Addresses an issue that may cause a memory leak on SMB servers after installing KB4056897 or any other recent monthly update. This leak may occur when the requested path traverses a symbolic link, a mount point, or a directory junction and the registry key is set to 1: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\LanManServer\Parameters\EnableEcp
Addresses an issue that may cause an error when connecting to a Remote Desktop server. For more information, see CredSSP updates for CVE-2018-0886.
Security updates to Internet Explorer, Windows apps, Windows kernel, Microsoft Graphics Component, Windows storage and filesystems, HTML help, and Windows Hyper-V.
For more information about the resolved security vulnerabilities, see the Security Update Guide.

Known issues in this update

Symptom	Workaround
A stop error occurs on computers that don’t support Streaming Single Instructions Multiple Data (SIMD) Extensions 2 (SSE2).	Upgrade your machines with a processor that supports SSE2 or virtualize those machines.

How to get this update

This update is now available for installation through WSUS. To get the standalone package for this update, go to the Microsoft Update Catalog website.File informationFor a list of the files that are provided in this update, download the file information for update 4103712.

mskb 20

nessus 20

kaspersky 2

prion 14

attackerkb 3

cvelist 14

cve 14

openvas 8

threatpost 4

thn 3

malwarebytes 3

mscve 13

cisa_kev 2

packetstorm 3

symantec 13

checkpoint_advisories 8

securelist 5

metasploit 3

zdt 6

canvas 1

zdi 5

fireeye 2

krebs 1

qualysblog 2

myhack58 2

hackread 1

exploitpack 2

oraclelinux 3

photon 1

huawei 2

debiancve 1

exploitdb 1

veracode 1

cert 1

ubuntucve 1

cisa 1

redhatcve 1

xen 1

freebsd 1

redhat 2

osv 1

f5 1

freebsd_advisory 1

trellix 2

seebug 1

mssecure 1

googleprojectzero 1

mskb

May 8, 2018—KB4103726 (Security-only update)

2018-05-08 07:00:00

May 8, 2018—KB4103715 (Security-only update)

2018-05-08 07:00:00

May 8, 2018—KB4103730 (Monthly Rollup)

2018-05-08 07:00:00

nessus

Security Updates for Windows Server 2008 (May 2018)

2018-05-09 00:00:00

KB4103726: Windows Server 2012 May 2018 Security Update

2018-05-08 00:00:00

KB4103712: Windows 7 and Windows Server 2008 R2 May 2018 Security Update

2018-05-08 00:00:00

kaspersky

KLA11894 Multiple vulnerabilities in Microsoft Products (ESU)

2018-05-08 00:00:00

KLA11241 Multiple vulnerabilities in Microsoft Windows

2018-05-08 00:00:00

prion

Privilege escalation

2018-05-09 19:29:00

Privilege escalation

2018-05-09 19:29:00

Privilege escalation

2018-05-09 19:29:00

attackerkb

CVE-2018-8164

2018-05-09 00:00:00

CVE-2018-8120

2018-05-09 00:00:00

CVE-2018-8174

2018-05-09 00:00:00

cvelist

CVE-2018-8124

2018-05-09 19:00:00

CVE-2018-8164

2018-05-09 19:00:00

CVE-2018-8120

2018-05-09 19:00:00

cve

CVE-2018-8120

2018-05-09 19:29:00

CVE-2018-8164

2018-05-09 19:29:00

CVE-2018-8166

2018-05-09 19:29:00

openvas

Microsoft Windows Multiple Vulnerabilities (KB4103718)

2018-05-09 00:00:00

Microsoft Windows Multiple Vulnerabilities (KB4103725)

2018-05-09 00:00:00

Microsoft Windows Multiple Vulnerabilities (KB4103716)

2018-05-09 00:00:00

threatpost

May Patch Tuesday Fixes Two Bugs Under Active Attack

2018-05-08 20:42:20

ScarCruft APT Adds Bluetooth Harvester to its Malware Bag of Tricks

2019-05-13 16:46:09

Major OS Players Misinterpret Intel Docs, and Now Kernels Can Be Hijacked

2018-05-10 15:37:07

thn

Microsoft Patches Two Zero-Day Flaws Under Active Attack

2018-05-09 06:14:00

CredSSP Flaw in Remote Desktop Protocol Affects All Versions of Windows

2018-03-13 18:06:00

Two Zero-Day Exploits Found After Someone Uploaded 'Unarmed' PoC to VirusTotal

2018-07-02 18:28:00

malwarebytes

Adobe Reader zero-day discovered alongside Windows vulnerability

2018-05-15 18:44:14

Maze: the ransomware that introduced an extra twist

2020-05-29 15:00:00

Exploit kits: summer 2018 review

2018-08-07 15:00:00

mscve

Microsoft Windows Information Disclosure Vulnerability

2017-12-12 08:00:00

Win32k Elevation of Privilege Vulnerability

2018-05-08 07:00:00

Win32k Elevation of Privilege Vulnerability

2018-05-08 07:00:00

cisa_kev

Microsoft Win32k Privilege Escalation Vulnerability

2022-03-15 00:00:00

Microsoft Windows VBScript Engine Out-of-Bounds Write Vulnerability

2022-02-15 00:00:00

packetstorm

Microsoft Windows SetImeInfoEx Win32k NULL Pointer Dereference

2018-10-19 00:00:00

Microsoft Internet Explorer 11 Vbscript Code Execution

2018-05-24 00:00:00

Microsoft Windows POP/MOV SS Local Privilege Elevation

2018-07-13 00:00:00

symantec

Microsoft Windows Kernel 'Win32k.sys' CVE-2018-8120 Local Privilege Escalation Vulnerability

2018-05-08 00:00:00

Microsoft Windows Kernel 'Win32k.sys' CVE-2018-8164 Local Privilege Escalation Vulnerability

