Bug in Security Update for Visual C++ Redistributable Package: April 12, 2011 causes program error on Windows 2000#
Update:Microsoft’s Visual C++ team has released workarounds on the problem. AVG has released an utility that can revert the KB2467175 update, downloadable at http://twitter.blog.avg.com/2011/04/avg-feedback-update-26411.html
Avira is reporting that its AntiVir software throws “The procedure entry point FindActCtxSectionStringW could not be located in the dynamic link library KERNEL32.dll.” error after installing the update released earlier this week.
This is caused by the introduction of FindActCtxSectionStringW in the MFC update which is distributed to affected computers where the Visual C++ Redistributable is installed by affected programs. I guess Microsoft did not test the update on Windows 2000 since Windows 2000’s support has expired, and indeed removed Windows 2000 from the supported platform list of the redistributables on the Microsoft download center page, but nonetheless those who develop software using Visual C++ 2005 and Visual C++ 2008, two currently supported products, would still not able to support Windows 2000 users after this update (KB2467174 and KB2467175).
Microsoft already withdrawn the update to fix this issue. On April 21, 2001, Microsoft re-released the update, and made only a detection change, means the update won’t be offered to Windows 2000 again.
Suggestion to end users and software developers who already installed the update on Windows 2000: Uninstall the April 12, 2011 updates, remove leftovers mentioned in the KB articles identified by the updates and install the ATL security update versions (search in download.microsoft.com to get those updates) for now.
Suggestion to software developers: Call SetSearchPathMode to turn on the safe dll searching mode at the beginning of the app, and join the discussion` Always ask the developer before applying a security fix or service pack to Visual Studio that need changed the C++ runtime DLLs ATL/MFC/CRT <https://connect.microsoft.com/VisualStudio/feedback/details/662511/always-ask-the-developer-before-applying-a-security-fix-or-service-pack-to-visual-studio-that-need-changed-the-c-runtime-dlls-atl-mfc-crt>`__.
Affected software:
Mozilla Firefox (90% users have this issue this week)
Avira AntiVir
Logitech Setpoint Mouse Software
Other known issues in this update can be found in a follow up postat the Visual C++ blog.
Alternative error message:
プロシージャエントリポイントFindActCtxSectionStringWがダイナミックリンクライブラリKERNEL32.dllから見つかりません
无法定位程序输入点FindActCtxSectionStringW于动态链接库KERNEL32.dll上