January 17, 2018—KB4057402 (Preview of Monthly Rollup)

Applies to: Windows Server 2012Windows Embedded 8 Standard

Improvements and fixes


This non-security update includes improvements and fixes that were a part of KB4056896 (released January 4, 2018) and also includes these new quality improvements as a preview of the next Monthly Rollup update:

  • Addresses issue where every smart card logon to a Windows Terminal Server/Remote Desktop Server may result in a handle leak in the certprop service. Token leaks result in session leaks on computers that have installed MS16-111/KB3175024 and superseding fixes.
  • Addresses the following issues with the WinRM service:
    • A threading issue that may cause the WinRM service to crash under load. This is a client-side solution, so you must apply it to the affected computers(s) and the computers that communicate with the WinRM service.
    • A system performance issue that may cause logon to stop responding with the message, "Please wait for the Remote Desktop Configuration". This was caused by a deadlock in the WinRM service.
  • Addresses issue originally called out in KB4056896 where calling CoInitializeSecurity with the authentication parameter set to RPC_C_AUTHN_LEVEL_NONE resulted in the error STATUS_BAD_IMPERSONATION_LEVEL.

For more information about the resolved security vulnerabilities, see the Security Update Guide.

Known issues in this update


Microsoft is not currently aware of any issues with this update.

How to get this update


This is provided as an Optional update on Windows Update. For more information about how to run Windows Update, see How to get an update through Windows Update. To get the standalone package for this update, go to the Microsoft Update Catalog website.

File information

For a list of the files that are provided in this update, download the file information for update 4057402.