7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
<html><body><p>Resolves a vulnerability in Windows that could allow elevation of privilege if an attacker runs a specially crafted application.</p><h2>Summary</h2><div>This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker runs a specially crafted application.<br /><br />To learn more about the vulnerability, see <a href=āhttps://technet.microsoft.com/library/security/MS17-017ā target=ā_selfā>Microsoft Security Bulletin MS17-017</a>. </div><h2>More Information</h2><div><span>Important <br /><br /></span><ul><li>All future security and non-security updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update <a href=āhttps://support.microsoft.com/en-us/help/2919355ā target=ā_selfā>2919355</a> to be installed. We recommend that you install update <a href=āhttps://support.microsoft.com/en-us/help/2919355ā target=ā_selfā>2919355</a> on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates. </li><li>If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see <a href=āhttps://technet.microsoft.com/en-us/library/hh825699ā target=ā_selfā>Add language packs to Windows</a>. </li></ul></div><h2>Additional information about this security update</h2><div><div>The following articles contain more information about this security update as it relates to individual product versions. These articles may contain known issue information.</div><br /><ul><li><a href=āhttp://support.microsoft.com/kb/4011981ā target> 4011981</a> MS17-017: Description of the security update for Windows Kernel: March 14, 2017</li><li><a href=āhttp://support.microsoft.com/kb/4012216ā target> 4012216</a> March 2017 Security Monthly Quality Rollup for Windows 8.1 and Windows Server 2012 R2</li><li><a href=āhttp://support.microsoft.com/kb/4012213ā target> 4012213</a> March 2017 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2</li><li><a href=āhttp://support.microsoft.com/kb/4012217ā target> 4012217</a> March 2017 Security Monthly Quality Rollup for Windows Server 2012</li><li><a href=āhttp://support.microsoft.com/kb/4012214ā target> 4012214</a> March 2017 Security Only Quality Update for Windows Server 2012</li><li><a href=āhttp://support.microsoft.com/kb/4012215ā target> 4012215</a> March 2017 Security Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1</li><li><a href=āhttp://support.microsoft.com/kb/4012212ā target> 4012212</a> March 2017 Security Only Quality Update for Windows 7 SP1 and Windows Server 2008 R2 SP1</li><li><a href=āhttp://support.microsoft.com/kb/4013429ā target> 4013429</a> March 13, 2017āKB4013429 (OS Build 933)</li><li><a href=āhttp://support.microsoft.com/kb/4012606ā target> 4012606</a> March 14, 2017āKB4012606 (OS Build 17312)</li><li><a href=āhttp://support.microsoft.com/kb/4013198ā target> 4013198</a> March 14, 2017āKB4013198 (OS Build 830)</li></ul></div><h2>Security update deployment</h2><p></p><h3><strong>Windows Vista (all editions)</strong></h3><p></p><p><strong>Reference table</strong></p><p>The following table contains the security update information for this software.</p><table><tbody><tr><td width=ā26%ā><p><strong>Security update file names</strong></p></td><td width=ā73%ā><p>For all supported 32-bit editions of Windows Vista:<br /><strong>Windows6.0-KB4011981-x86.msu</strong></p></td></tr><tr><td width=ā26%ā><p>Ā </p></td><td width=ā73%ā><p>For all supported x64-based editions of Windows Vista:<br /><strong>Windows6.0-KB4011981-x64.msu</strong></p></td></tr><tr><td width=ā26%ā><p><strong>Installation switches</strong></p></td><td width=ā73%ā><p>See <a href=āhttps://support.microsoft.com/kb/934307ā><span><u>Microsoft Knowledge Base article 934307</u></span></a></p></td></tr><tr><td width=ā26%ā><p><strong>Restart requirement</strong></p></td><td width=ā73%ā><p>A system restart is required after you apply this security update.</p></td></tr><tr><td width=ā26%ā><p><strong>Removal information</strong></p></td><td width=ā73%ā><p>WUSA.exe does not support uninstall of updates. To uninstall an update installed by WUSA, click <strong>Control Panel</strong>, and then click <strong>Security</strong>. Under āWindows Update,ā click <strong>View installed updates</strong>, and then select from the list of updates.