Lucene search
MicrosoftKB4089229HistoryMar 13, 2018 - 7:00 a.m.
Description of the security update for the Windows Kernel vulnerabilities in Windows Server 2008: March 13, 2018
2018-03-1307:00:00
Microsoft
support.microsoft.com
39
Description of the security update for the Windows Kernel vulnerabilities in Windows Server 2008: March 13, 2018
Summary
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass.
To learn more about the vulnerabilities, go to the Security Update Guide.
More Information
Important If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.
Known issues in this security update
| Symptom | Workaround |
|---|---|
| Because of an issue that affects some versions of antivirus software, this fix applies only to computers on which the antivirus ISV has updated the ALLOW registry entry. | Contact your antivirus manufacturer to verify that their software is compatible and that they have set the following registry entry configured on the computer:Key="HKEY_LOCAL_MACHINE"Subkey="SOFTWARE\Microsoft\Windows\CurrentVersion\QualityCompat"Value Name="cadca5fe-87d3-4b96-b7fb-a231484277cc"Type="REG_DWORD”Data="0x00000000” |
| A Stop error occurs if this update is applied to a 32-Bit (x86) machine with the Physical Address Extension (PAE) mode disabled. | Microsoft is working on a resolution for this issue. Because of this issue, this update is currently available only to computers that have Physical Address Extension (PAE) mode enabled. |
| A Stop error occurs on machines that don’t support Streaming Single Instructions Multiple Data (SIMD) Extensions 2 (SSE2). | Microsoft is working on a resolution and will provide an update in an upcoming release. |
| After you apply this update, the following symptoms may occur: |
- A new Ethernet Network Interface Card (NIC) that has default settings may replace the previous NIC and cause network issues. Any custom settings on the previous NIC persist in the registry but aren’t used.
- IP address settings are lost.
| Important
Follow the steps in this section carefully. Serious problems might occur if you modify the registry incorrectly. Before you modify it, back up the registry for restoration in case problems occur.Before you install security update 4089229, run the following VBS script. Copy and paste this script into Notepad, and then save the file with a .vbs extension. Instructions
Before you run the script, make sure that you back up the following registry key and subkeys:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\PnP\Pci\HackFlagsNote The script includes binary version checks around PCI.SYS file and sets the HackFlags registry key. For more information about this issue and the HackFlags registry key, see KB 2710558. Set WshShell = WScript.CreateObject(“WScript.Shell”)
Set fs = CreateObject(“Scripting.FileSystemObject”)Dim WindirFilePath,strPciFileVersion,strAryFileVersion1
WindirFilePath = WshShell.ExpandEnvironmentStrings(“%WinDir%”)
strPciFileVersion = fs.getfileversion(WindirFilePath & “\\system32\\drivers\\pci.sys”)
strAryFileVersion1 = Split(strPciFileVersion, “.”)'pci.sys version check
If (strAryFileVersion1(0) = 6 And strAryFileVersion1(1) = 0 And strAryFileVersion1(2) = 6002 And strAryFileVersion1(3) < 22567) Then Dim curFlag,hackFlag,path
curFlag = 0
path=“HKLM\System\CurrentControlSet\Control\PnP\Pci\HackFlags”
'Get current HackFlags
On Error Resume next
curFlag = WshShell.RegRead(path)
On Error Goto 0 'Set new HackFlags
hackFlag = curFlag or 262144
WshShell.RegWrite path,hackFlag,“REG_DWORD” Wscript.echo “HackFlags set”
Else
Wscript.echo “pci.sys is already updated. No need to set HackFlags”
End If
**Note:**If the IP address settings are lost after installing security update 4089229, you can manually adjust the HackFlags registry key.
Location: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\PnP\Pci
Key: HackFlags
Type: REG_DWORD
Set the following registry value and then restart the computer:
- If HackFlags doesn’t exist:
Value: 0x00040000 - If HackFlags does exist:
New Value: (<Existing Flags> | 0x00040000)If the registry key already exists, combine the existing value with the “0x00040000” bitmask to change the existing Flags value to: <Existing Flags value> (bitwise OR) 0x00040000. This method respects both the previous and new values.**Examples:**Existing value:0x0000001
New value: 0x00040001Existing value:0x0000020
New value: 0x00040020Existing value:0x0800001
New value: 0x08040001
How to obtain and install the update
Method 1: Windows Update
This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Windows Update: FAQ.
