Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB4089187
HistoryApr 06, 2018 - 7:00 a.m.

Cumulative security update for Internet Explorer: March 13, 2018

2018-04-0607:00:00
Microsoft
support.microsoft.com
30

6.7 Medium

AI Score

Confidence

Low

0.95 High

EPSS

Percentile

99.3%

JSON

Cumulative security update for Internet Explorer: March 13, 2018

Summary

This security update resolves several reported vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage in Internet Explorer. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures. Additionally, see the following articles for more information about this cumulative update:

  • Windows 7 SP1 and Windows Server 2008 R2 SP1 update history

  • Windows Server 2012 update history

  • Windows 8.1 and Windows Server 2012 R2 update history

  • Windows 10 and Windows Server 2016 update history
    Important

  • The fixes that are included in this Security Update for Internet Explorer 4089187 are also included in the March 2018 Security Monthly Quality Rollup. Installing either the Security Update for Internet Explorer or the Security Monthly Quality Rollup installs the fixes that are in this update.

  • If you use update management processes other than Windows Update and you automatically approve all security updates classifications for deployment, this Security Update for Internet Explorer, 4089187, the March 2018 Security Only Quality Update, and the March 2018 Security Monthly Quality Rollup are deployed. We recommend that you review your update deployment rules to make sure that the desired updates are deployed.

  • This Security Update for Internet Explorer is not applicable for installation on a computer where the Security Monthly Quality Rollup or the Preview of Monthly Quality Rollup from March 2018 (or a later month) is already installed. This is because those updates contain all the fixes that are in this Security Update for Internet Explorer.

  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Known issues in this security update

  • After you install this update, security settings in some organizations that are running Windows 7 SP1 or Windows Server 2008 R2 may prevent Internet Explorer 11 from starting because of an invalid SHA1 certificate.

To resolve this issue, use one of the following methods:

* Whitelist the SHA1 certificate to allow Internet Explorer 11 to start.
* Install [Cumulative update for Internet Explorer: March 23, 2018](<https://support.microsoft.com/en-us/help/4096040>).

Deployment information

For deployment details for this security update, see the following article in the Microsoft Knowledge Base:Security update deployment information: March 13, 2018

How to get and install the update

Method 1: Microsoft Update

This update is available through Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically.For more information about how to get security updates automatically, see Windows Update: FAQ.Note For Windows RT and Windows RT 8.1, this update is available through Microsoft Update only.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

More Information

__

How to get help and support for this security update

Help for installing updates: Windows Update: FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

File informationFor a list of the files that are provided in this cumulative update, download the file information for cumulative update KB 4089187.

File hash information

File name SHA1 hash SHA256 hash
Windows8.1-KB4089187-x86.msu C37277F8CD4201DC32F74301C4783E71962CB572 78BE9C41DC5DE03ACC5A6B1DFFD8F4412AE693F336E3AB779B77707FCAC37493
Windows8.1-KB4089187-x64.msu 0F2F7386EA9B0B871D9C3836FCC8787D0867CB6E 3E6F1B9989A2F5DE1CD5C03BABDDE4A1A94F4DB280BA2778024A7817DD45557F
Windows8-RT-KB4089187-x64.msu 094CB3B755493508A511407C6B1CC1C3183BFEB3 BFFC23E6F35D716A54DCEC9FC9857C1BEA242D4F2ECF71F862E580255A68E3E9
IE11-Windows6.1-KB4089187-X86.msu 8E90ACCD79A9F52870667271C5C8F60A16629A25 475118DADB6F6B2E64BB347C6100B2D689F15321D1695F53B7EC678A88BCDC5C
IE11-Windows6.1-KB4089187-X64.msu 279338F11653DE18C84E494F43D2D719E97E8842 18EA9CB47D4E696BE194B602F6CD741A21DF35CD8AC4644599550F0366A672F0
IE9-Windows6.0-KB4089187-X64.msu 7A7CEBB019D3819B05AE5D4EF15847D342830556 03916ECF65CECDBAF31CC12E5870CCCAA5B5042589F4523C7D05243796F09FFF
IE9-Windows6.0-KB4089187-X86.msu 79FCF72BE2B42C7FF9B9A8121C49C0C8CA7394B2 635EB90200469B83733A9775AC0918095DCCAC24E9B4101CDC777DBCC88BC4D4

