Cumulative security update for Internet Explorer: October 3, 2019

Internet Explorer 11 on Windows Server 2012 R2Internet Explorer 11 on Windows Server 2012Internet Explorer 11 on Windows Server 2008 R2 SP1


This security update resolves a vulnerability in Internet Explorer. To learn more about this vulnerability, see the following article:

Additionally, see the following articles for more information about cumulative updates:


  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

How to get and install this update

Before installing this update

You must have the following updates installed and restart the device before you install this update (KB 4524135). Installing these updates improves the reliability of the update process and mitigates potential issues while installing this update.

After these updates are installed, we strongly recommend that you also install the latest servicing stack update (SSU) (KB4516655). If you are using Windows Update, the latest SSU will be offered to you automatically. To get the standalone package for the latest SSU, search for it in the Microsoft Update Catalog.

Install this update

To install this update, use one of the following release channels.

Release Channel Available Next Step
Windows Update and Microsoft Update Yes

None. This update will be downloaded and installed automatically from Windows Update for  the following versions:

  • Internet Explorer 11 for Windows Server 2012 and Windows Embedded 8 Standard
  • Internet Explorer 8 for Windows Server 2008 SP2

For all other versions, see the other options below.

Microsoft Update Catalog Yes To get the standalone package for this update, go to the Microsoft Update Catalog website.
Windows Server Update Services (WSUS) Yes

This update will automatically synchronize with WSUS if you configure Products and Classifications as follows:

Product: Windows Server 2008 Service Pack 2, Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1, Windows Server 2012, Windows Embedded 8 Standard, Windows 8.1, Windows Server 2012 R2

Classification: Security Updates

Known issues in this security update

Known issue


For Windows 7 SP1 and Windows Server 2008 R2 SP1, VBscript in Internet Explorer 11 should be disabled by default after installing updates starting with KB4507437 (Preview of Monthly Rollup released July 16, 2019) or KB4511872 (Internet Explorer Cumulative Update released August 13, 2019) but in some circumstances, may not be disabled as intended.

To work around this issue, follow these steps:

  1. In Internet Explorer 11, select Tools or press and hold the Alt key on your keyboard and then select the letter X to see the menu.
  2. Select Internet Options.
  3. Select the Security tab.
  4. Select the Internet icon in the Select a zone to view or change security settings field.
  5. Select the Default Level button.
  6. Select the Ok button to accept settings and close the dialog box.
  7. Close Internet Explorer 11, on next start, VBScript will now be disabled.

We are working on a resolution and will provide an update in an upcoming release.

On Windows 7, the "About Internet Explorer" dialog box in Internet Explorer 11 may list a different KB number, even when you have KB4524135 installed.

No action is needed. To verify you have KB4524135 installed, select the KB number listed. It should open the article for KB4524135.

File information

File verification

File attributes

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables.

Note The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.

Windows 8.1, Windows RT 8.1 and Windows Server 2012 R2

Internet Explorer 11

Windows Server 2012

Internet Explorer 11

Internet Explorer 10

Windows 7 and Windows Server 2008 R2

Internet Explorer 11

Windows Server 2008

Internet Explorer 9

Information about protection and security


Learn about the terminology that Microsoft uses to describe software updates.