</p></td></tr><tr><td width=ā26%ā><p><strong>File information</strong></p></td><td width=ā73%ā><p>See <a href=āhttps://support.microsoft.com/kb/4011981ā><span><u>Microsoft Knowledge Base article 4011981</u></span></a></p></td></tr><tr><td width=ā26%ā><p><strong>Registry key verification</strong></p></td><td width=ā73%ā><p><strong>Note</strong> A registry key does not exist to validate the presence of this update.</p></td></tr></tbody></table><p>Ā </p><h3><strong>Windows Server 2008 (all editions)</strong></h3><p><strong>Reference table</strong></p><p>The following table contains the security update information for this software.</p><table><tbody><tr><td width=ā26%ā><p><strong>Security update file names</strong></p></td><td width=ā73%ā><p>For all supported 32-bit editions of Windows Server 2008:<br /><strong>Windows6.0-KB4011981-x86.msu</strong></p></td></tr><tr><td width=ā26%ā><p>Ā </p></td><td width=ā73%ā><p>For all supported x64-based editions of Windows Server 2008:<br /><strong>Windows6.0-KB4011981-x64.msu</strong></p></td></tr><tr><td width=ā26%ā><p>Ā </p></td><td width=ā73%ā><p>For all supported Itanium-based editions of Windows Server 2008<br /><strong>Windows6.0-KB4011981-ia64.msu</strong></p></td></tr><tr><td width=ā26%ā><p><strong>Installation switches</strong></p></td><td width=ā73%ā><p>See <a href=āhttps://support.microsoft.com/kb/934307ā><span><u>Microsoft Knowledge Base article 934307</u></span></a></p></td></tr><tr><td width=ā26%ā><p><strong>Restart requirement</strong></p></td><td width=ā73%ā><p>A system restart is required after you apply this security update.</p></td></tr><tr><td width=ā26%ā><p><strong>Removal information</strong></p></td><td width=ā73%ā><p>WUSA.exe does not support uninstall of updates. To uninstall an update installed by WUSA, click <strong>Control Panel</strong>, and then click <strong>Security</strong>. Under āWindows Update,ā click <strong>View installed updates</strong>, and then select from the list of updates.</p></td></tr><tr><td width=ā26%ā><p><strong>File information</strong></p></td><td width=ā73%ā><p>See <a href=āhttps://support.microsoft.com/kb/4011981ā><span><u>Microsoft Knowledge Base article 4011981</u></span></a></p></td></tr><tr><td width=ā26%ā><p><strong>Registry key verification</strong></p></td><td width=ā73%ā><p><strong>Note</strong> A registry key does not exist to validate the presence of this update.</p></td></tr></tbody></table><p><span> </span></p><h3><strong>Windows 7 (all editions)</strong></h3><p><strong>Reference table</strong></p><p>The following table contains the security update information for this software.</p><table><tbody><tr><td width=ā29%ā><p><strong>Security update file name</strong></p></td><td width=ā70%ā><p>For all supported x64-based editions of Windows 7:<br /><strong>indows6.1-KB4012212-x64.msu</strong><br />Security only</p></td></tr><tr><td width=ā29%ā><p>Ā </p></td><td width=ā70%ā><p>For all supported x64-based editions of Windows 7:<br /><strong>Windows6.1-KB4012215-x64.msu</strong><br />Monthly rollup</p></td></tr><tr><td width=ā29%ā><p><strong>Installation switches</strong></p></td><td width=ā70%ā><p>See <a href=āhttps://support.microsoft.com/kb/934307ā><u>Microsoft Knowledge Base article 934307</u></a><span><u> </u></span></p></td></tr><tr><td width=ā29%ā><p><strong>Restart requirement</strong></p></td><td width=ā70%ā><p>A system restart is required after you apply this security update.</p></td></tr><tr><td width=ā29%ā><p><strong>Removal information</strong></p></td><td width=ā70%ā><p>To uninstall an update installed by WUSA, use the <strong>/Uninstall </strong>setup switch or click <strong>Control Panel</strong>, click <strong>System and Security</strong>, click <strong>View installed updates</strong>
