Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

Description of the security update for the Microsoft Video Control elevation of privilege vulnerability in WES09 and POSReady 2009: March 13, 2018


View products that this article applies to.

Summary

An elevation of privilege vulnerability exists in Windows when the Microsoft Video Control mishandles objects in memory. An attacker who successfully exploits this vulnerability could run arbitrary code in system mode. The attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

To learn more about the vulnerability, go to CVE-2018-0881.

↑ Back to the top


More Information

Important If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

↑ Back to the top


How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Windows Update: FAQ.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

↑ Back to the top


Deployment information

For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:

↑ Back to the top


More Information

How to obtain help and support for this security update
Help for installing updates: Windows Update: FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

↑ Back to the top


File Information

File hash information
File name SHA1 hash SHA256 hash
WindowsXP-KB4089082-x86-Embedded-ENU.exe 56A4C587452F40F8E91F3192168F4CF1193E801C 2F512776AA74B331BFE2C2B70975754A70FC4F251BB746A18CECF3814D33CC61


File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time together with your current daylight-saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

Windows XP file information

For all supported x86-based versions
File name File version File size Date Time Platform
Msvidctl.dll 6.5.2600.7431 1,427,968 13-Feb-2018 17:00 x86
Updspapi.dll 6.3.13.0 382,840 16-May-2014 03:08 x86

 

↑ Back to the top


Keywords: kbsurveynew, kbsecvulnerability, kbsecurity, kbsecreview, kbsecbulletin, kbexpertiseinter, kblangall, kbfix, kb, kbbug, atdownload, kbmustloc

↑ Back to the top

Article Info
Article ID : 4089082
Revision : 11
Created on : 3/10/2018
Published on : 3/13/2018
Exists online : False
Views : 369