Lucene search

MicrosoftKB4014661

HistoryApr 11, 2017 - 7:00 a.m.

Cumulative security update for Internet Explorer: April 11, 2017

2017-04-1107:00:00

Microsoft

support.microsoft.com

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.881 High

EPSS

Percentile

98.6%

JSON

Cumulative security update for Internet Explorer: April 11, 2017

Summary

This security update resolves several reported vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage in Internet Explorer. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures. Also, this security update includes several nonsecurity-related fixes for Internet Explorer. Additionally, see Windows 10 and Windows Server 2016 update history for more information on cumulative updates for Windows 10 and Windows Server 2016.
Important

The fixes included in this Security Update for Internet Explorer 4014661 are also included in the April 2017 Security Monthly Quality Rollup. Installing either the Security Update for Internet Explorer or the Security Monthly Quality Rollup installs the fixes that are resolved with this update.
If you use update management processes other than Windows Update and you automatically approve all security updates classifications for deployment, this Security Update for Internet Explorer 4014661, the April 2017 Security Only Quality Update, and the April 2017 Security Monthly Quality Rollup are deployed. We recommend that you review your update deployment rules to make sure the desired updates are deployed.
This Security Update for Internet Explorer is not applicable for installation on a computer where the Security Monthly Quality Rollup or the Preview of Monthly Quality Rollup from April 2017 (or a later month) is already installed, as those updates contain all fixes in this Security Update for Internet Explorer.
If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Deployment information

For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:
Security update deployment information: April 11, 2017

How to get and install the update

Method 1: Microsoft Update

This update is available through Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically.For more information about how to get security updates automatically, see Windows Update: FAQ.

Note For Windows RT and Windows RT 8.1, this update is available through Microsoft Update only.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

More Information

Nonsecurity-related fixes that are included in this security update

General distribution release (GDR) fixes Individual updates may not be installed, depending on your version of Windows and the version of the affected application. See the individual articles to determine your update status.

KB number	Title
4019100	Elements may overlap when you use the contentEditable div element in Internet Explorer 11
4012494	Option to disable VBScript execution in Internet Explorer for Internet Zone and Restricted Sites Zone
Note You must install this Security Update for Internet Explorer 4014661 to have the option to disable VBScript as document in 4012494 on a computer that does not have Windows 10 Creators Update installed.

How to get help and support for this security update

Help for installing updates: Windows Update: FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

File informationFor a list of the files that are provided in this cumulative update, download the file information for cumulative update 4014661.

File hash information

File name	SHA1 hash	SHA256 hash
Windows8.1-KB4014661-x86.msu	90A1FF11F987D1949524AC6858FD437E08DF5E8E	1E9F51BF29D92495D0E9E2FF527DA2376B17B1E08F559AFAC7449412F0982767
Windows8.1-KB4014661-arm.msu	F62E39F620FCEF267E9A9BA624DE8414DA8ADF9E	C92E670A2F66864CA99E4F6CAD5F5BED8C80A40681B6639CD4F0172319747E71
Windows8.1-KB4014661-x64.msu	168D9DBD0798063B820F9A7955D821AF1EE7C012	338E37D4F425BB70258BD3769C6642DB04DF99EC281BF6AA0FC2567CA3A1527B
Windows8-RT-KB4014661-x64.msu	7EFA5086F7F451027F4937ED85BF48B00A776F96	347EE3FD1BEBF8D581F6A2C65B61CC227F01F1BD39D9C01B6E357B84845CC582
IE11-Windows6.1-KB4014661-X64.msu	6538CA325F6FD30C72C8FA375CBAF47A9ADBAB5B	6800E94C8558BEF09D3F8962D934A061D77D113C3C7914DA25D86F95247F0970
IE11-Windows6.1-KB4014661-X86.msu	9E0FF2BD7DDAC6F159C84B44DA900B34DA4ECAE4	B7D0B0FA489BCD7A89EC9B21D716DEC6FA0B87195CA0E952AEF408F1A946AD3F
IE9-Windows6.0-KB4014661-x86.msu	41C4885409C1E7712495CDA5067389E9D58BE7E7	9D8378320F4845A3624EA5FF80552D957814FD73C6BA873D19F9DE9D771ADA89
IE9-Windows6.0-KB4014661-x64.msu	B0FD6AAF25578AC22E771E9420FB691845CC3C90	C797EE7131CFF6DF9DC4FE398CBF184B62B26438E67088545190B4C11169E5FC
IE8-WindowsXP-KB4014661-x86-Embedded-ENU.exe	BC0A25518470DE85BE68D547A1DF190E923524A1	2D6D850BBD837B9E4D0362D59380D733277714F80B94252895AE9538227E63D5