happy with any help at all, even if it's just some new search
> terms because this is really driving me crazy.