under āWindows Update,āĀ and then select from the list of updates.</p></td></tr><tr><td width=ā29%ā><p><strong>File information</strong></p></td><td width=ā70%ā><p>See <a href=āhttps://support.microsoft.com/kb/4012212ā><u>Microsoft Knowledge Base article 4012212</u></a><br />See <a href=āhttps://support.microsoft.com/kb/4012215ā><u>Microsoft Knowledge Base article 4012215</u></a></p></td></tr><tr><td width=ā29%ā><p><strong>Registry key verification</strong></p></td><td width=ā70%ā><p><strong>Note</strong> A registry key does not exist to validate the presence of this update.</p></td></tr></tbody></table><p><span> </span></p><h3><strong>Windows Server 2008 R2 (all editions)</strong></h3><p><strong>Reference table</strong></p><p>The following table contains the security update information for this software.</p><table><tbody><tr><td width=ā29%ā><p><strong>Security update file name</strong></p></td><td width=ā70%ā><p>For all supported x64-based editions of Windows Server 2008 R2:<br /><strong>Windows6.1-KB4012212-x64.msu</strong><br />Security only</p></td></tr><tr><td width=ā29%ā><p>Ā </p></td><td width=ā70%ā><p>For all supported x64-based editions of Windows Server 2008 R2:<br /><strong>Windows6.1-KB4012215-x64.msu</strong><br />Monthly rollup</p></td></tr><tr><td width=ā29%ā><p><strong>Installation switches</strong></p></td><td width=ā70%ā><p>See <a href=āhttps://support.microsoft.com/kb/934307ā><u>Microsoft Knowledge Base article 934307</u></a></p></td></tr><tr><td width=ā29%ā><p><strong>Restart requirement</strong></p></td><td width=ā70%ā><p>A system restart is required after you apply this security update.</p></td></tr><tr><td width=ā29%ā><p><strong>Removal information</strong></p></td><td width=ā70%ā><p>To uninstall an update installed by WUSA, use the <strong>/Uninstall</strong> setup switch or click <strong>Control Panel</strong>, click <strong>System and Security</strong>, click <strong>View installed updates</strong>
under āWindows Update,āĀ and then select from the list of updates.</p></td></tr><tr><td width=ā29%ā><p><strong>File information</strong></p></td><td width=ā70%ā><p>See <a href=āhttps://support.microsoft.com/kb/4012212ā><u>Microsoft Knowledge Base article 4012212</u></a><br />See <a href=āhttps://support.microsoft.com/kb/4012215ā><u>Microsoft Knowledge Base article 4012215</u></a></p></td></tr><tr><td width=ā29%ā><p><strong>Registry key verification</strong></p></td><td width=ā70%ā><p><strong>Note</strong> A registry key does not exist to validate the presence of this update.</p></td></tr></tbody></table><p><span> </span></p><h3><strong>Windows 8.1 (all editions)</strong></h3><p><strong>Reference table</strong></p><p>The following table contains the security update information for this software.</p><table><tbody><tr><td width=ā29%ā><p><strong>Security update file name</strong></p></td><td width=ā70%ā><p>For all supported x64-based editions of Windows 8.1:<br /><strong>Windows8.1-KB4012213-x64.msu</strong><br />Security only</p></td></tr><tr><td width=ā29%ā><p>Ā </p></td><td width=ā70%ā><p>For all supported x64-based editions of Windows 8.1:<br /><strong>Windows8.1-KB4012216-x64.msu</strong><br />Monthly rollup</p></td></tr><tr><td width=ā29%ā><p><strong>Installation switches</strong></p></td><td width=ā70%ā><p>See <a href=āhttps://support.microsoft.com/kb/934307ā><u>Microsoft Knowledge Base article 934307</u></a></p></td></tr><tr><td width=ā29%ā><p><strong>Restart requirement</strong></p></td><td width=ā70%ā><p>A system restart is required after you apply this security update.</p></td></tr><tr><td width=ā29%ā><p><strong>Removal information</strong></p></td><td width=ā70%ā><p>To uninstall an update installed by WUSA, use the <strong>/Uninstall</strong> setup switch or click <strong>Control Panel</strong>, click <strong>System and Security</strong>, click <strong>Windows Update</strong>, click <strong>Installed updates</strong>
under āSee also,āĀ and then select from the list of updates.</p></td></tr><tr><td width=ā29%ā><p><strong>File information</strong></p></td><td width=ā70%ā><p>See <a href=āhttps://support.microsoft.com/kb/4012213ā><u>Microsoft Knowledge Base article 4012213</u></a><br />See <a href=āhttps://support.microsoft.com/kb/4012216ā><u>Microsoft Knowledge Base article 4012216</u></a></p></td></tr><tr><td width=ā29%ā><p><strong>Registry key verification</strong></p></td><td width=ā70%ā><p><strong>Note</strong> A registry key does not exist to validate the presence of this update.</p></td></tr></tbody></table><p><span> </span></p><h3><strong>Windows RT 8.1 (all editions)</strong></h3><p><strong>Reference table</strong></p><p>The following table contains the security update information for this software.