Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB4021558
HistoryJun 13, 2017 - 7:00 a.m.

Cumulative security update for Internet Explorer: June 13, 2017

2017-06-1307:00:00
Microsoft
support.microsoft.com
805

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

7.1 High

AI Score

Confidence

High

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.501 Medium

EPSS

Percentile

97.5%

JSON

Cumulative security update for Internet Explorer: June 13, 2017

Summary

This security update resolves several reported vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage in Internet Explorer. To learn more about these vulnerabilities, see The Security Update Guide. Additionally, see the following articles for more information about this cumulative update:

  • Windows 7 SP1 and Windows Server 2008 R2 SP1 update history

  • Windows Server 2012 update history

  • Windows 8.1 and Windows Server 2012 R2 update history

  • Windows 10 and Windows Server 2016 update history
    Important

  • The fixes included in this Security Update for Internet Explorer 4021558 are also included in the June 2017 Security Monthly Quality Rollup. Installing either the Security Update for Internet Explorer or the Security Monthly Quality Rollup installs the fixes that are resolved in this update.

  • If you use update management processes other than Windows Update and you automatically approve all security updates classifications for deployment, this Security Update for Internet Explorer 4021558, the June 2017 Security Only Quality Update, and the June 2017 Security Monthly Quality Rollup are deployed. We recommend that you review your update deployment rules to make sure the desired updates are deployed.

  • This Security Update for Internet Explorer is not applicable for installation on a computer where the Security Monthly Quality Rollup or the Preview of Monthly Quality Rollup from June 2017 (or a later month) is already installed. This is because those updates contain all fixes in this Security Update for Internet Explorer.
    If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Deployment information

For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:Security update deployment information

How to get and install the update

Method 1: Microsoft Update

This update is available through Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically.For more information about how to get security updates automatically, see Windows Update: FAQ.

Note For Windows RT and Windows RT 8.1, this update is available through Microsoft Update only.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

More Information

__

How to get help and support for this security update

Help for installing updates: Windows Update: FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

Known issues in this security update
When you print a specific iframe or frame in a web page, the print output may be blank, or text is printed that resembles the following:

404 – Not Found

(A frame is a part of a web page or browser window that displays content independent of its container. A frame can load content independently.)This problem has also been observed in Internet Explorer versions 9 through 11, and in applications that host the IE Web Browser Control.For more information about this issue, go to the following article in the Microsoft Knowledge Base:4032782 A blank page or “404” error prints when you try to print a frame in Internet Explorer versions 9 through 11

This issue is resolved in Cumulative security update for Internet Explorer: July 11, 2017 (KB4025252).File informationFor a list of the files that are provided in this cumulative update, download the file information for cumulative update 4021558.

File hash information

File name SHA1 hash SHA256 hash
Windows8.1-KB4021558-x86.msu 093B634F0C18E6B293FD58A3FCC6BC8AB627E48A DE35D2D269572BA9D4CC844AF8F5ED8355AB6A133D5F8EB6D18BFF36B0C7574D
Windows8.1-KB4021558-x64.msu 35C1662C5CC78EC1E6A05B7B3FFEB2D78B94E8CD 1A5EA7B6CA35A175F36B03723D52DE76B11CAD760B24CE851520667700758BF1
IE11-Windows6.1-KB4021558-X86.msu 8D07A642E0F193FBD2E40EBE95FF3F3467C21C14 F0CABC6FC9A8AC6C45FDB3B2657FAAC010A591D8D13721D587DEC7AB722BEF89
IE11-Windows6.1-KB4021558-X64.msu AC613BB21B5BA702D60367B5DB8C35ADA8E65C50 F63C3C78A26890FB0B4E24BBDC419BB5E32D706B46F0E9BABA333E788D04D343
IE9-Windows6.0-KB4021558-X86.msu 1C15EC88A80E66E717C652DFAC0A75FC275E5D8B ACF8974EA88F2DC10024BA7F58E2B16A1E633FE7C79D5C16445E6AD0C41BC4F4
IE9-Windows6.0-KB4021558-X64.msu 12FDB2787C8D8407FDCB3EFC3B56A0D1ADAB1B80 5E4C0CC0EAFBFB380CA9799CF67420ABD62D23096FFF66EDEAD7EDA0B5D20512