2018-05-08 00:00:00

Microsoft Windows CVE-2017-11927 Information Disclosure Vulnerability

2017-12-12 00:00:00

checkpoint_advisories

Microsoft Windows Common Log File System Driver Elevation of Privilege (CVE-2018-8167)

2018-05-08 00:00:00

Microsoft Windows ITS Protocol Information Disclosure (CVE-2017-11927)

2018-01-03 00:00:00

Microsoft Win32k Elevation of Privilege (CVE-2018-8164)

2018-05-08 00:00:00

securelist

ScarCruft continues to evolve, introduces Bluetooth harvester

2019-05-13 10:00:03

CactusPete APT group’s updated Bisonal backdoor

2020-08-13 10:00:09

IT threat evolution Q2 2019

2019-08-19 10:00:29

metasploit

Windows SetImeInfoEx Win32k NULL Pointer Dereference

2018-10-10 19:41:14

Windows unmarshal post exploitation

2018-10-19 23:15:44

Microsoft Windows POP/MOV SS Local Privilege Elevation Vulnerability

2018-07-13 06:11:37

zdt

Microsoft Windows SetImeInfoEx Win32k NULL Pointer Dereference Exploit

2018-10-22 00:00:00

Microsoft Internet Explorer 11 #InternetExplorer #IE (#Windows7 x64/x86) - vbscript Code Execution E

2018-05-24 00:00:00

Microsoft COM for Windows - Privilege Escalation Exploit

2018-06-19 00:00:00

canvas

Immunity Canvas: SETIMEINFOEX_LPE

2018-05-09 19:29:00

zdi

Microsoft Windows win32k Menu Use-After-Free Privilege Escalation Vulnerability

2018-05-14 00:00:00

(Pwn2Own) Microsoft Windows D3DKMTCreateDCFromMemory Memory Corruption Privilege Escalation Vulnerability

2018-06-08 00:00:00

Microsoft Windows VBScript Class_Terminate Use-After-Free Remote Code Execution Vulnerability

2018-06-05 00:00:00

fireeye

Fallout Exploit Kit Used in Malvertising Campaign to Deliver GandCrab Ransomware

2018-09-06 11:00:00

Navigating the MAZE: Tactics, Techniques and Procedures Associated With MAZE Ransomware Incidents

2020-05-07 00:00:00

krebs

Microsoft Patch Tuesday, May 2018 Edition

2018-05-08 20:38:16

qualysblog

May 2018 Patch Tuesday – Medium Weight, However One Active Exploit Needs Attention

2018-05-08 18:20:24

What we’ve got here is failure to communicate: OS vendors misread CPU docs, create flaw

2018-05-14 18:47:42

myhack58

The Windows VBScript Engine RCE vulnerability of CVE-2018-8174 analysis and use-vulnerability and early warning-the black bar safety net

2018-11-08 00:00:00

CVE-2018-4990 Adobe Reader code execution exploit analysis-exploit warning-the black bar safety net

2018-06-01 00:00:00

hackread

New backdoor malware hits Slack and Github platforms

2019-03-08 15:56:09

exploitpack

Microsoft Credential Security Support Provider - Remote Code Execution

2018-04-13 00:00:00

Microsoft Windows - POPMOV SS Privilege Escalation

2018-05-22 00:00:00

oraclelinux

Unbreakable Enterprise kernel security update

2018-05-08 00:00:00

Unbreakable Enterprise kernel security update

2018-05-08 00:00:00

kernel security update

2018-09-18 00:00:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0132-A

2018-05-03 00:00:00

huawei

Security Advisory - Privilege Escalation Vulnerability in Some Huawei Products

2019-09-21 00:00:00

Security Advisory - Privilege Escalation Vulnerability in Some Huawei Products

2019-09-21 00:00:00

debiancve

CVE-2018-8897

2018-05-08 18:29:00

exploitdb

Microsoft Windows - SetImeInfoEx Win32k NULL Pointer Dereference (Metasploit)

2018-10-22 00:00:00

veracode

Local Privilege Escalation

2019-01-15 09:21:51

cert

Hardware debug exception documentation may result in unexpected behavior

2018-05-08 00:00:00

ubuntucve

CVE-2018-8897

2018-05-08 00:00:00

cisa

Debug Exception May Cause Unexpected Behavior

2018-05-08 00:00:00

redhatcve

CVE-2018-8897

2020-04-07 11:35:31

xen

x86: mishandling of debug exceptions

2018-05-08 16:45:00

freebsd

FreeBSD -- Mishandling of x86 debug exceptions

2018-05-08 00:00:00

redhat

(RHSA-2018:1353) Moderate: kernel security update

2018-05-08 21:59:19

(RHSA-2018:1352) Moderate: kernel security update

2018-05-08 21:59:05

osv

CVE-2018-8897

2018-05-08 18:29:00

K17403481 : Linux kernel vulnerability CVE-2018-8897

2018-05-15 00:00:00

freebsd_advisory

FreeBSD-SA-18:06.debugreg

2018-05-08 00:00:00

trellix

Rapidly Evolving Ransomware Gandcrab Version

2018-10-10 00:00:00

Rapidly Evolving Ransomware Gandcrab Version

2018-10-10 00:00:00

seebug

Microsoft Windows Kernel 'Win32k.sys' Local Privilege Escalation Vulnerability(CVE-2018-8120)

2018-05-21 00:00:00

mssecure

Taking apart a double zero-day sample discovered in joint hunt with ESET

2018-07-02 15:00:00

googleprojectzero

On VBScript

2018-12-19 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
OpenSource

@2024 Vulners Inc

7.5 High

AI Score

Confidence

High

0.975 High

EPSS

Percentile

100.0%

JSON

Related for KB4103712