MS15-051: Vulnerabilities in Windows kernel-mode drivers could allow information disclosure: May 12, 2015

Support for Windows Server 2003 ended on July 14, 2015

Microsoft ended support for Windows Server 2003 on July 14, 2015. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

Summary
This security update resolves vulnerabilities in Windows, the Microsoft .NET Framework, Microsoft Office, Microsoft Lync, and Microsoft Silverlight. The more severe of these vulnerabilities could allow for one of the following scenarios:
  • Remote code execution if a user opens a specially crafted document or goes to an untrusted webpage that contains embedded TrueType fonts
  • Elevation of privilege if an attacker logs on locally and runs arbitrary code in kernel mode. An attacker could then take the following actions:
    • Install programs
    • View, change, or delete data
    • Create new accounts that have full user rights
An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability cannot be exploited remotely or by anonymous users.
Introduction
Microsoft has released security bulletin MS15-051. To learn more about this security bulletin:

How to obtain help and support for this security update

Help installing updates:Support for Microsoft Update

Security solutions for IT professionals:TechNet Security Troubleshooting and Support

Help protect your Windows-based computer from viruses and malware:Virus Solution and Security Center

Local support according to your country:International Support

More information

Known issues and additional information about this security update

The following article contains additional information about this security update as it relates to individual product versions. The article may contain  information about known issues.
  • 3045171 MS15-044 and MS15-051: Description of the security updates for Windows font drivers Known issues in security update 3045171:
    • After you install this security update (3045171), you experience crashes when you use Windows GDI+ to create text outline-based path objects on a computer that's running Windows 7 or an earlier version of Windows.

      To resolve this problem, install update 3065979. For more information, click the following article number to go to the article in the Microsoft Knowledge Base:
      3065979 "GsDraw error (1): GenericError" error occurs and application crashes when you create text outline in Windows
    • After you install this security update (3045171) on a computer that's running Windows Vista or Windows Server 2008, you may receive an error message that resembles the following for the FontCache service in the Services Microsoft Management Console (MMC):

      Failed to Read Description. Error Code: 15100


      When you open FontCache service in the Services MMC, you may receive an error message that resembles the following:

      Configuration Manager: A general error occurred
      The resource loader failed to find MUI file


      To resolve this problem, install update 971512. For more information, click the following article number to go to the article in the Microsoft Knowledge Base:
      971512 Description of the Windows Graphics, Imaging, and XPS Library

Security update deployment information

Windows Server 2003 (all editions)

Reference table

The following table contains the security update information for this software.
Security update file namesFor all supported 32-bit editions of Windows Server 2003:
WindowsServer2003-KB3045171-x86-ENU.exe

For all supported x64-based editions of Windows Server 2003:
WindowsServer2003-KB3045171-x64-ENU.exe

For all supported Itanium-based editions of Windows Server 2003:
WindowsServer2003-KB3045171-ia64-ENU.exe
Installation switchesSee Microsoft Knowledge Base Article 934307
Update log fileKB3045171.log
Restart requirementYes, you must restart your system after you apply this security update.
Removal informationUse the Add or Remove Programs item in Control Panel, or use the Spuninst.exe utility that is located in the %Windir%\$NTUninstallKB3045171$\Spuninst folder.
File informationSee Microsoft Knowledge Base Article 3045171
Registry key verificationHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows Server 2003\SP3\KB3045171\Filelist

Windows Vista (all editions)

Reference table

The following table contains the security update information for this software.
Security update file namesFor all supported 32-bit editions of Windows Vista:
Windows6.0-KB3045171-x86.msu

For all supported x64-based editions of Windows Vista:
Windows6.0-KB3045171-x64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementYes, you must restart your system after you apply this security update.
Removal informationWUSA.exe does not support uninstall of updates. To uninstall an update that is installed by WUSA, click Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3045171
Registry key verificationNote A registry key does not exist to validate the presence of this update.

Windows Server 2008 (all editions)

Reference table

The following table contains the security update information for this software.
Security update file namesFor all supported 32-bit editions of Windows Server 2008:
Windows6.0-KB3045171-x86.msu

For all supported x64-based editions of Windows Server 2008:
Windows6.0-KB3045171-x64.msu

For all supported Itanium-based editions of Windows Server 2008:
Windows6.0-KB3045171-ia64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementYes, you must restart your system after you apply this security update.
Removal informationWUSA.exe does not support uninstall of updates. To uninstall an update that is installed by WUSA, click Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3045171
Registry key verificationNote A registry key does not exist to validate the presence of this update.

Windows 7 (all editions)

Reference table

The following table contains the security update information for this software.
Security update file nameFor all supported 32-bit editions of Windows 7:
Windows6.1-KB3045171-x86.msu

For all supported x64-based editions of Windows 7:
Windows6.1-KB3045171-x64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementYes, you must restart your system after you apply this security update.
Removal informationTo uninstall an update that is installed by WUSA, use the /Uninstall setup switch. Or, click Control Panel, and then click System and Security. Under Windows Update, click View installed updates, and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3045171
Registry key verificationNote A registry key does not exist to validate the presence of this update.

Windows Server 2008 R2 (all editions)

Reference table

The following table contains the security update information for this software.
Security update file nameFor all supported x64-based editions of Windows Server 2008 R2:
Windows6.1-KB3045171-x64.msu

For all supported Itanium-based editions of Windows Server 2008 R2:
Windows6.1-KB3045171-ia64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementYes, you must restart your system after you apply this security update.
Removal informationTo uninstall an update that is installed by WUSA, use the /Uninstall setup switch. Or, click Control Panel, and then click System and Security. Under Windows Update, click View installed updates, and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3045171
Registry key verificationNote A registry key does not exist to validate the presence of this update.

