Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: January 8, 2019

Applies to: Exchange Server 2013Exchange Server 2016Exchange Server 2019


This update rollup is a security update. This security update resolves vulnerabilities in Microsoft Exchange. To learn more about these vulnerabilities, see the following Common Vulnerabilities and Exposures (CVE):

Known issues in this security update

  • When you try to manually install this security update by double-clicking the update file (.msp) to run it in "normal mode" (that is, not as an administrator), some files are not correctly updated.

    When this issue occurs, you don’t receive an error message or any indication that the security update was not correctly installed. Also, Outlook Web Access (OWA) and the Exchange Control Panel (ECP) may stop working. This issue occurs on servers that are using user account control (UAC). The issue occurs because the security update doesn’t correctly stop certain Exchange-related services.

    To avoid this issue, follow these steps to manually install this security update:

    1. Select Start, select All Programs, and then select Accessories.
    2. Right-click Command prompt, and then select Run as administrator.
    3. If the User Account Control dialog box appears, verify that the default action is the action that you want, and then select Continue.
    4. Type the full path of the .msp file, and then press Enter.

    This issue does not occur when you install the update from Microsoft Update.

  • Exchange services may remain in a disabled state after you install this security update. This condition does not indicate that the update is not installed correctly. This condition may occur if the service control scripts experience a problem when they try to return Exchange services to its usual state. To fix this issue, use Services Manager to restore the startup type to Automatic, and then start the affected Exchange services manually. To avoid this issue, run the security update from an elevated command prompt. For more information about how to open an elevated command prompt, visit the following Microsoft webpage: Start a Command Prompt as an Administrator

How to get and install the update

Method 1: Microsoft Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Windows Update: FAQ.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

Method 3: Microsoft Download Center

You can get the stand-alone update package through the Microsoft Download Center.

More information

Security update deployment information

For deployment information about this update, see security update deployment information: January 8, 2019

Security update replacement information

This security update replaces the following previously released updates:

File information

File hash information

File name SHA1 hash SHA256 hash
SU1_Exchange2019-KB4471389-x64-en.msp 058E9A9B761C6E269F4CE86F743B3ED25EFB2238 0BAD560A30E4C5669DA085BB9777AA99E6C5079758F0D7259B56D0FDFD59420F
CU10SU4_Exchange2016-KB4471389-x64-en.msp 0BACA4316B2F936F9AA45050E8B81DA2A3981C87 FC063171B37D51DCE641D9969EE917A84F54BF2D8E7E9DC909EC034BEA648F93
CU11SU2_Exchange2016-KB4471389-x64-en.msp A63476831A2999570001759AC6A2D9B031493BFA 989143AEB8109C94AB0D49CF3861FFEA2213597117B48F651108711AED80A4A6
CU21SU3_Exchange2013-KB4471389-x64-en.msp 885D0267EB4AE1C364619FAD4B022DE6C607D9CD B053AEAAD24E50E0D458E50E51DAC2172BAE7CBFCD32C4C6CE6B295933A315A0

Exchange server file information

The English (United States) version of this update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time together with your current daylight-saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

How to get help and support for this security update

Help for installing updates: Protect yourself online

Help for protecting your Windows-based computer from viruses and malware: Microsoft Security

Local support according to your country: International Support