KB4022746, KB4022748, and KB4022914 updates released for Windows Server 2008 and Windows XP Embedded

Costea Lestoc By: Costea Lestoc
2 minute read

Home » KB4022746, KB4022748, and KB4022914 updates released for Windows Server 2008 and Windows XP Embedded

Microsoft rolled out improvements and fixes in security updates for the Windows Server 2008 and Windows XP.

KB4022746 – Security Update for Windows Server 2008 and Windows XP Embedded

This includes a security update for the Kerberos SNAME security feature bypass vulnerability in Windows Server 2008. You should know that there is a feature bypass vulnerability in Microsoft Windows when Kerberos fails to prevent tampering with the SNAME field running tickets exchange. A hacker who successfully exploited this vulnerability could use it to bypass Extended Protection for Authentication.

In you want to install a language pack after installing this update, you have to reinstall the update. It’s recommended to install any language packs that you need before installing this update.

You can get the update via Windows Update, or you can get the standalone package from the Microsoft Update Catalog.

KB4022748 – Security Update for Windows Server 2008

This includes the security update for the Windows kernel information disclosure vulnerability in Windows Server 2008.

There is an information vulnerability when the Windows kernel fails to initialize a memory address the proper way, and this can allow a hacker to retrieve data that could result in a Kernel Address Space Layout Randomization (KASKLR) bypass.

In you want to install a language pack after installing this update, you have to reinstall the update. It’s recommended to install any language packs that you need before installing this update.

You can get the update via Windows Update, or you can get the standalone package from the Microsoft Update Catalog.

KB4022914 – Security Update for Windows Server 2008

This includes a security update for the Windows kernel information disclosure vulnerability in Windows Server 2008.

There is an information disclosure vulnerability when the HTTP.sys server app component improperly handles objects in memory. A hacker who managed to exploit this vulnerability could use this flaw to obtain information that could compromise the HTTP.sys server app system.

In you want to install a language pack after installing this update, you have to reinstall the update. It’s recommended to install any language packs that you need before installing this update.

You can get the update via Windows Update, or you can get the standalone package from the Microsoft Update Catalog.

RELATED STORIES TO CHECK OUT:

Discussions

Next up

What to do if you are unable to restart DNS client

Sovan Mandal avatar. By: Sovan Mandal
3 minute read

The DNS server, short for Domain Name Server is where the management, maintenance and processing of Internet domain names take place. Or in simple terms, […]

Continue Reading

4 Christmas gifts for FIFA fans they’ll really appreciate

Madeleine Dean By: Madeleine Dean
Less than a 1 minute read

Getting the perfect gift for FIFA fans is actually an easy job. Basically, you get them anything related to their favorite game and you’ll make […]

Continue Reading

New Windows 10 Tablet mode concept shows what could have been

Matthew Adams By: Matthew Adams
2 minute read

Microsoft added Tablet mode to Windows 10 primarily for 2-in-1 laptops and tablets, such as the Surface Pro. Tablet mode displays a start screen from […]

Continue Reading