MS17-011 and MS17-013: Description of the security update for Microsoft Graphics Component: March 14, 2017

Applies to: Windows Server 2008 Service Pack 2Windows Vista Service Pack 2


This security update resolves vulnerabilities in the Microsoft Graphics Component on Microsoft Windows. These vulnerabilities could allow remote code execution and information disclosure in GDI+ and Windows Graphic Component if a user either visits a specially crafted website or opens a specially crafted document. To learn more about the vulnerability, see Microsoft Security Bulletin MS17-013 and Microsoft Security Bulletin MS17-011.


  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

How to obtain and install this update

Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

Update deployment information

For deployment information about this update, see Microsoft Knowledge Base Article 4013075.

Update removal information

We do not recommend that you remove any security update.

To remove this update, use the Programs and Features item in Control Panel.

Update restart information

This update does not require a system restart after you apply it unless files that are being updated are locked or are being used.

Update replacement information

This update replaces previously released update 3204724.

File information

File information
The English (United States) version of this software update installs files that have the attributes that are listed in the following tables.

Windows Vista and Windows Server 2008 file information

How to obtain help and support for this security update