Method 2: Microsoft Update Catalog
To get the stand-alone package for this update, go to the Microsoft Update Catalog website.
Deployment information
For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:
Security update deployment information: March 13, 2018
More Information
File information
The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time together with your current daylight-saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.
**Note:**The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
How to obtain help and support for this security update
Help for installing updates: Windows Update: FAQ
Security solutions for IT professionals: TechNet Security Support and Troubleshooting
Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure
Local support according to your country: International Support
Windows Server 2008 file information
File hash information
| File name | SHA1 hash | SHA256 hash |
|---|---|---|
| Windows6.0-KB4089229-x64.msu | 36AF3DC575EF1DBBB5E529DB15ACB7AEBC9717CD | 6341301DD640FBE3FD304EBFD8960A1BE8A3586F0B000C31783D0E8748E3EC4B |
| Windows6.0-KB4089229-x86.msu | 56F4EA765D3A1E09BE5F9CE15A70B35001043ACD | 7E1782F1B2A66A8AFE90B3B18B5C051A7D2E9ED5E6555861A637BB7D59B89607 |
| Windows6.0-KB4089229-ia64.msu | 958D44009A558FC87C22416C259295481EB39BB2 | 5EEA178F00E2F1A0E164693434AF2453AE626DCD78DC0A882C5506E151CEA1A6 |
For all supported x64-based versions
| File name | File version | File size | Date | Time | Platform | Service branch |
|---|---|---|---|---|---|---|
| Acpi.sys | 6.0.6002.24311 | 323,776 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Battc.sys | 6.0.6002.24311 | 27,328 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Compbatt.sys | 6.0.6002.24311 | 20,160 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Errdev.sys | 6.0.6002.24311 | 9,728 | 01-Mar-2018 | 20:18 | x64 | Not applicable |
| Wmiacpi.sys | 6.0.6002.24311 | 14,336 | 01-Mar-2018 | 20:18 | x64 | Not applicable |
| Hal.dll | 6.0.6002.24311 | 230,592 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Agp440.sys | 6.0.6002.24311 | 61,120 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Isapnp.sys | 6.0.6002.24311 | 20,672 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Msisadrv.sys | 6.0.6002.24311 | 14,528 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Mssmbios.sys | 6.0.6002.24311 | 31,424 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Nv_agp.sys | 6.0.6002.24311 | 123,072 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Pci.sys | 6.0.6002.24311 | 178,368 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Rdpdr.sys | 6.0.6002.24311 | 316,416 | 01-Mar-2018 | 20:25 | x64 | Not applicable |
