Update Rollup 23 for Exchange Server 2010 Service Pack 3

Applies to: Exchange Server 2010 Enterprise


This update rollup is a security update. This security update resolves vulnerabilities in Microsoft Exchange. To learn more about these vulnerabilities, see the following Common Vulnerabilities and Exposures (CVE):

Microsoft Common Vulnerabilities and Exposures CVE-2018-8302

Known issues in this security update

When you try to manually install this security update in "normal mode" (not running the update as an operating system administrator) by double-clicking the update file (.msp), some files are not correctly updated. When this issue occurs, you don’t receive an error message or any indication that the security update was not correctly installed. Also, Outlook Web Access (OWA) and the Exchange Control Panel (ECP) may stop working. This issue occurs on servers that are using user account control (UAC). The issue occurs because the security update doesn’t correctly stop certain Exchange-related services.

To avoid this issue, follow these steps to manually install this security update:

  1. Select Start, select All Programs, and then select Accessories.
  2. Right-click Command prompt, and then select Run as administrator.
  3. If the User Account Control dialog box appears, confirm that the default action is the action that you want, and then select Continue.
  4. Type the full path of the .msp file, and then press Enter.

This issue does not occur when you install the update from Microsoft Update.

How to get and install the update

Method 1: Microsoft Update

This update is available from Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to get security updates automatically, see Windows Update: FAQ.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

Method 3: Microsoft Download Center

You can get the stand-alone update package through the Microsoft Download Center.

Download icon
Download Update Rollup 23 for Exchange Server 2010 SP3 (KB4340733)

Update detail information

Installation instructions

Learn more about how to install the latest update rollup for Exchange Server 2010.

Also learn about the following update installation scenarios.

Restart requirement

The required services are restarted automatically after you apply this update rollup.

Removal information

To remove Update Rollup 23 for Exchange Server 2010 SP3, use the Add or Remove Programs item in Control Panel to remove update 4340733. 

Security update deployment information

For deployment information about this update, see security update deployment information: August 14, 2018

More Information

Installing this update on a DBCS version of Windows Server 2012

You can't install or uninstall Update Rollup 21 for Exchange Server 2010 SP3 on a double-byte character set (DBCS) version of Windows Server 2012 if the language preference for non-Unicode programs is set to the default language. To work around this issue, you must first change this setting. To do this, follow these steps:

  1. In Control Panel, select Clock, Region and Language, select Region, and then select Administrative.
  2. In the Language for non-Unicode programs area, select Change system locale.
  3. On the Current system locale list, select English (United States), and then select OK.

After you successfully install or uninstall Update Rollup 21, revert this language setting as appropriate.

Security update replacement information

This security update replaces previously released security update KB 4295699.

File information

File hash information

File name SHA1 hash SHA256 hash
SP3RU_Exchange2010-KB4340733-x64-en.msp 45B03E48600E3B1A12A5299A9A679ECB074621F4 41C18AB6C2C774398FB3584ACEDAA122CEBB4B38B506BCBFA978ED2AA3DB87B5

Exchange Server file information

The English (United States) version of this update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time together with your current daylight-saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

How to get help and support for this security update

Help for installing updates: Windows Update: FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support