Archive for June, 2014

MS14-035: “Windows Internet Explorer 9 Privacy Statement” ???

Yesterday was MS patch Tuesday for June.  I applied all the critical updates (using Windows Update) against my Windows 7 Enterprise 64-bit machine.  After rebooting and launching Internet Explorer, a second tab opened up displaying the “Windows Internet Explorer 9 Privacy Statement.”  I was puzzled – primarily because I am running Internet Explorer 10 (not 9).  Today we used SCCM to distribute the same patches to our IT department.  Several people rebooted and reported seeing the exact same privacy statement.  I am trying to determine if this is unique to our corporate image of Windows 7 or something other Microsoft customers are seeing as well.  Thoughts?

Unrelated to the IE issue, we also noticed that this round of updates seems to require a double restart.  We picked up on this more readily since we use Bitlocker in the TPM+PIN configuration.  Anybody else witness that behavior?


Update 06/12/14 @ 9:32 AM – Confirmation that others are seeing this same issue.  Also getting reports of a general “Your browser has been upgraded” message.

http://comments.gmane.org/gmane.comp.security.patch-managment/5936


Update 06/12/14 @ 10:14 AM – Here is the sequence of events that is causing this to happen:

1. Install MS14-035 and reboot
2. At either post-shutdown or pe-boot, the following registry value is being set:

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] “PrivacyPolicyShown”=dword:00000000

3. Login and launch Internet Explore
4. The browser displays the privacy policy. MS changed the page that is displayed to now just indicate that your browser has been updated. Once displayed, the above registry value is changed from “0” to “1” and not displayed again.

We are going to test forcing that registry value to “1” as part of our GPO to prevent this from happening in the first place. Will report back on the results of our testing.

Comments

Creative Commons License Creative Commons License