Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB4103768
HistoryMay 08, 2018 - 7:00 a.m.

Cumulative security update for Internet Explorer: May 08, 2018

2018-05-0807:00:00
Microsoft
support.microsoft.com
27

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.95 High

EPSS

Percentile

99.3%

JSON

Cumulative security update for Internet Explorer: May 08, 2018

Summary

This security update resolves several reported vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage in Internet Explorer. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures. Additionally, see the following articles for more information about this cumulative update:

  • Windows 7 SP1 and Windows Server 2008 R2 SP1 update history

  • Windows Server 2012 update history

  • Windows 8.1 and Windows Server 2012 R2 update history

  • Windows 10 and Windows Server 2016 update history
    Important

  • The fixes that are included in this Security Update for Internet Explorer 4103768 are also included in the May 2018 Security Monthly Quality Rollup. Installing either the Security Update for Internet Explorer or the Security Monthly Quality Rollup installs the fixes that are in this update.

  • If you use update management processes other than Windows Update and you automatically approve all security updates classifications for deployment, this Security Update for Internet Explorer (KB 4103768), the May 2018 Security Only Quality Update, and the May 2018 Security Monthly Quality Rollup are deployed. We recommend that you review your update deployment rules to make sure that the desired updates are deployed.

  • This Security Update for Internet Explorer is not applicable for installation on a computer where the Security Monthly Quality Rollup or the Preview of Monthly Quality Rollup from May 2018 (or a later month) is already installed. This is because those updates contain all the fixes that are in this Security Update for Internet Explorer.

  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Deployment information

For deployment details for this security update, see the following article in the Microsoft Knowledge Base:Security update deployment information: May 08, 2018

How to get and install the update

Method 1: Microsoft Update

This update is available through Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically.For more information about how to get security updates automatically, see Windows Update: FAQ.Note For Windows RT and Windows RT 8.1, this update is available through Microsoft Update only.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

More Information

__

How to get help and support for this security update

Help for installing updates: Windows Update: FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

File informationFor a list of the files that are provided in this cumulative update, download the file information for cumulative update KB 4103768.

File hash information

File name SHA1 hash SHA256 hash
Windows8.1-KB4103768-x86.msu F33E54E114A5543D0FB93EECF5FD25488603B836 F9CDB4686062D3D2511DE03ED656326287EAA361B30E7B4F376003BF9229BDF9
Windows8.1-KB4103768-x64.msu 9F2AA2AAE94F51E0D488F66B7F241AA13AD0A102 FEF70DDDEC95AB82940F84974E7D288A4D174C0B515BFAC66D0962E44B45BCDB
Windows8-RT-KB4103768-x64.msu DEF729C1BD1E2DD1065BD94EE9DF1241A801D63F 281C93266150998275A9952BCA93F41C016597B6C68E41EE56F41C6EDF10DF6A
IE11-Windows6.1-KB4103768-X64.msu E1B9DFD6A4F8862645211948C4F40C1D24936844 4BB14BBAC75557D513E6359413F11F0B1E0B03AF7C3A6ABBA9F14750C6B5712F
IE11-Windows6.1-KB4103768-X86.msu 8D6376A0B99BFB2444F77515D0451F30638C345F 74EC32CF3BC5193B6155B3E186442D23F36B1C74DCCAFC85E238D9FFF8E71DA2
IE9-Windows6.0-KB4103768-X86.msu 7E6DB1DCC902DE91F6AD24A75E29F90C6B50875B C694E2468DFF01F1EF000D75311E03FDAABDEF689C8D7C3F76B16C8991D75974
IE9-Windows6.0-KB4103768-X64.msu DA1A1C1C355183D0C80E5F86D9DE2F5A39B3DF8D 6CCC9D9BFE2261776208B54577E6DD3E70AD1F5BD6E5D7EFEC93DDE2982B25E5

