Microsoft releases Windows 7 KB4012212 and Monthly Rollup KB4012215

News

Reading time icon 2 min. read

Calendar icon Updated on

by Madalina Dinita 

updated on

Share this article

Readers help support Windows Report. We may get a commission if you buy through our links. Tooltip Icon

Read our disclosure page to find out how can you help Windows Report sustain the editorial team Read more

Windows 7 end support ESU cost

Microsoft recently released two important updates for Windows 7: Security update KB4012212 and Monthly Rollup KBKB4012215.

Both patch a series of severe vulnerabilities that could allow attackers to remotely run malicious code using specially crafted applications and URLs.

To install the latest Windows 7 security fixes and improvements, users can either download and install the security update KB4012212 or the Monthly Rollup KBKB4012215.

The difference is that if you choose to install the Monthly Rollup, you’ll also install improvements and fixes from previous monthly rollups.

Are Windows 7 updates still available? Learn about them from our detailed article!

Windows 7 KB4012212 fixed vulnerabilities:

  1. MS17-022 Microsoft XML Core Services: This vulnerability could allow information disclosure if a user visits a malicious website.
  2. MS17-021 DirectShow: This vulnerability could allow an information disclosure if Windows DirectShow opens specially crafted media content hosted on a malicious website.
  3. MS17-020 information disclosure vulnerability in Windows DVD MakerWindows DVD Maker.
  4. MS17-019 information disclosure vulnerability in Active Directory Federation Services.
  5. MS17-018 Windows Kernel-Mode Drivers: This vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application. In other words, the attacker could take control of the affected system.
  6. MS17-017 elevation of privilege vulnerability in Windows Kernel.
  7. MS17-016 Internet Information Services: This vulnerability could allow elevation of privilege if users clicks a specially crafted URL hosted by an affected Microsoft IIS server. The attacker could potentially execute scripts in the user’s browser to obtain information from web sessions.
  8. MS17-013 Microsoft Graphics Component vulnerability affecting Microsoft Office, Skype for Business, Microsoft Lync, and Microsoft Silverlight that could allow remote code execution.
  9. MS17-012 Microsoft Windows remote code execution vulnerability.
  10. MS17-011 remote code execution vulnerability in Microsoft Uniscribe.
  11. MS17-010 remote code execution vulnerability in Windows SMB Server.
  12. MS17-008 Windows Hyper-V vulnerability that causes the Hyper-V host operating system to execute arbitrary code.

How to install KB4012212 and KBKB4012215

You can download the standalone package for these two updates from the Microsoft Update Catalog website. You can also download and install security update KB4012212 through Windows Update.

RELATED STORIES YOU NEED TO CHECK OUT:

More about the topics: windows 7, Windows Update

Madalina Dinita

Madalina Dinita Shield

Networking & Security Specialist

Madalina has been a Windows fan ever since she got her hands on her first Windows XP computer. She is interested in all things technology, especially emerging technologies -- AI and DNA computing in particular. Prior to joining the WindowsReport team, she worked in the corporate world for a number of years.