Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB4048970
HistoryNov 14, 2017 - 8:00 a.m.

Description of the security update for vulnerabilities in Windows Server 2008: November 14, 2017

2017-11-1408:00:00
Microsoft
support.microsoft.com
33

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.6 Medium

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

79.7%

JSON

Description of the security update for vulnerabilities in Windows Server 2008: November 14, 2017

Summary

To learn more about the vulnerabilities, go to the Security Update Guide.

More Information

Important

  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Windows Update: FAQ.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

Deployment information

For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:
Security update deployment information: November 14, 2017

More Information

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time together with your current daylight-saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

Windows Server 2008 file information

**Note:**The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.

How to obtain help and support for this security update

Help for installing updates: Windows Update: FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

File Information

File hash information

File name SHA1 hash SHA256 hash
Windows6.0-KB4048970-x64.msu 82C74E9775B56E45B985E2C89D54BDF840B0C85E D1600EF31CBE0288FDCB0A21DF5573CAA6257B3A87A9AC60E369790D229E0182
Windows6.0-KB4048970-x86.msu 7FB3E5EC8BBB554E58CBAE1FCAE3528D9B70B867 2A79C6489877A83738A63510562E1F3138C2685A0C6C32E7A5B66790941889E9
Windows6.0-KB4048970-ia64.msu DEDCC16E4FC0926453EEE8D3A6B3974D22CFDE03 C6B61E3521A2E0634543DB3051C6AD5C83721ACD4AD7BFB64AF89DD7E2AD9BA0

For all supported x64-based versions

File name File version File size Date Time Platform
Win32k.sys 6.0.6002.24215 2,809,856 15-Oct-2017 14:43 x64

For all supported x86-based versions

File name File version File size Date Time Platform
Win32k.sys 6.0.6002.24215 2,082,816 15-Oct-2017 14:35 x86

For all supported ia64-based versions

File name File version File size Date Time Platform
Win32k.sys 6.0.6002.24215 6,700,544 15-Oct-2017 14:36 IA-64

Related

openvas 8
cve 6
prion 6
nessus 9
mskb 11
kaspersky 2
symantec 5
mscve 5
zdi 2
checkpoint_advisories 1
thn 2
trendmicroblog 1
talosblog 1
qualysblog 1
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4048970)
2017-11-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4048957)
2017-11-15 00:00:00
Microsoft Windows Server 2012 Multiple Vulnerabilities (KB4048959)
2017-11-15 00:00:00
cve
cve
CVE-2017-11842
2017-11-15 03:29:00
CVE-2017-11849
2017-11-15 03:29:00
CVE-2017-11851
2017-11-15 03:29:00
prion
prion
Information disclosure
2017-11-15 03:29:00
Information disclosure
2017-11-15 03:29:00
Information disclosure
2017-11-15 03:29:00
nessus
nessus
Windows 2008 November 2017 Multiple Security Updates
2017-11-14 00:00:00
Windows 7 and Windows Server 2008 R2 November 2017 Security Updates
2017-11-14 00:00:00
Windows Server 2012 November 2017 Security Updates
2017-11-14 00:00:00
mskb
mskb
November 14, 2017—KB4048960 (Security-only update)
2017-11-14 08:00:00
November 14, 2017—KB4048961 (Security-only update)
2017-11-14 08:00:00
November 14, 2017—KB4048962 (Security-only update)
2017-11-14 08:00:00
kaspersky
kaspersky
KLA11136 Multiple vulnerabilities in Microsoft Windows
2017-11-14 00:00:00
KLA11855 Multiple vulnerabilities in Microsoft Products (ESU)
2017-11-14 00:00:00
symantec
symantec
Microsoft Windows GDI Component CVE-2017-11852 Local Information Disclosure Vulnerability
2017-11-14 00:00:00
Microsoft Windows Kernel CVE-2017-11853 Local Information Disclosure Vulnerability
2017-11-14 00:00:00
Microsoft Windows Kernel CVE-2017-11851 Local Information Disclosure Vulnerability
2017-11-14 00:00:00
mscve
mscve
Windows GDI Information Disclosure Vulnerability
2017-11-14 08:00:00
Windows Kernel Information Disclosure Vulnerability
2017-11-14 08:00:00
Windows Kernel Elevation of Privilege Vulnerability
2017-11-14 08:00:00
zdi
zdi
Microsoft Windows EngLockSurface Time-Of-Check Time-Of-Use Race Condition Information Disclosure Vulnerability
2017-11-20 00:00:00
Microsoft Windows win32k Menu Use-After-Free Privilege Escalation Vulnerability
2017-11-20 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Kernel Elevation of Privilege (CVE-2017-11847)
2017-11-14 00:00:00
thn
thn
17-Year-Old MS Office Flaw Lets Hackers Install Malware Without User Interaction
2017-11-14 23:06:00
Patch Tuesday: Microsoft Releases Update to Fix 53 Vulnerabilities
2017-11-14 20:46:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of November 13, 2017
2017-11-17 16:46:19
talosblog
talosblog
Microsoft Patch Tuesday - November 2017
2017-11-14 11:54:00
qualysblog
qualysblog
November Patch Tuesday: 53 Vulnerabilities and a Massive Adobe Update
2017-11-14 19:37:26

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.6 Medium

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

79.7%

JSON
Related for KB4048970
openvas8cve6prion6nessus9mskb11kaspersky2symantec5mscve5zdi2checkpoint_advisories1thn2trendmicroblog1talosblog1qualysblog1