9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.943 High
EPSS
Percentile
99.2%
This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:
Windows Update Client ImprovementMicrosoft will release an update directly to the Windows Update Client to improve Windows Update reliability. It will only be offered to devices that have not installed the most recent updates and are not currently managed (e.g., domain joined).
Symptom | Workaround |
---|---|
After installing this update, downloading updates using express installation files may fail. | This issue is resolved in KB4041688.**Note:**KB4041691 is not available with express installation files for Windows Server 2016. |
After installing KB4041691, package users may see an error dialog that indicates that an application exception has occurred when closing some applications. This can affect applications that use mshtml.dll to load web content. The failure only occurs when a process is already shutting down and will not impact application functionality. | Microsoft is working on a resolution and will provide an update in an upcoming release. |
Microsoft is aware of a publishing issue with the October 10th, 2017 monthly security update for Windows 10 version 1607 (KB4041691) for WSUS\SCCM managed devices where Windows devices may fail to boot after installing this update. | Customers that download updates directly from Windows Update (Home and consumer devices) or Windows Update for Business are not impacted.We have corrected this publishing issue. For users who encountered issues please refer to the following article: Windows devices may fail to boot after installing October 10 version of KB 4041676 or 4041691 that contained a publishing issueThe cumulative security updates have been validated. We recommend all customers take these cumulative security updates. |
Installing this update may cause applications based on the Microsoft JET Database Engine (Microsoft Access 2007 and older or non-Microsoft applications) to fail when creating or opening Microsoft Excel .xls files. The error message is, “Unexpected error from external database driver (1). (Microsoft JET Database Engine)". | Download and install the Microsoft Access Database Engine 2010 Redistributable, and then modify the DB connection strings in Microsoft Excel to use ACE as a provider. Example: Change Provider=Microsoft.Jet.OLEDB.4.0 to Provider=Microsoft.ACE.OLEDB.12.0.Microsoft is working on a resolution and will provide an update in an upcoming release. |
Universal Windows Platform (UWP) applications that use JavaScript and asm.js may stop working after installing KB4041691. | Uninstall the application. Once this is complete, reinstall it.Microsoft is working on a resolution and will provide an update in an upcoming release. |
Some users who have the text size for icons set to a larger size (using Display Settings in Control Panel) may have issues launching Internet Explorer. | Reducing the text size for icons to a smaller value or using theChange the size of all items setting should alleviate this issue.Microsoft is working on a resolution and will provide an update in an upcoming release. |
After installing this KB, Internet Explorer 11 users who use SQL Server Reporting Services (SSRS) may not be able to scroll through a drop-down menu using the scroll bar. | This issue is resolved in KB4053579. |
This update will be downloaded and installed automatically from Windows Update. To get the standalone package for this update, go to the Microsoft Update Catalog website.File informationFor a list of the files that are provided in this update, download the file information for cumulative update 4041691.
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.943 High
EPSS
Percentile
99.2%