Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB4470199
HistoryDec 11, 2018 - 8:00 a.m.

Cumulative security update for Internet Explorer: December 11, 2018

2018-12-1108:00:00
Microsoft
support.microsoft.com
57

8.1 High

AI Score

Confidence

High

0.968 High

EPSS

Percentile

99.7%

JSON

Cumulative security update for Internet Explorer: December 11, 2018

Summary

This security update resolves several reported vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage in Internet Explorer. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures.Additionally, see the following articles for more information about this cumulative update:

  • Windows Server 2008 SP2 update history

  • Windows 7 SP1 and Windows Server 2008 R2 SP1 update history

  • Windows Server 2012 update history

  • Windows 8.1 and Windows Server 2012 R2 update history

  • Windows 10 and Windows Server 2016 update history
    Important

  • The fixes that are included in this Security Update for Internet Explorer (KB 4470199) are also included in the December 2018 Security Monthly Quality Rollup. Installing either the Security Update for Internet Explorer or the Security Monthly Quality Rollup installs the fixes that are in this update.

  • If you use update management processes other than Windows Update and you automatically approve all security updates classifications for deployment, this Security Update for Internet Explorer (KB 4470199), the December 2018 Security Only Quality Update, and the December 2018 Security Monthly Quality Rollup are deployed. We recommend that you review your update deployment rules to make sure that the desired updates are deployed.

  • This Security Update for Internet Explorer is not applicable for installation on a computer on which the Security Monthly Quality Rollup or the Preview of Monthly Quality Rollup from December 2018 (or a later month) is already installed. This is because those updates contain all the fixes that are in this Security Update for Internet Explorer.

  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Known issues in this security update

After you install security update 4483187 on a computer that is running Windows Server 2012 R2 or Windows 8.1, the About Internet Explorer 11 dialog box will show KB4470199 (the December 11, 2018 Security Update for Internet Explorer) instead of KB4483187. Users can confirm they are protected by verifying that the version of jscript.dll is 5.8.9600.19230.

How to get and install the update

Method 1: Microsoft Update

This update is available through Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically.For more information about how to get security updates automatically, see Windows Update: FAQ.Note For Windows RT and Windows RT 8.1, this update is available through Microsoft Update only.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

Deployment information

For deployment details for this security update, see the following article in the Microsoft Knowledge Base:Security update deployment information: December 11, 2018

More Information

__

How to get help and support for this security update

Help for installing updates: Windows Update: FAQHelp for protecting your Windows-based computer from viruses and malware: Microsoft SecureLocal support according to your country: International Support

File informationFor a list of the files that are provided in this cumulative update, download the file information for cumulative update KB 4470199.

File hash information

File name SHA1 hash SHA256 hash
Windows8.1-KB4470199-x86.msu F34EC731B5AC143D576EE3D6FCF5CB194274DB81 FD8DE343FB8CD4346466F6F840EBA4B162614B4DAC17C48D51DC44BACED1B5C8
Windows8.1-KB4470199-arm.msu EFEB009B88356B3701672D854F6BDA03DAD360C8 C5DA04DF8AB208CB186580AE8A7373B659FEA1CE0F27EC5E69E78607099611C7
Windows8.1-KB4470199-x64.msu 8E126BA175C7D291F08B82B59E5A135CA7103E97 2D90638E0F6E493A9BDEE1690E6587DD1927BAD9F4C506201937B491C4CE204E
Windows8-RT-KB4470199-x64.msu EA3079F6704B5BC49167AFB5AC243225E3EDA301 A42F293FAB3A4841FAD33413DA1F8B7E5AB5431A8BAB6DA0DD03DB95F6244C77
IE11-Windows6.1-KB4470199-X64.msu 0B0CFFA80C0A982D569E17FEEEBBA692F7F991EA 988DBA74B1EC3C937D5C7C17424FB21BBBBE3811B4DA27522944013F5DF9BA98
IE11-Windows6.1-KB4470199-X86.msu 00CDE4E8C03CC549EEDCF21E9A447AB7BBCB1C0C 2A8A07C07AF0996334D2782254F695B1F8905F7108CC043D22E28B7087821EB0
IE9-Windows6.0-KB4470199-X86.msu 4C9BF1D04E20DF45A0FD1BCFADAE7A8B3F19F1F0 B5AE0FAC1D322101FB06188DA73748297955391EE9B38F9F8C2EDE8B606163B4
IE9-Windows6.0-KB4470199-X64.msu A2DF530B2C22CA6CB66FE8EEAD7A3D462F064BF0 83C382BEE6301300C9294F044F8EE4627DFDD65FEE31815DCC58CD96961D7058