| Streamci.dll | 6.0.6002.24311 | 23,232 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Swenum.sys | 6.0.6002.24311 | 12,096 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Termdd.sys | 6.0.6002.24311 | 61,120 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Uliagpkx.sys | 6.0.6002.24311 | 64,704 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Volmgr.sys | 6.0.6002.24311 | 63,168 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Advapi32.dll.mui | 6.0.6002.24311 | 255,488 | 01-Mar-2018 | 20:54 | Not applicable | Not applicable |
| Advapi32.dll | 6.0.6002.24311 | 1,079,808 | 01-Mar-2018 | 20:49 | x64 | Not applicable |
| Setbcdlocale.dll | 6.0.6002.24311 | 58,368 | 01-Mar-2018 | 20:49 | x64 | Not applicable |
| Winload.efi | 6.0.6002.24311 | 1,102,528 | 01-Mar-2018 | 21:10 | Not applicable | Not applicable |
| Winload.exe | 6.0.6002.24311 | 1,089,216 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Winresume.efi | 6.0.6002.24311 | 998,080 | 01-Mar-2018 | 21:10 | Not applicable | Not applicable |
| Winresume.exe | 6.0.6002.24311 | 987,328 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Winload.efi.mui | 6.0.6002.24311 | 26,112 | 01-Mar-2018 | 20:50 | Not applicable | Not applicable |
| Winload.exe.mui | 6.0.6002.24311 | 26,112 | 01-Mar-2018 | 20:51 | Not applicable | Not applicable |
| Winresume.efi.mui | 6.0.6002.24311 | 19,456 | 01-Mar-2018 | 20:52 | Not applicable | Not applicable |
| Winresume.exe.mui | 6.0.6002.24311 | 19,456 | 01-Mar-2018 | 20:50 | Not applicable | Not applicable |
| Winload.efi | 6.0.6002.24311 | 1,102,528 | 01-Mar-2018 | 21:10 | Not applicable | Not applicable |
| Winload.exe | 6.0.6002.24310 | 1,089,216 | 01-Mar-2018 | 19:26 | x64 | Not applicable |
| Winresume.efi | 6.0.6002.24311 | 998,080 | 01-Mar-2018 | 21:10 | Not applicable | Not applicable |
| Winresume.exe | 6.0.6002.24259 | 986,856 | 15-Dec-2017 | 14:06 | x64 | Not applicable |
| Ci.dll.mui | 6.0.6002.24311 | 9,216 | 01-Mar-2018 | 20:53 | Not applicable | Not applicable |
| Ci.dll | 6.0.6002.24259 | 411,368 | 15-Dec-2017 | 14:06 | x64 | Not applicable |
| Driver.stl | Not applicable | 4,349 | 15-Dec-2017 | 14:06 | Not applicable | Not applicable |
| Csrsrv.dll | 6.0.6002.24311 | 86,016 | 01-Mar-2018 | 20:49 | x64 | Not applicable |
| Volmgrx.sys | 6.0.6002.24311 | 406,208 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Adtschema.dll.mui | 6.0.6002.24311 | 224,256 | 01-Mar-2018 | 20:53 | Not applicable | Not applicable |
| Auditpol.exe.mui | 6.0.6002.24311 | 20,480 | 01-Mar-2018 | 20:54 | Not applicable | Not applicable |
| Msaudite.dll.mui | 6.0.6002.24311 | 146,432 | 01-Mar-2018 | 20:54 | Not applicable | Not applicable |
| Msobjs.dll.mui | 6.0.6002.24311 | 58,880 | 01-Mar-2018 | 20:52 | Not applicable | Not applicable |
| Adtschema.dll | 6.0.6002.24311 | 620,544 | 01-Mar-2018 | 20:17 | x64 | Not applicable |
| Auditpol.exe | 6.0.6002.24311 | 53,760 | 01-Mar-2018 | 20:21 | x64 | Not applicable |
| Msaudite.dll | 6.0.6002.24311 | 146,432 | 01-Mar-2018 | 20:49 | x64 | Not applicable |
