@echo off

REM ##############################################################################
REM
REM Windows 2003 (32-bit) patch script by Doc Rice v1.2
REM This script requires the use of REG.EXE from the Windows NT 4.0 Resource Kit, 
REM and the SLEEP.EXE utility.
REM
REM An updated version of REG.EXE utility can be found at:
REM 
REM ftp://ftp.microsoft.com/bussys/winnt/winnt-public/reskit/nt40/i386/reg_x86.exe
REM
REM SLEEP.EXE can be found at:
REM
REM http://www2.gol.com/users/trane/programming/programming.html
REM
REM WARNING: This script assumes your Windows 2003 OS has been installed with 
REM defaults and currently has DirectX 8.1.
REM
REM Please see http://winpatch.homeip.net for updated information.
REM
REM ##############################################################################


color 1F
title Windows 2003 Hotfix Install

:install
echo Installing patches for Windows 2003...
echo --------------------------------------------------------------------------------
echo Patch list updated as of 8/9/2005.
echo.
echo Today is %date%.
echo.
echo.
echo.


REM -------------------------------------------------------------

echo.
echo Checking for MS03-023: Buffer Overrun In HTML Converter Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB823559\Description" /s || echo Patching - see Q823559... && .\OS\Q823559\WindowsServer2003-KB823559-x86-ENU.exe /u /q /z

echo.
echo Checking for MS03-034: Flaw in NetBIOS could lead to information disclosure
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB824105\Description" /s || echo Patching - see Q824105... && .\OS\Q824105\WindowsServer2003-KB824105-x86-ENU.exe /u /q /z

echo.
echo Checking for MS03-041: Vulnerability in Authenticode Verification Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB823182\Description" /s || echo Patching - see Q823182... && .\OS\Q823182\WindowsServer2003-KB823182-x86-ENU.exe /u /q /z

echo.
echo Checking for MS03-043: Buffer Overrun in Messenger Service Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB828035\Description" /s || echo Patching - see Q828035... && .\OS\Q828035\WindowsServer2003-KB828035-x86-ENU.exe /quiet /norestart

echo.
echo Checking for MS04-011: Security Update for Microsoft Windows
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB835732\Filelist" /s || echo Patching - see Q835732... && .\OS\Q835732\WindowsServer2003-KB835732-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-012: Cumulative Update for Microsoft RPC/DCOM
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB828741\Filelist" /s || echo Patching - see Q828741... && .\OS\Q828741\WindowsServer2003-KB828741-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-014: Vulnerability in the Microsoft Jet Database Engine Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB837001\Filelist" /s || echo Patching - see Q837001... && .\OS\Q837001\WindowsServer2003-KB837001-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-015: Vulnerability in Help and Support Center Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB840374\Filelist" /s || echo Patching - see Q840374... && .\OS\Q840374\WindowsServer2003-KB840374-x86-ENU.EXE /quiet /norestart

echo.
echo Checking for MS04-024: Vulnerability in Windows Shell Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB839645\Filelist" /s || echo Patching - see Q839645... && .\OS\Q839645\WindowsServer2003-KB839645-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS04-031: Vulnerability in NetDDE Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB841533\Filelist" /s || echo Patching - see Q841533... && .\OS\Q841533\WindowsServer2003-KB841533-x86-enu.EXE /quiet /norestart

echo.
echo Checking for MS04-034: Vulnerability in Compressed (zipped) Folders Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB873376\Filelist" /s || echo Patching - see Q873376... && .\OS\Q873376\WindowsServer2003-KB873376-x86-enu.EXE /quiet /norestart

echo.
echo Checking for MS04-037: Vulnerability in Windows Shell Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB841356\Filelist" /s || echo Patching - see Q841356... && .\OS\Q841356\WindowsServer2003-KB841356-x86-enu.EXE /quiet /norestart