</p><table><tbody><tr><td width=ā29%ā><p><strong>Deployment</strong></p></td><td width=ā71%ā><p>The 4012216 monthly rollup update is available via <a href=āhttp://go.microsoft.com/fwlink/?LinkId=21130ā><u>Windows Update</u></a> only.</p></td></tr><tr><td width=ā29%ā><p><strong>Restart requirement</strong></p></td><td width=ā71%ā><p>A system restart is required after you apply this security update.</p></td></tr><tr><td width=ā29%ā><p><strong>Removal information</strong></p></td><td width=ā71%ā><p>Click <strong>Control Panel</strong>, click <strong>System and Security</strong>, click <strong>Windows Update</strong>, click <strong>Installed updates</strong>
under āSee also,āĀ and then select from the list of updates.</p></td></tr><tr><td width=ā29%ā><p><strong>File information</strong></p></td><td width=ā71%ā><p>See <a href=āhttps://support.microsoft.com/kb/4012213ā><u>Microsoft Knowledge Base article 4012213</u></a></p></td></tr></tbody></table><h3><strong>Windows Server 2012 and Windows Server 2012 R2 (all editions)</strong></h3><p><strong>Reference table</strong></p><p>The following table contains the security update information for this software.</p><table><tbody><tr><td width=ā29%ā><p><strong>Security update file name</strong></p></td><td width=ā70%ā><p>For all supported editions of Windows Server 2012:<br /><strong>Windows8-RT-KB4012214-x64.msu</strong><br />Security only</p></td></tr><tr><td width=ā29%ā><p>Ā </p></td><td width=ā70%ā><p>For all supported editions of Windows Server 2012:<br /><strong>Windows8-RT-KB4012217-x64.msu</strong><br />Monthly rollup</p></td></tr><tr><td width=ā29%ā><p>Ā </p></td><td width=ā70%ā><p>For all supported editions of Windows Server 2012 R2:<br /><strong>Windows8.1-KB4012213-x64.msu</strong><br />Security only</p></td></tr><tr><td width=ā29%ā><p>Ā </p></td><td width=ā70%ā><p>For all supported editions of Windows Server 2012 R2:<br /><strong>Windows8.1-KB4012216-x64.msu</strong><br />Monthly rollup</p></td></tr><tr><td width=ā29%ā><p><strong>Installation switches</strong></p></td><td width=ā70%ā><p>See <a href=āhttps://support.microsoft.com/kb/934307ā><u>Microsoft Knowledge Base article 934307</u></a></p></td></tr><tr><td width=ā29%ā><p><strong>Restart requirement</strong></p></td><td width=ā70%ā><p>A system restart is required after you apply this security update.</p></td></tr><tr><td width=ā29%ā><p><strong>Removal information</strong></p></td><td width=ā70%ā><p>To uninstall an update installed by WUSA, use the <strong>/Uninstall</strong> setup switch or click <strong>Control Panel</strong>, click <strong>System and Security</strong>, click <strong>Windows Update</strong>, click <strong>Installed updates</strong>
under āSee also,āĀ and then select from the list of updates.</p></td></tr><tr><td width=ā29%ā><p><strong>File information</strong></p></td><td width=ā70%ā><p>See <a href=āhttps://support.microsoft.com/kb/4012214ā><u>Microsoft Knowledge Base article 4012214</u></a><br />See <a href=āhttps://support.microsoft.com/kb/4012217ā><u>Microsoft Knowledge Base article 4012217</u></a><br />See <a href=āhttps://support.microsoft.com/kb/4012213ā><u>Microsoft Knowledge Base article 4012213</u></a><br />See <a href=āhttps://support.microsoft.com/kb/4012216ā><u>Microsoft Knowledge Base article 4012216</u></a></p></td></tr><tr><td width=ā29%ā><p><strong>Registry key verification</strong></p></td><td width=ā70%ā><p><strong>Note</strong> A registry key does not exist to validate the presence of this update.</p></td></tr></tbody></table><p><span> </span></p><h3><strong>Windows 10 (all editions)</strong></h3><p><strong>Reference table</strong></p><p>The following table contains the security update information for this software.