Related

nessus 9
kaspersky 2
mskb 10
cve 5
zdi 1
checkpoint_advisories 4
prion 5
mscve 4
nvd 5
symantec 4
cvelist 5
openvas 8
zdt 3
packetstorm 1
attackerkb 1
krebs 1
talosblog 1
nessus
nessus
Security Updates for Internet Explorer (December 2018)
2018-12-11 00:00:00
KB4471322: Windows 8.1 and Windows Server 2012 R2 December 2018 Security Update
2018-12-11 00:00:00
KB4471328: Windows 7 and Windows Server 2008 R2 December 2018 Security Update
2018-12-11 00:00:00
kaspersky
kaspersky
KLA11388 Multiple vulnerabilities in Microsoft Browsers
2018-12-11 00:00:00
KLA11884 Multiple vulnerability in Microsoft Products (ESU)
2018-12-11 00:00:00
mskb
mskb
December 11, 2018—KB4471325 (Monthly Rollup)
2018-12-11 08:00:00
December 11, 2018—KB4471330 (Monthly Rollup)
2018-12-11 08:00:00
December 11, 2018—KB4471320 (Monthly Rollup)
2018-12-11 08:00:00
cve
cve
CVE-2018-8643
2018-12-12 00:29:01
CVE-2018-8631
2018-12-12 00:29:01
CVE-2018-8619
2018-12-12 00:29:01
zdi
zdi
Microsoft Windows JScript Array concat Uninitialized Pointer Remote Code Execution Vulnerability
2018-12-13 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2018-8643)
2018-12-11 00:00:00
Microsoft Internet Explorer Memory Corruption - VER0 (CVE-2018-8631)
2019-02-21 00:00:00
Microsoft Internet Explorer Memory Corruption (CVE-2018-8631)
2018-12-11 00:00:00
prion
prion
Remote code execution
2018-12-12 00:29:00
Remote code execution
2018-12-12 00:29:00
Remote code execution
2018-12-12 00:29:00
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2018-12-11 08:00:00
Internet Explorer Memory Corruption Vulnerability
2018-12-11 08:00:00
Internet Explorer Remote Code Execution Vulnerability
2018-12-11 08:00:00
nvd
nvd
CVE-2018-8643
2018-12-12 00:29:01
CVE-2018-8625
2018-12-12 00:29:01
CVE-2018-8631
2018-12-12 00:29:01
symantec
symantec
Microsoft Internet Explorer Scripting Engine CVE-2018-8643 Memory Corruption Vulnerability
2018-12-11 00:00:00
Microsoft Internet Explorer CVE-2018-8631 Remote Code Execution Vulnerability
2018-12-11 00:00:00
Microsoft Internet Explorer VBScript Engine CVE-2018-8619 Remote Memory Corruption Vulnerability
2018-12-11 00:00:00
cvelist
cvelist
CVE-2018-8643
2018-12-12 00:00:00
CVE-2018-8631
2018-12-12 00:00:00
CVE-2018-8625
2018-12-12 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4471320)
2018-12-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4471318)
2018-12-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4471323)
2018-12-12 00:00:00
zdt
zdt
Microsoft Windows - jscript!JsArrayFunctionHeapSort Out-of-Bounds Write Exploit
2018-12-18 00:00:00
VBScript - VbsErase Reference Leak Use-After-Free Exploit
2018-12-22 00:00:00
VBScript - MSXML Execution Policy Bypass Exploit
2018-12-22 00:00:00
packetstorm
packetstorm
Microsoft Windows jscript!JsArrayFunctionHeapSort Out-Of-Bounds Write
2018-12-18 00:00:00
attackerkb
attackerkb
CVE-2018-8653
2018-12-20 00:00:00
krebs
krebs
Patch Tuesday, December 2018 Edition
2018-12-11 21:05:41
talosblog
talosblog
Microsoft Patch Tuesday — December 2018: Vulnerability disclosures and Snort coverage
2018-12-11 10:35:00

8.1 High

AI Score

Confidence

High

0.968 High

EPSS

Percentile

99.7%

JSON
Related for KB4470199
nessus9kaspersky2mskb10cve5zdi1checkpoint_advisories4prion5mscve4nvd5symantec4cvelist5openvas8zdt3packetstorm1attackerkb1krebs1talosblog1