The February 2007 Windows XP Embedded monthly supplement Updates are now available on the Mobile & Embedded Communications Extranet (ECE) for OEMs who purchase through Distribution (OEMs with a direct license agreement with MS will continue to access product downloads on MS OEM Online.) The Update applies to Microsoft® Windows® XP Embedded for Service Pack 1, Service Pack 2, and Feature Pack 2007, as well as Microsoft® Windows® Embedded for Point of Service (WEPOS) 1.0 products. The Update also includes Microsoft® Windows® XP Professional for use with the Desktop Installer Tool Updates for Windows XP Embedded.
The following Updates are included in the February 2007 release:
KB 918118 Vulnerability in Microsoft RichEdit Could Allow Remote Code Execution.
KB 923789 Vulnerabilities in Macromedia Flash Player from Adobe Could Allow Remote Code Execution.
KB 926436 Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution.
KB 927779 Vulnerability in the Microsoft Data Access Components (MDAC) Function Could Allow Remote Code Execution.
KB 927802 Vulnerability in Windows Image Acquisition Could Allow Elevation of Privilege.
KB 928090 Cumulative Security Update for Internet Explorer.
KB 928255 Vulnerability in Windows Shell Could Allow Elevation of Privilege.
KB 928843 Vulnerability in HTML Help Could Allow Remote Code Execution.
KB 929969 Vulnerability in Vector Markup Language Could Allow Remote Code Execution.
KB 931836 February 2007 cumulative time zone update for Microsoft Windows operating systems.
KB 924667 Vulnerability in Microsoft MFC Could Allow Remote Code Execution.
The February Updates are available at the following link on the ECE:
If you have questions on accessing the ECE, please email MS Mobile & Embedded Communications Feedback & Support, ECE@microsoft.com.