Related

mskb 9
nessus 10
openvas 7
kaspersky 3
cve 12
mscve 8
cvelist 12
prion 12
nvd 12
zdt 2
osv 2
symantec 7
github 2
zdi 2
checkpoint_advisories 3
packetstorm 1
talosblog 1
trendmicroblog 1
mskb
mskb
Cumulative security update for Internet Explorer: March 23, 2018
2018-04-06 07:00:00
March 13, 2018—KB4088876 (Monthly Rollup)
2018-04-06 07:00:00
March 13, 2018—KB4088875 (Monthly Rollup)
2018-04-06 07:00:00
nessus
nessus
Security Updates for Internet Explorer (March 2018)
2018-03-13 00:00:00
KB4088879: Windows 8.1 and Windows Server 2012 R2 March 2018 Security Update (Meltdown)(Spectre)
2018-03-13 00:00:00
KB4088878: Windows 7 and Windows Server 2008 R2 March 2018 Security Update (Meltdown)(Spectre)
2018-03-13 00:00:00
openvas
openvas
Microsoft Internet Explorer Memory Corruption And Information Disclosure Vulnerabilities (KB4089187)
2018-03-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4088875)
2018-03-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4088876)
2018-03-14 00:00:00
kaspersky
kaspersky
KLA11209 Multiple vulnerabilities in Microsoft Internet Explorer and Edge
2018-03-13 00:00:00
KLA11224 ACE vulnerability in Microsoft Internet Explorer
2018-04-06 00:00:00
KLA11778 Multiple vulnerabilities in Microsoft Products (ESU)
2018-03-13 00:00:00
cve
cve
CVE-2018-8118
2018-04-19 16:29:00
CVE-2018-0942
2018-03-14 17:29:03
CVE-2018-0929
2018-03-14 17:29:03
mscve
mscve
Internet Explorer Memory Corruption Vulnerability
2018-04-06 07:00:00
Scripting Engine Memory Corruption Vulnerability
2018-03-13 07:00:00
Internet Explorer Elevation of Privilege Vulnerability
2018-03-13 07:00:00
cvelist
cvelist
CVE-2018-8118
2018-04-19 16:00:00
CVE-2018-0889
2018-03-14 00:00:00
CVE-2018-0942
2018-03-14 00:00:00
prion
prion
Remote code execution
2018-04-19 16:29:00
Memory corruption
2018-03-14 17:29:00
Memory corruption
2018-03-14 17:29:00
nvd
nvd
CVE-2018-8118
2018-04-19 16:29:00
CVE-2018-0942
2018-03-14 17:29:03
CVE-2018-0876
2018-03-14 17:29:01
zdt
zdt
Microsoft Windows - Multiple Use-After-Free Issues in jscript Array Methods Exploit
2018-04-05 00:00:00
Internet Explorer - RegExp.lastMatch Memory Disclosure Exploit
2018-03-20 00:00:00
osv
osv
ChakraCore RCE Vulnerability
2022-05-13 01:18:37
ChakraCore information disclosure vulnerability
2022-05-13 01:18:38
symantec
symantec
Microsoft Internet Explorer CVE-2018-0929 Information Disclosure Vulnerability
2018-03-13 00:00:00
Microsoft Internet Explorer CVE-2018-0942 Remote Privilege Escalation Vulnerability
2018-03-13 00:00:00
Microsoft Internet Explorer Scripting Engine CVE-2018-0889 Remote Memory Corruption Vulnerability
2018-03-13 00:00:00
github
github
ChakraCore RCE Vulnerability
2022-05-13 01:18:37
ChakraCore information disclosure vulnerability
2022-05-13 01:18:38
zdi
zdi
Microsoft Internet Explorer VML textpath Out-Of-Bounds Read Information Disclosure Vulnerability
2018-03-19 00:00:00
Microsoft Windows VBScript Join Function Integer Overflow Remote Code Execution Vulnerability
2018-03-19 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2018-0935)
2018-03-13 00:00:00
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2018-0889)
2018-03-13 00:00:00
Microsoft Internet Explorer Information Disclosure (CVE-2018-0891)
2018-03-21 00:00:00
packetstorm
packetstorm
Microsoft Windows jscript Use-After-Free
2018-04-05 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - March 2018
2018-03-13 14:38:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of March 12, 2018
2018-03-16 15:14:43

6.7 Medium

AI Score

Confidence

Low

0.95 High

EPSS

Percentile

99.3%

JSON
Related for KB4089187
mskb9nessus10openvas7kaspersky3cve12mscve8cvelist12prion12nvd12zdt2osv2symantec7github2zdi2checkpoint_advisories3packetstorm1talosblog1trendmicroblog1