You are currently offline, waiting for your internet to reconnect

MS14-011: Description of the security update for Visual Basic Scripting Edition (VBScript) 5.6: February 11, 2014

Support for Windows XP has ended

Microsoft ended support for Windows XP on April 8, 2014. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

Support for Windows Server 2003 ended on July 14, 2015

Microsoft ended support for Windows Server 2003 on July 14, 2015. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

INTRODUCTION
Microsoft has released security bulletin MS14-011. To view the complete security bulletin, go to one of the following Microsoft websites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your Windows-based computer from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

Prerequisites to apply this security update

To install this security update, you must have Microsoft Visual Basic Scripting Edition (VBScript) 5.6 installed on the computer.

VBScript 5.6 is installed by the following:
  • Microsoft Internet Explorer 6
  • Windows Server 2003. Versions include the following:
    • x86-based Service Pack 2 (SP2) 
    • x64-based SP2 
    • Itanium-based SP2
  • Windows XP. Versions include the following:
    • x86-based SP2
    • x64-based SP2
  • Windows Script Host 5.6
To determine the version of VBScript that is installed on the computer, follow these steps:
  1. Open Windows Explorer.
  2. Locate the following directory:
    %systemroot%\system32
  3. Right-click the Vbscript.dll file, and then click Properties.
  4. Click the Details tab to view the contents of the File Version field. For example, the file version may be 5.6.0.8825. 
If the file version starts with 5.6, as in the example, VBScript 5.6 is installed on the computer.

Restart information

You may have to restart the computer after you install this security update.

Security update replacement information

This security update replaces the following security update:
981350 MS10-022: Description of the security update for Visual Basic Scripting (VBScript) 5.6: April 13, 2010

Removal information

To remove this security update, take one of the following actions:
  • Use the Add or Remove Programs item in Control Panel.
  • Use the Spuninst.exe utility that is located in the following folder:
    %Windir%\$NTUninstallKB981350$\Spuninst

File information

The English (United States) version of this security update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.
For all supported x86-based versions of Windows Server 2003 SP2
File nameFile versionFile sizeDateTimePlatform
Vbscript.dll5.6.0.8852401,40812-Dec-201300:11x86
For all supported x64-based versions of Windows Server 2003 SP2 and Windows XP Professional SP2
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Vbscript.dll5.6.0.8852662,52812-Dec-201313:50x64SP2SP2QFE
Wvbscript.dll5.6.0.8852401,40812-Dec-201313:50x86SP2SP2QFE\WOW
For all supported Itanium-based versions of Windows Server 2003 SP2
File nameFile versionFile sizeDateTimePlatform
Vbscript.dll5.6.0.8852401,40812-Dec-201300:11x86
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service dos
Properties

Article ID: 2909213 - Last Review: 02/11/2014 18:11:00 - Revision: 1.0

  • Microsoft Windows XP Service Pack 2
  • Microsoft Windows Server 2003 Service Pack 2
  • kbqfe kbexpertiseinter kbsecurity kbsecbulletin kbsecvulnerability kbbug kbfix kbsurveynew KB2909213
Feedback
tml>/c.microsoft.com/ms.js'" + "'><\/script>");