Lucene search

MicrosoftKB4018196

HistoryMay 09, 2017 - 7:00 a.m.

Security update for the Windows DNS Server Denial of Service Vulnerability in Microsoft Windows Server 2008: May 9, 2017

2017-05-0907:00:00

Microsoft

support.microsoft.com

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

41.4%

JSON

Security update for the Windows DNS Server Denial of Service Vulnerability in Microsoft Windows Server 2008: May 9, 2017

Summary

A denial of service vulnerability exists in Windows DNS Server if the server is configured to answer version queries. An attacker who successfully exploits this vulnerability could cause the DNS Server service to become unresponsive.
To learn more about the vulnerability, go to the Security Update Guide.

More Information

Important

If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Get security updates automatically.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

Deployment information

For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:
Security update deployment information: May 9, 2017

More Information

How to obtain help and support for this security update

Help for installing updates: Windows Update FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

File Information

File hash information

File name	SHA1 hash	SHA256 hash
Windows6.0-KB4018196-x64.msu	9DE300553C1CD0DF9A0E3349DF3F1674D795E4FB	95371DB51917AB23C180F37D82299845DF4754CFDF41A0F0FFD89B1E88A50069
Windows6.0-KB4018196-x86.msu	6A937C9FA6CF63298282E7CC29BC8EB1EA226616	3501B601B7FAA785844DD996CC5B4E6A2D10E5793F1AFAF01DA122189E297AEA

File information
The English (United States) version of this software update installs files that have the attributes that are listed in the following tables.

Windows Server 2008 file information

**Note:**The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.

For all supported x64-based versions

File name	File version	File size	Date	Time	Platform
Cache.dns	Not applicable	3,179	03-Sep-2008	18:33	Not applicable
Dns.exe	6.0.6002.19765	640,000	07-Apr-2017	14:53	x64
Dnsserver.events.xml	Not applicable	609	03-Sep-2008	18:33	Not applicable
Cache.dns	Not applicable	3,179	07-Mar-2016	23:34	Not applicable
Dns.exe	6.0.6002.24089	640,512	07-Apr-2017	14:53	x64
Dnsserver.events.xml	Not applicable	609	07-Mar-2016	23:34	Not applicable

For all supported x86-based versions

File name	File version	File size	Date	Time	Platform
Cache.dns	Not applicable	3,179	16-Apr-2008	00:31	Not applicable
Dns.exe	6.0.6002.19765	510,976	07-Apr-2017	14:27	x86
Dnsserver.events.xml	Not applicable	609	16-Apr-2008	00:31	Not applicable
Cache.dns	Not applicable	3,179	07-Mar-2016	23:35	Not applicable
Dns.exe	6.0.6002.24089	511,488	07-Apr-2017	14:30	x86
Dnsserver.events.xml	Not applicable	609	07-Mar-2016	23:35	Not applicable