echo.
echo Checking for MS04-041: Vulnerability in WordPad Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB885836\Filelist" /s || echo Patching - see Q885836... && .\OS\Q885836\WindowsServer2003-KB885836-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS04-044: Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB885835\Filelist" /s || echo Patching - see Q885835... && .\OS\Q885835\WindowsServer2003-KB885835-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-002: Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB891711\Filelist" /s || echo Patching - see Q891711... && .\OS\Q891711\WindowsServer2003-KB891711-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-003: Vulnerability in the Indexing Service Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB871250\Filelist" /s || echo Patching - see Q871250... && .\OS\Q871250\WindowsServer2003-KB871250-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-010: Vulnerability in the License Logging Service Could Allow Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB885834\Filelist" /s || echo Patching - see Q885834... && .\OS\Q885834\WindowsServer2003-KB885834-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-011: Vulnerability in Server Message Block Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB885250\Filelist" /s || echo Patching - see Q885250... && .\OS\Q885250\WindowsServer2003-KB885250-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-012: Vulnerability in OLE and COM Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB873333\Filelist" /s || echo Patching - see Q873333... && .\OS\Q873333\WindowsServer2003-KB873333-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-013: Vulnerability in the DHTML Editing Component ActiveX Control Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB891781\Filelist" /s || echo Patching - see Q891781... && .\OS\Q891781\WindowsServer2003-KB891781-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-015: Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB888113\Filelist" /s || echo Patching - see Q888113... && .\OS\Q888113\WindowsServer2003-KB888113-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-016: Vulnerability in Windows Shell that Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB893086\Filelist" /s || echo Patching - see Q893086... && .\OS\Q893086\WindowsServer2003-KB893086-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-018: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege and Denial of Service
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB890859\Filelist" /s || echo Patching - see Q890859... && .\OS\Q890859\WindowsServer2003-KB890859-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-019: Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB893066\Filelist" /s || echo Patching - see Q893066... && .\OS\Q893066\WindowsServer2003-KB893066-v2-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-026: Vulnerability in HTML Help Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP2\KB896358\Filelist" /s || echo Patching - see Q896358... && .\OS\Q896358\WindowsServer2003-KB896358-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-027: Vulnerability in Server Message Block Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP2\KB896422\Filelist" /s || echo Patching - see Q896422... && .\OS\Q896422\WindowsServer2003-KB896422-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-028: Vulnerability in Web Client Service Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB896426\Filelist" /s || echo Patching - see Q896426... && .\OS\Q896426\WindowsServer2003-KB896426-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-032: Vulnerability in Microsoft Agent Could Allow Spoofing
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP2\KB890046\Filelist" /s || echo Patching - see Q890046... && .\OS\Q890046\WindowsServer2003-KB890046-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-033: Vulnerability in Telnet Client Could Allow Information Disclosure
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP2\KB896428\Filelist" /s || echo Patching - see Q896428... && .\OS\Q896428\WindowsServer2003-KB896428-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-036: Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP2\KB901214\Filelist" /s || echo Patching - see Q901214... && .\OS\Q901214\WindowsServer2003-KB901214-x86-ENU.exe /quiet /norestart


REM -------------------------------------------------------------
echo.
echo.
echo Patching Internet Information Services 6.0
echo --------------------------------------------------------------------------------
echo.

.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IISADMIN" || goto iepatch

echo.
echo Checking for MS04-030: Vulnerability in WebDAV XML Message Handler Could Lead to a Denial of Service
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB824151\Filelist" /s || echo Patching - see Q824151... && .\IIS\Q824151\WindowsServer2003-KB824151-x86-enu.EXE /quiet /norestart

.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SMTPSVC" || goto nntp

echo.
echo Checking for MS04-035: Vulnerability in SMTP Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB885881\Filelist" /s || echo Patching - see Q885881... && .\IIS\Q885881\WindowsServer2003-KB885881-x86-enu.EXE /quiet /norestart

.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NntpSvc" || goto iepatch

:nntp
echo.
echo Checking for MS04-036: Vulnerability in NNTP Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP1\KB883935\Filelist" /s || echo Patching - see Q883935... && .\IIS\Q883935\WindowsServer2003-KB883935-x86-enu.EXE /quiet /norestart


:iepatch
REM -------------------------------------------------------------
echo.
echo.
echo Patching Internet Explorer
echo --------------------------------------------------------------------------------
echo.

echo.
echo Checking for MS05-025: Cumulative Security Update for Internet Explorer
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP2\KB883939\Filelist" /s || echo Patching - see Q883939... && .\IE_60\Q883939\WindowsServer2003-KB883939-x86-enu.exe /quiet /norestart

echo.
echo Checking for MS05-037: Vulnerability in JView Profiler Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{03D9F3F2-B0E3-11D2-B081-006008039BF0}" /s || echo Patching - see Q903235... && .\IE_60\Q903235\WindowsServer2003-KB903235-x86-ENU.exe /quiet /norestart


REM -------------------------------------------------------------
echo.
echo.
echo Patching Windows Media Player
echo --------------------------------------------------------------------------------
echo.

echo.
echo Checking for MS05-009: Vulnerability in PNG Processing Could Allow Remote Code Execution
.\REG\REG.EXE QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Media Player 9\kb885492" /s || echo Patching - see Q890261... && .\WMP\Q890261\WindowsMedia9-KB885492-x86-ENU.exe /quiet /norestart


REM -------------------------------------------------------------
echo.
echo.
echo Qchaining hotfixes...
echo.

.\Qchain\qchain.exe


REM -------------------------------------------------------------
color
echo.
echo.
echo Initial update process for Windows 2003 completed.  Please reboot 
echo for all hotfixes to take effect and verify patch levels afterwards.
echo.

.\SLEEP\sleep.exe 03
goto end

:end