| Msobjs.dll | 6.0.6002.24311 | 58,880 | 01-Mar-2018 | 20:49 | x64 | Not applicable |
| Ntdll.dll | 6.0.6002.24311 | 1,583,448 | 01-Mar-2018 | 20:51 | x64 | Not applicable |
| Ntoskrnl.exe | 6.0.6002.24311 | 4,717,248 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Msrpc.sys | 6.0.6002.24311 | 309,952 | 01-Mar-2018 | 21:10 | x64 | Not applicable |
| Rpcrt4.dll | 6.0.6002.24311 | 1,308,160 | 01-Mar-2018 | 20:49 | x64 | Not applicable |
| Spsys.sys | 6.0.6002.24298 | 354,816 | 23-Feb-2018 | 03:26 | x64 | Not applicable |
| Smss.exe | 6.0.6002.24311 | 76,288 | 01-Mar-2018 | 20:17 | x64 | Not applicable |
| Videoprt.sys | 6.0.6002.24311 | 126,976 | 01-Mar-2018 | 20:24 | x64 | Not applicable |
| Ntvdm64.dll | 6.0.6002.24311 | 16,896 | 01-Mar-2018 | 20:49 | x64 | AMD64_MICROSOFT-WINDOWS-WOW |
| Wow64.dll | 6.0.6002.24311 | 234,496 | 01-Mar-2018 | 20:49 | x64 | AMD64_MICROSOFT-WINDOWS-WOW |
| Wow64cpu.dll | 6.0.6002.24311 | 17,408 | 01-Mar-2018 | 20:49 | x64 | AMD64_MICROSOFT-WINDOWS-WOW |
| Wow64win.dll | 6.0.6002.24311 | 301,568 | 01-Mar-2018 | 20:49 | x64 | AMD64_MICROSOFT-WINDOWS-WOW |
| Ntdll.dll | 6.0.6002.24311 | 1,168,840 | 01-Mar-2018 | 21:08 | x86 | Not applicable |
| Rpcrt4.dll | 6.0.6002.24311 | 679,424 | 01-Mar-2018 | 21:06 | x86 | Not applicable |
| Acwow64.dll | 6.0.6002.24311 | 43,520 | 01-Mar-2018 | 21:06 | x86 | WOW64_MICROSOFT-WINDOWS-WOW |
| Instnm.exe | 6.0.6002.24311 | 7,680 | 01-Mar-2018 | 20:11 | x86 | WOW64_MICROSOFT-WINDOWS-WOW |
| Ntvdm64.dll | 6.0.6002.24311 | 14,336 | 01-Mar-2018 | 21:06 | x86 | WOW64_MICROSOFT-WINDOWS-WOW |
| Setup16.exe | 3.1.0.1918 | 26,112 | 01-Mar-2018 | 20:11 | x86 | WOW64_MICROSOFT-WINDOWS-WOW |
| User.exe | 6.0.6002.24311 | 2,560 | 01-Mar-2018 | 20:11 | x86 | WOW64_MICROSOFT-WINDOWS-WOW |
| Wow32.dll | 6.0.6002.24311 | 5,120 | 01-Mar-2018 | 21:06 | x86 | WOW64_MICROSOFT-WINDOWS-WOW |
| Advapi32.dll.mui | 6.0.6002.24311 | 266,240 | 01-Mar-2018 | 21:11 | Not applicable | Not applicable |
| Advapi32.dll | 6.0.6002.24311 | 823,808 | 01-Mar-2018 | 21:06 | x86 | Not applicable |
| Adtschema.dll.mui | 6.0.6002.24311 | 233,472 | 01-Mar-2018 | 21:10 | Not applicable | Not applicable |
| Auditpol.exe.mui | 6.0.6002.24311 | 28,672 | 01-Mar-2018 | 21:11 | Not applicable | Not applicable |
| Msaudite.dll.mui | 6.0.6002.24311 | 155,648 | 01-Mar-2018 | 21:11 | Not applicable | Not applicable |
| Msobjs.dll.mui | 6.0.6002.24311 | 69,632 | 01-Mar-2018 | 21:09 | Not applicable | Not applicable |
| Adtschema.dll | 6.0.6002.24311 | 620,544 | 01-Mar-2018 | 20:11 | x86 | Not applicable |
| Auditpol.exe | 6.0.6002.24311 | 41,984 | 01-Mar-2018 | 20:13 | x86 | Not applicable |
| Msaudite.dll | 6.0.6002.24311 | 146,432 | 01-Mar-2018 | 21:06 | x86 | Not applicable |
| Msobjs.dll | 6.0.6002.24311 | 58,880 | 01-Mar-2018 | 21:06 | x86 | Not applicable |
For all supported x86-based versions
| File name | File version | File size | Date | Time | Platform |
