Lucene search

K
mskbMicrosoftKB4012497
HistoryMar 14, 2017 - 7:00 a.m.

MS17-018 and MS17-013: Description of the security update for Windows Kernel-Mode Drivers and for Microsoft Graphics Component: March 14, 2017

2017-03-1407:00:00
Microsoft
support.microsoft.com
29

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.2

Confidence

High

EPSS

0.001

Percentile

49.2%

MS17-018 and MS17-013: Description of the security update for Windows Kernel-Mode Drivers and for Microsoft Graphics Component: March 14, 2017

Summary

This security update resolves vulnerabilities in Windows that could allow remote code execution if a user either visits a specially crafted website or opens a specially crafted document. This security update also resolves vulnerabilities in Windows that could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that could exploit the vulnerabilities and take control of an affected system. To learn more about the vulnerabilities, see Microsoft Security Bulletin MS17-018 and Microsoft Security Bulletin MS17-013.Important

  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

How to obtain and install this update

Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

Update deployment information

For deployment information about this update, see Microsoft Knowledge Base article 4013075.

Update removal information

We do not recommend that you remove any security update.To remove this update, use the Programs and Features item in Control Panel.

Update restart information

This update does not require a system restart after you apply it unless files that are being updated are locked or are being used.

Update replacement information

This update replaces previously released update 3204723.

File information

__

File hash information

File name SHA1 hash SHA256 hash
Windows6.0-KB4012497-x64.msu 08DED93F5247DC64A57E0DCD5E76752983F9F93C 5135E35D2D2B34B6CD80D5CD1E79ABF9D042524570D5A4E1B316B66739459B0C
Windows6.0-KB4012497-ia64.msu 9B840CD0B635DA49ABCFC986A1793D59A61344FC 4BE15B4C5B8940331CA81D416259ADF0DEE9F660AAEFC4D0A6890C8027C833AD
Windows6.0-KB4012497-x86.msu 6BC6370B69DA979C270ECDFAFBDB609FCB60DC8E A5335EB6CAAFB1B891A640492B5B6474A91AF84CB14C182A2210F80E6132AB88

File information
The English (United States) version of this software update installs files that have the attributes that are listed in the following tables.

Windows Vista and Windows Server 2008 file information

**Note:**The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.

__

For all supported x64-based versions

File name File version File size Date Time Platform
Win32k.sys 6.0.6002.19741 2,805,248 09-Feb-2017 15:54 x64
Win32k.sys 6.0.6002.24065 2,807,296 09-Feb-2017 15:52 x64

__

For all supported ia64-based versions

File name File version File size Date Time Platform
Win32k.sys 6.0.6002.19741 6,696,448 09-Feb-2017 15:35 IA-64
Win32k.sys 6.0.6002.24065 6,706,176 09-Feb-2017 15:31 IA-64

__

For all supported x86-based versions

File name File version File size Date Time Platform
Win32k.sys 6.0.6002.19741 2,074,112 09-Feb-2017 15:33 x86
Win32k.sys 6.0.6002.24065 2,081,792 09-Feb-2017 15:29 x86

How to obtain help and support for this security update

__

How to get help and support for this security update

Help for installing updates: Windows Update: FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.2

Confidence

High

EPSS

0.001

Percentile

49.2%