</p><table><tbody><tr><td width=ā30%ā><p><strong>Security update file name</strong></p></td><td width=ā70%ā><p>For all supported x64-based editions of Windows 10:<br /><span><strong><span>Windows10.0-KB4012606-x64.msu</span></strong></span></p></td></tr><tr><td width=ā30%ā><p>Ā </p></td><td width=ā70%ā><p>For all supported x64-based editions of Windows 10 Version 1511:<br /><span><strong><span>Windows10.0-KB4013198-x64.msu</span></strong></span></p></td></tr><tr><td width=ā30%ā><p>Ā </p></td><td width=ā70%ā><p>For all supported x64-based editions of Windows 10 Version 1607:<br /><span><strong><span>Windows10.0-KB4013429-x64.msu</span></strong></span></p></td></tr><tr><td width=ā30%ā><p><strong>Installation switches</strong></p></td><td width=ā70%ā><p>See <a href=āhttps://support.microsoft.com/kb/934307ā><u>Microsoft Knowledge Base article 934307</u></a></p></td></tr><tr><td width=ā30%ā><p><strong>Restart requirement</strong></p></td><td width=ā70%ā><p>A system restart is required after you apply this security update.</p></td></tr><tr><td width=ā30%ā><p><strong>Removal information</strong></p></td><td width=ā70%ā><p>To uninstall an update installed by WUSA, use the <strong>/Uninstall</strong> setup switch or click <strong>Control Panel</strong>, click <strong>System and Security</strong>, click <strong>Windows Update</strong>, click <strong>Installed updates</strong>
under āSee also,āĀ and then select from the list of updates.</p></td></tr><tr><td width=ā30%ā><p><strong>File information</strong></p></td><td width=ā70%ā><p><span>See </span><a href=āhttps://support.microsoft.com/en-sg/help/12387/windows-10-update-historyā target=ā_selfā><span><u>Windows 10 and Windows Server 2016 update history</u></span></a><span>.</span></p></td></tr><tr><td width=ā30%ā><p><strong>Registry key verification</strong></p></td><td width=ā70%ā><p><strong>Note</strong> A registry key does not exist to validate the presence of this update.</p></td></tr></tbody></table><p><span> </span></p><h3><strong>Windows Server 2016 (all editions)</strong></h3><p><strong>Reference table</strong></p><p>The following table contains the security update information for this software.</p><table><tbody><tr><td width=ā30%ā><p><strong>Security update file name</strong></p></td><td width=ā70%ā><p>For all supported editions of Windows Server 2016:<br /><span><strong><span>Windows10.0-KB4013429-x64.msu</span></strong></span></p></td></tr><tr><td width=ā30%ā><p><strong>Installation switches</strong></p></td><td width=ā70%ā><p>See <a href=āhttps://support.microsoft.com/kb/934307ā><u>Microsoft Knowledge Base article 934307</u></a></p></td></tr><tr><td width=ā30%ā><p><strong>Restart requirement</strong></p></td><td width=ā70%ā><p>A system restart is required after you apply this security update.</p></td></tr><tr><td width=ā30%ā><p><strong>Removal information</strong></p></td><td width=ā70%ā><p>To uninstall an update installed by WUSA, use the <strong>/Uninstall</strong> setup switch or click <strong>Control Panel</strong>, click <strong>System and Security</strong>, click <strong>Windows Update</strong>, click <strong>Installed updates</strong>
under āSee also,āĀ and then select from the list of updates.</p></td></tr><tr><td width=ā30%ā><p><strong>File information</strong></p></td><td width=ā70%ā><p><span>See </span><a href=āhttps://support.microsoft.com/en-sg/help/12387/windows-10-update-historyā target=ā_selfā><span><u>Windows 10 and Windows Server 2016 update history</u></span></a><span>.</span></p></td></tr><tr><td width=ā30%ā><p><strong>Registry key verification</strong></p></td><td width=ā70%ā><p><strong>Note</strong> A registry key does not exist to validate the presence of this update.</p></td></tr></tbody></table><h2>More Information</h2><div><div><div><div><span><span></span></span><span><span>How to get help and support for this security update</span></span></div><div><div>Help for installing updates: <a href=āhttps://support.microsoft.com/ph/6527ā target=ā_selfā>Windows Update: FAQ</a><br /><br />Security solutions for IT professionals: <a href=āhttps://technet.microsoft.com/security/bb980617.aspxā target=ā_selfā>TechNet Security Support and Troubleshooting</a><br /><br />Help for protecting your Windows-based computer from viruses and malware: <a href=āhttps://support.microsoft.com/contactus/cu_sc_virsec_masterā target=ā_selfā>Microsoft Secure</a><br /><br />Local support according to your country: <a href=āhttps://www.microsoft.com/en-us/locale.aspxā target=ā_selfā>International Support</a></div></div></div></div></div></body></html>
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C