|---|---|---|---|---|---|
| Acpi.sys | 6.0.6002.24311 | 263,872 | 01-Mar-2018 | 21:27 | x86 |
| Battc.sys | 6.0.6002.24311 | 24,768 | 01-Mar-2018 | 21:27 | x86 |
| Compbatt.sys | 6.0.6002.24311 | 17,344 | 01-Mar-2018 | 21:27 | Not applicable |
| Errdev.sys | 6.0.6002.24311 | 7,168 | 01-Mar-2018 | 20:11 | x86 |
| Wmiacpi.sys | 6.0.6002.24311 | 11,264 | 01-Mar-2018 | 20:11 | x86 |
| Halacpi.dll | 6.0.6002.24311 | 138,944 | 01-Mar-2018 | 21:27 | x86 |
| Halmacpi.dll | 6.0.6002.24311 | 170,176 | 01-Mar-2018 | 21:27 | x86 |
| Agp440.sys | 6.0.6002.24311 | 52,928 | 01-Mar-2018 | 21:27 | x86 |
| Amdagp.sys | 6.0.6002.24311 | 53,952 | 01-Mar-2018 | 21:27 | x86 |
| Isapnp.sys | 6.0.6002.24311 | 46,784 | 01-Mar-2018 | 21:27 | x86 |
| Msisadrv.sys | 6.0.6002.24311 | 12,992 | 01-Mar-2018 | 21:27 | x86 |
| Mssmbios.sys | 6.0.6002.24311 | 27,840 | 01-Mar-2018 | 21:27 | x86 |
| Nv_agp.sys | 6.0.6002.24311 | 105,664 | 01-Mar-2018 | 21:27 | x86 |
| Pci.sys | 6.0.6002.24311 | 149,184 | 01-Mar-2018 | 21:27 | x86 |
| Rdpdr.sys | 6.0.6002.24311 | 250,368 | 01-Mar-2018 | 20:16 | x86 |
| Sisagp.sys | 6.0.6002.24311 | 52,416 | 01-Mar-2018 | 21:27 | x86 |
| Streamci.dll | 6.0.6002.24311 | 21,696 | 01-Mar-2018 | 21:27 | x86 |
| Swenum.sys | 6.0.6002.24311 | 11,840 | 01-Mar-2018 | 21:27 | Not applicable |
| Termdd.sys | 6.0.6002.24311 | 51,904 | 01-Mar-2018 | 21:27 | x86 |
| Uliagpkx.sys | 6.0.6002.24311 | 57,536 | 01-Mar-2018 | 21:27 | x86 |
| Viaagp.sys | 6.0.6002.24311 | 53,440 | 01-Mar-2018 | 21:27 | x86 |
| Volmgr.sys | 6.0.6002.24311 | 49,856 | 01-Mar-2018 | 21:27 | x86 |
| Advapi32.dll.mui | 6.0.6002.24311 | 266,240 | 01-Mar-2018 | 21:11 | Not applicable |
| Advapi32.dll | 6.0.6002.24311 | 823,808 | 01-Mar-2018 | 21:06 | x86 |
| Setbcdlocale.dll | 6.0.6002.24311 | 46,592 | 01-Mar-2018 | 21:06 | x86 |
| Winload.exe | 6.0.6002.24311 | 1,016,512 | 01-Mar-2018 | 21:27 | x86 |
| Winresume.exe | 6.0.6002.24311 | 931,520 | 01-Mar-2018 | 21:27 | x86 |
| Winload.exe.mui | 6.0.6002.24311 | 26,112 | 01-Mar-2018 | 21:08 | Not applicable |
| Winresume.exe.mui | 6.0.6002.24311 | 19,456 | 01-Mar-2018 | 21:07 | Not applicable |
| Winload.exe | 6.0.6002.24310 | 1,016,512 | 01-Mar-2018 | 19:26 | x86 |
| Winresume.exe | 6.0.6002.24259 | 931,560 | 15-Dec-2017 | 14:05 | x86 |
| Ci.dll.mui | 6.0.6002.24311 | 9,728 | 01-Mar-2018 | 21:10 | Not applicable |
| Ci.dll | 6.0.6002.24259 | 650,984 | 15-Dec-2017 | 14:05 | x86 |
| Driver.stl | Not applicable | 4,349 | 15-Dec-2017 | 14:05 | Not applicable |
| Csrsrv.dll | 6.0.6002.24311 | 49,664 | 01-Mar-2018 | 21:06 | x86 |
| Volmgrx.sys | 6.0.6002.24311 | 291,008 | 01-Mar-2018 | 21:27 | x86 |
| Adtschema.dll.mui | 6.0.6002.24311 | 233,472 | 01-Mar-2018 | 21:10 | Not applicable |
| Auditpol.exe.mui | 6.0.6002.24311 | 28,672 | 01-Mar-2018 | 21:11 | Not applicable |
| Msaudite.dll.mui | 6.0.6002.24311 | 155,648 | 01-Mar-2018 | 21:11 | Not applicable |
