and also apply the GDI+ hotfix (KB 971530) after SP2 for modern Windows versions. SP2 fixes dozens of subtle but serious bugs. An unpatched VFP 9.0 is a risk; an SP2-patched one is a reliable workhorse.
| KB ID / Patch | Description | Purpose | | :--- | :--- | :--- | | KB955630 | Rollup update that updates mscomctl.ocx | Addresses a security vulnerability in the Windows common control | | KB958371 | Post-SP2 hotfix that patches VFP9 up to build 9.0.0.7423 | Addresses multiple reported issues and improves stability | | GDI+ Update for VFP9 SP2 | Security patch fixing buffer overrun vulnerability in JPEG processing | Protects systems from exploits targeting GDI+ | | CVE-2012-1856 | Addresses a remote code execution vulnerability (rated 8.8 - High) in various ActiveX controls (DataGrid, Hierarchical FlexGrid) | Prevents attackers from executing arbitrary code via crafted documents or web pages | visual foxpro 9.0 service pack 2 -sp2-
Microsoft released several important updates after the initial release of SP2. These are not included in the main SP2 installer but are critical for a fully updated system. and also apply the GDI+ hotfix (KB 971530)