MS17-006: Description of the security update for Internet Messaging API on Windows Vista and Windows Server 2008: March 14, 2017

Applies to: Internet Explorer 9


This security update resolves a vulnerability reported in Internet Messaging API. To learn more about this vulnerability, see CVE-2017-0008 in Microsoft Security Bulletin MS17-006. If you are running Windows Vista or Windows Server 2008, install this security update (3218362) in addition to security update 4012204, in order to be fully protective from this vulnerability.


If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

How to get and install the update

Method 1: Microsoft Update

This update is available through Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. 
For more information about how to get security updates automatically, see Windows Update: FAQ.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

More Information

File information