Related

nessus 9
mskb 8
openvas 7
prion 19
veracode 14
osv 25
github 11
cve 19
kaspersky 2
symantec 7
checkpoint_advisories 5
mscve 8
zdt 1
packetstorm 1
zdi 2
trendmicroblog 2
talosblog 1
nessus
nessus
Security Updates for Internet Explorer (May 2018)
2018-05-08 00:00:00
KB4103715: Windows 8.1 and Windows Server 2012 R2 May 2018 Security Update
2018-05-08 00:00:00
KB4103712: Windows 7 and Windows Server 2008 R2 May 2018 Security Update
2018-05-08 00:00:00
mskb
mskb
May 8, 2018—KB4103718 (Monthly Rollup)
2018-05-08 07:00:00
May 8, 2018—KB4103725 (Monthly Rollup)
2018-05-08 07:00:00
May 8, 2018—KB4103716 (OS Build 10240.17861)
2018-05-08 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4103718)
2018-05-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4103725)
2018-05-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4103716)
2018-05-09 00:00:00
prion
prion
Remote code execution
2018-05-09 19:29:00
Remote code execution
2018-05-09 19:29:00
Remote code execution
2018-05-09 19:29:00
veracode
veracode
Remote Code Execution (RCE)
2018-06-28 07:40:56
Remote Code Execution (RCE)
2018-06-29 04:40:18
Remote Code Execution (RCE)
2018-06-28 06:40:19
osv
osv
CVE-2018-8128
2018-05-09 19:29:01
ChakraCore RCE Vulnerability
2022-05-13 01:18:39
CVE-2018-0946
2018-05-09 19:29:00
github
github
ChakraCore RCE Vulnerability
2022-05-13 01:18:39
ChakraCore RCE Vulnerability
2022-05-13 01:18:49
ChakraCore RCE Vulnerability
2022-05-13 01:18:39
cve
cve
CVE-2018-0951
2018-05-09 19:29:00
CVE-2018-8137
2018-05-09 19:29:00
CVE-2018-8139
2018-05-09 19:29:00
kaspersky
kaspersky
KLA11247 Multiple vulnerabilities in Microsoft Browsers
2018-05-08 00:00:00
KLA11894 Multiple vulnerabilities in Microsoft Products (ESU)
2018-05-08 00:00:00
symantec
symantec
Microsoft Internet Explorer and Edge CVE-2018-8178 Remote Memory Corruption Vulnerability
2018-05-08 00:00:00
Microsoft ChakraCore Scripting Engine CVE-2018-8145 Remote Memory Corruption Vulnerability
2018-05-08 00:00:00
Microsoft Internet Explorer Scripting Engine CVE-2018-8114 Remote Memory Corruption Vulnerability
2018-05-08 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Edge and Internet Explorer Chakra Out of Bounds Read (CVE-2018-8145)
2018-07-12 00:00:00
Microsoft Internet Explorer Memory Corruption (CVE-2018-8122)
2018-05-08 00:00:00
Microsoft Internet Explorer Memory Corruption (CVE-2018-8114)
2018-05-08 00:00:00
mscve
mscve
Microsoft Browser Memory Corruption Vulnerability
2018-05-08 07:00:00
Scripting Engine Information Disclosure Vulnerability
2018-05-08 07:00:00
Scripting Engine Memory Corruption Vulnerability
2018-05-08 07:00:00
zdt
zdt
Microsoft Edge Chakra JIT - Out-of-Bounds Reads/Writes Exploit
2018-07-12 00:00:00
packetstorm
packetstorm
Microsoft Edge Chakra JIT Out-Of-Bounds Reads/Writes
2018-07-12 00:00:00
zdi
zdi
(Pwn2Own) Microsoft Edge WebGL ImageData Use-After-Free Information Disclosure Vulnerability
2018-07-12 00:00:00
Microsoft Edge WebGL ImageData Use-After-Free Information Disclosure Vulnerability
2018-05-14 00:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of May 7, 2018
2018-05-11 15:37:20
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of April 9, 2018
2018-04-13 15:37:14
talosblog
talosblog
Microsoft Patch Tuesday - May 2018
2018-05-08 12:02:00

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.95 High

EPSS

Percentile

99.3%

JSON
Related for KB4103768
nessus9mskb8openvas7prion19veracode14osv25github11cve19kaspersky2symantec7checkpoint_advisories5mscve8zdt1packetstorm1zdi2trendmicroblog2talosblog1