Microsoft releases Windows 7 KB4012212 and Monthly Rollup KB4012215

By: Madeleine Dean
2 minute read

Microsoft recently released two important updates for Windows 7: Security update KB4012212 and Monthly Rollup KBKB4012215. Both patch a series of severe vulnerabilities that could allow attackers to remotely run malicious code using specially crafted applications and URLs.

To install the latest Windows 7 security fixes and improvements, users can either download and install the security update KB4012212 or the Monthly Rollup KBKB4012215. The difference is that if you choose to install the Monthly Rollup, you’ll also install improvements and fixes from previous monthly rollups.

Windows 7 KB4012212 fixed vulnerabilities:

  1. MS17-022 Microsoft XML Core Services: This vulnerability could allow information disclosure if a user visits a malicious website.
  2. MS17-021 DirectShow: This vulnerability could allow an information disclosure if Windows DirectShow opens specially crafted media content hosted on a malicious website.
  3. MS17-020 information disclosure vulnerability in Windows DVD MakerWindows DVD Maker.
  4. MS17-019 information disclosure vulnerability in Active Directory Federation Services.
  5. MS17-018 Windows Kernel-Mode Drivers: This vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application. In other words, the attacker could take control of the affected system.
  6. MS17-017 elevation of privilege vulnerability in Windows Kernel.
  7. MS17-016 Internet Information Services: This vulnerability could allow elevation of privilege if users clicks a specially crafted URL hosted by an affected Microsoft IIS server. The attacker could potentially execute scripts in the user’s browser to obtain information from web sessions.
  8. MS17-013 Microsoft Graphics Component vulnerability affecting Microsoft Office, Skype for Business, Microsoft Lync, and Microsoft Silverlight that could allow remote code execution.
  9. MS17-012 Microsoft Windows remote code execution vulnerability.
  10. MS17-011 remote code execution vulnerability in Microsoft Uniscribe.
  11. MS17-010 remote code execution vulnerability in Windows SMB Server.
  12. MS17-008 Windows Hyper-V vulnerability that causes the Hyper-V host operating system to execute arbitrary code.

How to install KB4012212 and KBKB4012215

You can download the standalone package for these two updates from the Microsoft Update Catalog website. You can also download and install security update KB4012212 through Windows Update.

RELATED STORIES YOU NEED TO CHECK OUT:

For various PC problems, we recommend to use this tool.

This tool will repair common computer errors, protect you from file loss, malware, hardware failure and optimize your PC for maximum performance. Quickly fix PC issues and prevent others from happening with this software:

  1. Download ReimagePlus (100% safe download).
  2. Click “Start Scan” to find Windows issues that could be causing PC problems.
  3. Click “Repair All” to fix all issues (requires upgrade).