Related

nessus 10
openvas 10
cve 7
prion 7
veracode 2
symantec 6
zdi 2
kaspersky 4
checkpoint_advisories 3
mscve 6
mskb 10
talosblog 1
trendmicroblog 1
nessus
nessus
Security Updates for Internet Explorer (June 2017)
2017-11-30 00:00:00
MS16-096: Cumulative Security Update for Microsoft Edge (3177358)
2016-08-09 00:00:00
MS16-095: Cumulative Security Update for Internet Explorer (3177356)
2016-08-09 00:00:00
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (KB4021558)
2017-06-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4022726)
2017-06-14 00:00:00
Microsoft Edge Multiple Vulnerabilities (3177358)
2016-08-10 00:00:00
cve
cve
CVE-2017-8517
2017-06-15 01:29:00
CVE-2017-8522
2017-06-15 01:29:00
CVE-2017-8524
2017-06-15 01:29:00
prion
prion
Memory corruption
2017-06-15 01:29:00
Memory corruption
2017-06-15 01:29:00
Memory corruption
2017-06-15 01:29:00
veracode
veracode
Remote Code Execution (RCE)
2018-12-11 05:07:45
Remote Code Execution (RCE)
2018-12-11 05:13:17
symantec
symantec
Microsoft Internet Explorer CVE-2017-8519 Remote Memory Corruption Vulnerability
2017-06-13 00:00:00
Microsoft Internet Explorer and Microsoft Edge CVE-2017-8522 Remote Memory Corruption Vulnerability
2017-06-13 00:00:00
Microsoft Internet Explorer CVE-2017-8547 Remote Memory Corruption Vulnerability
2017-06-13 00:00:00
zdi
zdi
Microsoft Internet Explorer InsertRow Out-Of-Bounds Read Remote Code Execution Vulnerability
2017-06-13 00:00:00
Microsoft Edge GetRefererUrl Use-After-Free Information Disclosure Vulnerability
2016-08-09 00:00:00
kaspersky
kaspersky
KLA11045 Multiple vulnerabilities in Microsoft Edge and Microsoft Internet Explorer
2017-06-13 00:00:00
KLA10858 Multiple vulnerabilities in Microsoft Edge and Internet Explorer
2016-08-09 00:00:00
KLA11908 Multiple vulnerabilities in Microsoft Products (ESU)
2016-08-09 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Memory Corruption (CVE-2017-8547)
2017-06-13 00:00:00
Microsoft Browser Scripting Engine Memory Corruption (CVE-2017-8524)
2017-06-13 00:00:00
Microsoft Edge Use After Free (MS16-095: CVE-2016-3326)
2016-08-09 00:00:00
mscve
mscve
Microsoft Browser Information Disclosure Vulnerability
2016-08-09 07:00:00
Internet Explorer Memory Corruption Vulnerability
2017-06-13 07:00:00
Scripting Engine Memory Corruption Vulnerability
2017-06-13 07:00:00
mskb
mskb
June 13, 2017—KB4022726 (Monthly Rollup)
2017-06-28 07:00:00
June 13, 2017—KB4022724 (Monthly Rollup)
2017-06-28 07:00:00
MS16-096: Cumulative security update for Microsoft Edge: August 9, 2016
2016-08-09 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - June 2017
2017-06-13 13:48:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of June 12, 2017
2017-06-16 12:00:40

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

7.1 High

AI Score

Confidence

High

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.501 Medium

EPSS

Percentile

97.5%

JSON
Related for KB4021558
nessus10openvas10cve7prion7veracode2symantec6zdi2kaspersky4checkpoint_advisories3mscve6mskb10talosblog1trendmicroblog1