Registry hack allows Windows XP SP2 patching
Tweak tricks Microsoft's security updates into thinking SP2 is really SP3
Computerworld - People still running the now-retired Windows XP Service Pack 2 (SP2) can trick the operating system into installing security updates, a researcher said Monday.
The hack requires an edit of a single key in the Windows registry, said Sean Sullivan, a security adviser with Helsinki, Finland-based antivirus vendor F-Secure, who spelled out the tweak in a blog post.
"It turns out that an SP2 system will think it's [Service Pack 3] if you edit this key: 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Windows,' and edit the DWORD value 'CSDVersion' from 200 to 300, [then] reboot," said Sullivan.
According to Microsoft, CSDVersion specifies the name of the most recent service pack installed on the PC.
In other words, Sullivan's hack disguises XP SP2 as SP3 when Microsoft's security updates determine whether the PC is eligible for a patch.
With the hack, Sullivan was able to force a Windows XP SP2 system to install the emergency patch Microsoft issued last week for a critical vulnerability in Windows' parsing of shortcut files.
That "out-of-band" update was officially denied to Windows XP SP2 PCs because the service pack was retired from support on July 13. By Microsoft policy, retired products no longer receive security patches.
After hacking the registry, Sullivan installed the shortcut patch -- which he had downloaded directly from Microsoft's site rather than via the Windows Update patching service -- and tested an exploit that has been used by attackers for several weeks to infect PCs.
"It did not infect the system after the patch," said Sullivan. "Cool."
The patch for the shortcut bug can be found on Microsoft's Download Center site.
Sullivan cautioned users that the registry hack is risky.
"Remember, this update is not officially tested or supported by Microsoft for SP2," Sullivan said. "Hacking the registry and applying updates is likely a very quick way to destabilize your system. You really should update to Service Pack 3 if at all possible."
Most users, in fact, steer clear of the registry, since as Sullivan pointed out, an editing error can cripple the computer. "Do so at your own risk," he added.
Sullivan admitted he had not come up with the registry tweak, but said he had remembered a similar hack touted by players of "Grand Theft Auto IV" a year and a half ago. A thread on the GTAForums.com site from December 2008 showed how the same hack could be used to fool the game into launching on a Windows XP SP2 system.
Microsoft has been pushing customers all year to upgrade from XP SP2 to SP3 -- or to move to the new Windows 7 instead -- and offers detailed instructions on how to get and install XP's third service pack on its site.
Gregg Keizer covers Microsoft, security issues, Apple, Web browsers and general technology breaking news for Computerworld. Follow Gregg on Twitter at
@gkeizer or subscribe to Gregg's RSS feed
. His e-mail address is gkeizer@ix.netcom.com.
Windows XP lives
- Aged Windows XP costs 5x more to manage than Windows 7
- Microsoft starts XP retirement countdown
- Windows XP slide continues; Mac OS X posts record gain
- Users desert Windows XP in near-record numbers
- Windows XP loses record share as decline quickens
- Windows XP usage share falls by record amount
- Windows XP turns 10
- Windows XP's share falls below 50%
- Windows 7 posts enterprise gains, but XP retains 60% share
- Calif. woman sues Microsoft over XP downgrades -- again
Read more about Windows in Computerworld's Windows Topic Center.


- Excel 2010 Cheat Sheet
- Register for this Computerworld Insider Cheat Sheet and gain access to hundreds of premium content articles, guides, product reviews and more.
- Practice Management: Double Billing Rate and Improve Patient Services
- Would you like to double your billing rate and achieve faster payment for services?
Download this customer success story to see how One Health... - Mission Critical Data Explosion and Customer Case Study
- Would you like to double your tier 1 storage capacity while simultaneously reducing your storage footprint?
Download this customer success story to see how... - Protecting Against Database Attacks and Insider Threats: Top 5 Scenarios
- Read this new eBook to learn the top five scenarios and essential best practices for preventing database attacks and insider threats.
- Database Activity Monitoring Is Evolving
- Read the analyst report and learn how you can leverage the core capabilities of a DAP solution for better database security.
- Establishing a Strategy for Database Security is No Longer Optional
- The options for securing increasingly valuable databases are very broad and deep, and can be confusing. This research provides an overview of three... All Windows White Papers
- Distributed Database Security with Real-time Monitoring
- View this demo and learn how IBM InfoSphere Guardium database activity monitoring can help protect your sensitive data in distributed DBMS environments with...
- InfoSphere Warehouse Packs Demo
- These flash modules make warehousing more tangible and relevant to business users through detailed explanations of the InfoSphere Warehouse Packs.
- Delivery Management -- Extending Lifecycle Management
- Date: Wednesday, June 20, 2012, 1:00 PM EDT
Siloed organizations continue doing the wrong things and doing things wrong, leading to increased costs,... - Leverage automation today to reduce IT complexity
- Date: Tuesday, June 5, 2012, 2:00 PM EDT
Whether your B2B complexity is caused by multiple technologies due to M&A, business or application specific... - Redefine Expectations in the Data Center
- Need to do more with less? Watch this video to learn how HP ProLiant Gen8 servers can help your business deploy servers three... All Windows Webcasts
