Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

MS17-016: Description of the security update for Internet Information Services: March 14, 2017


View products that this article applies to.

Summary

This security update resolves a vulnerability in Microsoft IIS Server. The vulnerability could allow elevation of privilege if a user clicks a specially crafted URL that is hosted by an affected Microsoft IIS server. An attacker who successfully exploited this vulnerability could potentially execute scripts in the user’s browser to obtain information from web sessions.
To learn more about the vulnerability, see Microsoft Security Bulletin MS17-016.

↑ Back to the top


More Information

Important

  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

↑ Back to the top


How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Get security updates automatically.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

↑ Back to the top


More Information

How to get help and support for this security update
Help for installing updates: Windows Update: FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

↑ Back to the top


File Information

File hash information

File nameSHA1 hashSHA256 hash
Windows6.0-KB4012373-x64.msu7D1351244013CA23B4FAE42B1AF8244DBD87C96D973AC8987FE493A052755FB46706677C2B5B695E166CAC83DC2F944A2503551D
Windows6.0-KB4012373-ia64.msu0FEE1632935A17A3322E88F369B66CEB3CF3397FB586F165A9C481F948C08CE14651337A9B5EC05C60F3348AB66D30BAD74312B7
Windows6.0-KB4012373-x86.msu39C9A931AD5F76087C6E1D99F92DD7E85B81CEBB8BB0ED34B78636AC4BE2F0BDBC58BFB069EE28723FC9908C43B9329656F791B5

File informationThe English (United States) version of this software update installs files that have the attributes that are listed in the following tables. Windows Vista and Windows Server 2008 file informationNotes: The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed. For all supported x64-based versions

File nameFile versionFile sizeDateTimePlatform
Custerr.dll7.0.6002.1974147,61609-Feb-201717:20x64
Custerr.dll7.0.6002.2406547,61609-Feb-201717:40x64
Custerr.dll7.0.6002.1974141,98409-Feb-201717:03x86
Custerr.dll7.0.6002.2406541,98409-Feb-201716:25x86

For all supported ia64-based versions

File nameFile versionFile sizeDateTimePlatform
Custerr.dll7.0.6002.1974195,74409-Feb-201716:50IA-64
Custerr.dll7.0.6002.2406595,74409-Feb-201716:15IA-64
Custerr.dll7.0.6002.1974141,98409-Feb-201717:03x86
Custerr.dll7.0.6002.2406541,98409-Feb-201716:25x86

For all supported x86-based versions

File nameFile versionFile sizeDateTimePlatform
Custerr.dll7.0.6002.1974141,98409-Feb-201717:03x86
Custerr.dll7.0.6002.2406541,98409-Feb-201716:25x86

 

↑ Back to the top


Keywords: kb, atdownload, kbbug, kbexpertiseinter, kbfix, kblangall, kbmustloc, kbsecbulletin, kbsecreview, kbsecurity, kbsecvulnerability, kbsurveynew

↑ Back to the top

Article Info
Article ID : 4012373
Revision : 11
Created on : 3/10/2017
Published on : 11/6/2019
Exists online : False
Views : 284