| Msobjs.dll.mui | 6.0.6002.24311 | 69,632 | 01-Mar-2018 | 21:09 | Not applicable |
| Adtschema.dll | 6.0.6002.24311 | 620,544 | 01-Mar-2018 | 20:11 | x86 |
| Auditpol.exe | 6.0.6002.24311 | 41,984 | 01-Mar-2018 | 20:13 | x86 |
| Msaudite.dll | 6.0.6002.24311 | 146,432 | 01-Mar-2018 | 21:06 | x86 |
| Msobjs.dll | 6.0.6002.24311 | 58,880 | 01-Mar-2018 | 21:06 | x86 |
| Ntdll.dll | 6.0.6002.24311 | 1,210,040 | 01-Mar-2018 | 21:08 | x86 |
| Ntkrnlpa.exe | 6.0.6002.24311 | 3,582,144 | 01-Mar-2018 | 21:27 | Not applicable |
| Ntoskrnl.exe | 6.0.6002.24311 | 3,563,712 | 01-Mar-2018 | 21:27 | Not applicable |
| Msrpc.sys | 6.0.6002.24311 | 159,936 | 01-Mar-2018 | 21:27 | x86 |
| Rpcrt4.dll | 6.0.6002.24311 | 783,872 | 01-Mar-2018 | 21:06 | x86 |
| Spsys.sys | 6.0.6002.24298 | 342,528 | 01-Mar-2018 | 19:45 | x86 |
| Smss.exe | 6.0.6002.24311 | 65,024 | 01-Mar-2018 | 20:11 | x86 |
| Videoprt.sys | 6.0.6002.24311 | 105,472 | 01-Mar-2018 | 20:15 | x86 |
For all supported ia64-based versions
| File name | File version | File size | Date | Time | Platform | Service branch |
|---|---|---|---|---|---|---|
| Acpi.sys | 6.0.6002.24311 | 779,456 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Battc.sys | 6.0.6002.24311 | 42,176 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Compbatt.sys | 6.0.6002.24311 | 35,392 | 01-Mar-2018 | 21:03 | Not applicable | Not applicable |
| Errdev.sys | 6.0.6002.24311 | 17,920 | 01-Mar-2018 | 20:16 | IA-64 | Not applicable |
| Wmiacpi.sys | 6.0.6002.24311 | 28,672 | 01-Mar-2018 | 20:16 | IA-64 | Not applicable |
| Hal.dll | 6.0.6002.24311 | 428,224 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Agp460.sys | 6.0.6002.24311 | 136,704 | 01-Mar-2018 | 20:16 | IA-64 | Not applicable |
| Isapnp.sys | 6.0.6002.24311 | 34,496 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Msisadrv.sys | 6.0.6002.24311 | 21,696 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Mssmbios.sys | 6.0.6002.24311 | 53,952 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Pci.sys | 6.0.6002.24311 | 442,560 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Rdpdr.sys | 6.0.6002.24311 | 711,168 | 01-Mar-2018 | 20:25 | IA-64 | Not applicable |
| Streamci.dll | 6.0.6002.24311 | 42,688 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Swenum.sys | 6.0.6002.24311 | 15,808 | 01-Mar-2018 | 21:03 | Not applicable | Not applicable |
| Termdd.sys | 6.0.6002.24311 | 156,864 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Volmgr.sys | 6.0.6002.24311 | 146,112 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Advapi32.dll.mui | 6.0.6002.24311 | 255,488 | 01-Mar-2018 | 20:48 | Not applicable | Not applicable |
| Advapi32.dll | 6.0.6002.24311 | 1,980,416 | 01-Mar-2018 | 20:43 | IA-64 | Not applicable |
| Setbcdlocale.dll | 6.0.6002.24311 | 143,360 | 01-Mar-2018 | 20:43 | IA-64 | Not applicable |
