COMMAND

    IEAK

SYSTEMS AFFECTED

    Win2000

PROBLEM

    Followin is based on IEAK  team notice.  Microsoft has  discovered
    a serious  problem when  a user  attempts to  install the  128-bit
    security patch for Internet Explorer 5.0, 5.0a and 5.0b on Windows
    2000  as  part  of  an  IE5.0  IEAK  package. After restarting the
    system, users will not be able to logon to Windows 2000.

    The instructions  to incorporate  the 128-bit  security patch into
    IEAK packages say you should use the command line switches:  "/q:a
    /r:n /n:v"  The /n:v switch when used with ie5dom.exe (the 128-bit
    security  patch  for  5.0x)  causes  important  security  files on
    Windows 2000  to be  replaced with  older files,  preventing users
    from logging on.

    Installations created using IEAK  5.0 for Windows 95,  Windows 98,
    and Windows  NT4 systems  with the  ie5dom.exe, and  these command
    line parameters specified, are not affected.

    It is  critical that  you freeze  distribution of  IE 5.0, 5.0a or
    5.0b  builds  that  incorporate  the  128-bit  security patch with
    these  switches.   Please  take  immediate  action to help prevent
    more people from encountering this issue.

SOLUTION

    Check

        http://www.microsoft.com/windows/ieak/en/support/faq/default.asp

    and Microsoft Knowledge Base  (KB) article Q255669 for  updates to
    this issue.   To check a  package for this  issue, open your  IEAK
    package in the IEAK Wizard and go to the Custom Components screen.
    Examine each custom component.  If you have included ie5dom.exe as
    a custom component, check the command line switches for '/R:N /Q:A
    /N:V' *OR* if you don't have the IEAK Wizard available to you:

    1) Extract  your custom  IE 5.0x  package by  running this command
       line: 'ie5setup.exe /c /t:<path to an empty directory>'
    2) Browse to the directory. Open 'iesetup.cif' in Notepad
    3) Look for a section like this:

        [CUSTOM0]
        SectionType=Component
        DisplayName='128-bit Security'
        URL1='Ie5dom.exe',2
        GUID=128PATCH
        Command1='Ie5dom.exe'
        Switches1='/R:N /Q:A /N:V'
        Type1=2
        UninstallKey=''
        Version=
        Size=216
        Platform=win95,win98,nt4,nt5,
        Modes='0,1,2'
        Details='128-bit Securiy'
        Group=CustItems
        Priority=500
        UIVisible=0
        
    4) Examine for:
        Switches1='/R:N /Q:A /N:V'

    If you  have this  switch listed,  immediately freeze distribution
    of this package!!!