Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB4089082
HistoryMar 10, 2018 - 12:00 a.m.

Description of the security update for the Microsoft Video Control elevation of privilege vulnerability in WES09 and POSReady 2009: March 13, 2018

2018-03-1000:00:00
Microsoft
support.microsoft.com
11

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.1%

JSON

Description of the security update for the Microsoft Video Control elevation of privilege vulnerability in WES09 and POSReady 2009: March 13, 2018

Summary

An elevation of privilege vulnerability exists in Windows when the Microsoft Video Control mishandles objects in memory. An attacker who successfully exploits this vulnerability could run arbitrary code in system mode. The attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

To learn more about the vulnerability, go to CVE-2018-0881.

More Information

Important If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Windows Update: FAQ.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

Deployment information

For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:
Security update deployment information: March 13, 2018

More Information

How to obtain help and support for this security update

Help for installing updates: Windows Update: FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

File Information

File hash information

File name SHA1 hash SHA256 hash
WindowsXP-KB4089082-x86-Embedded-ENU.exe 56A4C587452F40F8E91F3192168F4CF1193E801C 2F512776AA74B331BFE2C2B70975754A70FC4F251BB746A18CECF3814D33CC61
Windows XP file information

For all supported x86-based versions

File name File version File size Date Time Platform
Msvidctl.dll 6.5.2600.7431 1,427,968 13-Feb-2018 17:00 x86
Updspapi.dll 6.3.13.0 382,840 16-May-2014 03:08 x86

Related

nvd 1
symantec 1
mscve 1
cvelist 1
cve 1
prion 1
mskb 11
kaspersky 2
nessus 8
openvas 6
talosblog 1
trendmicroblog 1
nvd
nvd
CVE-2018-0881
2018-03-14 17:29:01
symantec
symantec
Microsoft Windows Video Control CVE-2018-0881 Local Privilege Escalation Vulnerability
2018-03-13 00:00:00
mscve
mscve
Microsoft Video Control Elevation of Privilege Vulnerability
2018-03-13 07:00:00
cvelist
cvelist
CVE-2018-0881
2018-03-14 00:00:00
cve
cve
CVE-2018-0881
2018-03-14 17:29:01
prion
prion
Privilege escalation
2018-03-14 17:29:00
mskb
mskb
March 13, 2018—KB4088879 (Security-only update)
2018-03-13 07:00:00
March 13, 2018—KB4088880 (Security-only update)
2018-03-13 07:00:00
March 13, 2018—KB4088878 (Security-only update)
2018-03-13 07:00:00
kaspersky
kaspersky
KLA11778 Multiple vulnerabilities in Microsoft Products (ESU)
2018-03-13 00:00:00
KLA11207 Multiple vulnerabilities in Microsoft Windows
2018-03-13 00:00:00
nessus
nessus
KB4088879: Windows 8.1 and Windows Server 2012 R2 March 2018 Security Update (Meltdown)(Spectre)
2018-03-13 00:00:00
KB4088880: Windows Server 2012 March 2018 Security Update (Meltdown)(Spectre)
2018-03-13 00:00:00
KB4088878: Windows 7 and Windows Server 2008 R2 March 2018 Security Update (Meltdown)(Spectre)
2018-03-13 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4088875)
2018-03-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4088876)
2018-03-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4088786)
2018-03-14 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - March 2018
2018-03-13 14:38:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of March 12, 2018
2018-03-16 15:14:43

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.1%

JSON
Related for KB4089082
nvd1symantec1mscve1cvelist1cve1prion1mskb11kaspersky2nessus8openvas6talosblog1trendmicroblog1