| Winload.efi | 6.0.6002.24311 | 1,980,096 | 01-Mar-2018 | 21:03 | Not applicable | Not applicable |
| Winload.efi.mui | 6.0.6002.24311 | 26,112 | 01-Mar-2018 | 20:46 | Not applicable | Not applicable |
| Winload.efi | 6.0.6002.24311 | 1,980,096 | 01-Mar-2018 | 21:03 | Not applicable | Not applicable |
| Ci.dll.mui | 6.0.6002.24311 | 9,216 | 01-Mar-2018 | 20:46 | Not applicable | Not applicable |
| Ci.dll | 6.0.6002.24259 | 215,784 | 15-Dec-2017 | 14:06 | IA-64 | Not applicable |
| Driver.stl | Not applicable | 4,349 | 15-Dec-2017 | 14:06 | Not applicable | Not applicable |
| Csrsrv.dll | 6.0.6002.24311 | 150,016 | 01-Mar-2018 | 20:43 | IA-64 | Not applicable |
| Volmgrx.sys | 6.0.6002.24311 | 1,030,848 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Adtschema.dll.mui | 6.0.6002.24311 | 224,256 | 01-Mar-2018 | 20:45 | Not applicable | Not applicable |
| Auditpol.exe.mui | 6.0.6002.24311 | 20,480 | 01-Mar-2018 | 20:47 | Not applicable | Not applicable |
| Msaudite.dll.mui | 6.0.6002.24311 | 146,432 | 01-Mar-2018 | 20:47 | Not applicable | Not applicable |
| Msobjs.dll.mui | 6.0.6002.24311 | 58,880 | 01-Mar-2018 | 20:43 | Not applicable | Not applicable |
| Adtschema.dll | 6.0.6002.24311 | 620,544 | 01-Mar-2018 | 20:15 | IA-64 | Not applicable |
| Auditpol.exe | 6.0.6002.24311 | 121,856 | 01-Mar-2018 | 20:20 | IA-64 | Not applicable |
| Msaudite.dll | 6.0.6002.24311 | 146,432 | 01-Mar-2018 | 20:43 | IA-64 | Not applicable |
| Msobjs.dll | 6.0.6002.24311 | 58,880 | 01-Mar-2018 | 20:43 | IA-64 | Not applicable |
| Ntdll.dll | 6.0.6002.24311 | 2,552,496 | 01-Mar-2018 | 20:47 | IA-64 | Not applicable |
| Ntoskrnl.exe | 6.0.6002.24311 | 9,429,184 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Msrpc.sys | 6.0.6002.24311 | 694,464 | 01-Mar-2018 | 21:03 | IA-64 | Not applicable |
| Rpcrt4.dll | 6.0.6002.24311 | 3,289,088 | 01-Mar-2018 | 20:43 | IA-64 | Not applicable |
| Spsys.sys | 6.0.6002.24298 | 702,464 | 23-Feb-2018 | 03:26 | IA-64 | Not applicable |
| Smss.exe | 6.0.6002.24311 | 159,744 | 01-Mar-2018 | 20:15 | IA-64 | Not applicable |
| Videoprt.sys | 6.0.6002.24311 | 307,200 | 01-Mar-2018 | 20:23 | IA-64 | Not applicable |
| Ia32exec.bin | 6.5.6524.0 | 8,262,048 | 21-Nov-2017 | 04:34 | Not applicable | IA64_MICROSOFT-WINDOWS-WOW |
| Ntvdm64.dll | 6.0.6002.24311 | 27,648 | 01-Mar-2018 | 20:43 | IA-64 | IA64_MICROSOFT-WINDOWS-WOW |
| Wow64.dll | 6.0.6002.24311 | 523,776 | 01-Mar-2018 | 20:43 | IA-64 | IA64_MICROSOFT-WINDOWS-WOW |
| Wow64cpu.dll | 6.0.6002.24311 | 43,008 | 01-Mar-2018 | 20:43 | IA-64 | IA64_MICROSOFT-WINDOWS-WOW |
| Wow64win.dll | 6.0.6002.24311 | 620,544 | 01-Mar-2018 | 20:43 | IA-64 | IA64_MICROSOFT-WINDOWS-WOW |
| Wowia32x.dll | 6.5.6563.0 | 88,576 | 01-Mar-2018 | 20:43 | IA-64 | IA64_MICROSOFT-WINDOWS-WOW |
| Ntdll.dll | 6.0.6002.24311 | 1,168,840 | 01-Mar-2018 | 21:08 | x86 | Not applicable |
| Rpcrt4.dll | 6.0.6002.24311 | 679,424 | 01-Mar-2018 | 21:06 | x86 | Not applicable |
| Acwow64.dll | 6.0.6002.24311 | 43,520 | 01-Mar-2018 | 21:06 | x86 | WOW64_MICROSOFT-WINDOWS-WOW |
| Instnm.exe | 6.0.6002.24311 | 7,680 | 01-Mar-2018 | 20:11 | x86 | WOW64_MICROSOFT-WINDOWS-WOW |
| Ntvdm64.dll | 6.0.6002.24311 | 14,336 | 01-Mar-2018 | 21:06 | x86 | WOW64_MICROSOFT-WINDOWS-WOW |
| Setup16.exe | 3.1.0.1918 | 26,112 | 01-Mar-2018 | 20:11 | x86 | WOW64_MICROSOFT-WINDOWS-WOW |
| User.exe | 6.0.6002.24311 | 2,560 | 01-Mar-2018 | 20:11 | x86 | WOW64_MICROSOFT-WINDOWS-WOW |
| Wow32.dll | 6.0.6002.24311 | 5,120 | 01-Mar-2018 | 21:06 | x86 | WOW64_MICROSOFT-WINDOWS-WOW |
| Advapi32.dll.mui | 6.0.6002.24311 | 266,240 | 01-Mar-2018 | 21:11 | Not applicable | Not applicable |
| Advapi32.dll | 6.0.6002.24311 | 823,808 | 01-Mar-2018 | 21:06 | x86 | Not applicable |
| Adtschema.dll.mui | 6.0.6002.24311 | 233,472 | 01-Mar-2018 | 21:10 | Not applicable | Not applicable |
| Auditpol.exe.mui | 6.0.6002.24311 | 28,672 | 01-Mar-2018 | 21:11 | Not applicable | Not applicable |
| Msaudite.dll.mui | 6.0.6002.24311 | 155,648 | 01-Mar-2018 | 21:11 | Not applicable | Not applicable |
| Msobjs.dll.mui | 6.0.6002.24311 | 69,632 | 01-Mar-2018 | 21:09 | Not applicable | Not applicable |
| Adtschema.dll | 6.0.6002.24311 | 620,544 | 01-Mar-2018 | 20:11 | x86 | Not applicable |
| Auditpol.exe | 6.0.6002.24311 | 41,984 | 01-Mar-2018 | 20:13 | x86 | Not applicable |
| Msaudite.dll | 6.0.6002.24311 | 146,432 | 01-Mar-2018 | 21:06 | x86 | Not applicable |
| Msobjs.dll | 6.0.6002.24311 | 58,880 | 01-Mar-2018 | 21:06 | x86 | Not applicable |
Related
prion
prion
Information disclosure
2018-03-14 17:29:00
Information disclosure
2018-03-14 17:29:00
Information disclosure
2018-03-14 17:29:00
cvelist
cvelist
nvd
nvd
cve
cve
mskb
mskb
March 13, 2018—KB4088879 (Security-only update)
2018-03-13 07:00:00
March 13, 2018—KB4088880 (Security-only update)
2018-03-13 07:00:00
March 13, 2018—KB4088878 (Security-only update)
2018-03-13 07:00:00
nessus
nessus
Security Updates for Windows Server 2008 (March 2018)
2018-03-13 00:00:00
kaspersky
kaspersky
KLA11778 Multiple vulnerabilities in Microsoft Products (ESU)
2018-03-13 00:00:00
KLA11207 Multiple vulnerabilities in Microsoft Windows
2018-03-13 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4088875)
2018-03-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4088876)
2018-03-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4088786)
2018-03-14 00:00:00
seebug
seebug
zdt
zdt
symantec
symantec
mscve
mscve
Windows Kernel Information Disclosure Vulnerability
2018-03-13 07:00:00
Windows Kernel Information Disclosure Vulnerability
2018-03-13 07:00:00
Windows Kernel Information Disclosure Vulnerability
2018-03-13 07:00:00
trendmicroblog
trendmicroblog
talosblog
talosblog
Microsoft Patch Tuesday - March 2018
2018-03-13 14:38:00