Windows 8 and Windows 8.1 (all editions)

Reference table

The following table contains the security update information for this software.
Security update file nameFor all supported 32-bit editions of Windows 8:
Windows8-RT-KB3045171-x86.msu

For all supported x64-based editions of Windows 8:
Windows8-RT-KB3045171-x64.msu

For all supported 32-bit editions of Windows 8.1:
Windows8.1-KB3045171-x86.msu

For all supported x64-based editions of Windows 8.1:
Windows8.1-KB3045171-x64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementYes, you must restart your system after you apply this security update.
Removal informationTo uninstall an update that is installed by WUSA, use the /Uninstall setup switch. Or, click Control Panel, click System and Security, and then click Windows Update. Under See also, click Installed updates, and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3045171
Registry key verificationNote A registry key does not exist to validate the presence of this update.

Windows Server 2012 and Windows Server 2012 R2 (all editions)

Reference table

The following table contains the security update information for this software.
Security update file nameFor all supported editions of Windows Server 2012:
Windows8-RT-KB3045171-x64.msu

For all supported editions of Windows Server 2012 R2:
Windows8.1-KB3045171-x64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementYes, you must restart your system after you apply this security update.
Removal informationTo uninstall an update that is installed by WUSA, use the /Uninstall setup switch. Or, click Control Panel, click System and Security, and then click Windows Update. Under See also, click Installed updates, and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3045171
Registry key verificationNote A registry key does not exist to validate the presence of this update.

Windows RT and Windows RT 8.1 (all editions)

Reference table

The following table contains the security update information for this software.
DeploymentThese updates are available through Windows Update only.
Restart RequirementYes, you must restart your system after you apply this security update.
Removal InformationClick Control Panel, click System and Security, and then click Windows Update. Under See also, click Installed updates, and then select from the list of updates.
File InformationSee Microsoft Knowledge Base Article 3045171
File information

File hash information

File nameSHA1 hashSHA256 hash
Windows6.0-KB3045171-ia64.msu244587B36D7E82D315268046E73D3419DD603E52AE0F76A5439C521608E5203CBD505E2964F51AC0EB6094E640889C4805B35BAE
Windows6.0-KB3045171-x64.msuA96111F5702B4729B177A696326E8DC9E57098A724408616430A8B39D4465A9890CC0EB446492C86C3BF4DB4B71304998BC8B811
Windows6.0-KB3045171-x86.msu620EA5CB09E9D2D1C1902FB55140C5C97960B8688006121E38502A58E70E9A85A38B91297AA2345FB95566EBCA1B1823E816B932
Windows6.1-KB3045171-ia64.msuE118BB9A405DA803A8B23F35B4B8D2740A21258E8630F60B031BB6C0ADCB5462CDB49E519C1E3D389A119BA04B1D164F470E9DA9
Windows6.1-KB3045171-x64.msu7BC15709A49983D14F746E7141EC1EDCDC71ADB5B2A95E83161983805850EA3C06C5F4F5C649544857746C1C38B999DF1909A32E
Windows6.1-KB3045171-x86.msu9AEDF5CEDA7F456ACD15F9FF8E7659D3C7E1DEE9FC59D31BB53729CBF13F5D79A05349E2A6B4197611711AF4E734583F7301B370
Windows8.1-KB3045171-x64.msuB787644D4D3252D44DB394130C7A9A1ADB6740B2C3F433C272B71C6E81A0D0AF796CA7FB9137F692D3DB32AEACBAC9DEFE24D4B0
Windows8.1-KB3045171-x86.msu027BCB69F530DDCE6BB05187F49213E85C0A18DF672C3FA4D08CAF5448486D36BB25AB0FB3C5DFB958EB5EB3D810D93529E8E62C
Windows8-RT-KB3045171-x64.msu71A6AFEF8AD048E56641B97BAAFDA787B98CAA667408B0330C95961C983E6294AB6AF615FA6EAEF0A12AC2ABFECF58367316E916
Windows8-RT-KB3045171-x86.msu14EA14F7B808B29F452B198429932DFE660E638D50AC479AE83A71A4DDF62F5FBE1F522268F904170C46E75BDD4B4FCAE540CC1C
WindowsServer2003-KB3045171-ia64-DEU.exe4EAEDB9041E2A02F1CBDC397A59D9291BD9085C37EA950BAEEFBF6A996AD5F8FEEE604F20CE2AAD6295DA8C4FF91588A1F8190B7
WindowsServer2003-KB3045171-ia64-ENU.exe42C90E2644544FB785C7F1EE4ED904C02B70A2BC184CB189DE4B5E096F175DFBAA1D7F6BD8E961E5E6C51BFBE9E98EBDF217C049
WindowsServer2003-KB3045171-ia64-FRA.exeEA8F4577B1F34E781D689F00A51677C529D3A314E99431C93EA155690EF5EFEE6B7EC06B57CBC0B48024036DD53406EC6023A4D1
WindowsServer2003-KB3045171-ia64-JPN.exeB62B39E06277ACFEF4F900C711BB2E09C657B6139CBEE002B448AF388A7FC95DCE7A4DD2FA1283476B61A5784C0D2553D34AE28C
WindowsServer2003-KB3045171-x64-CHS.exe7E54E45FD3F668C97F0E830E0F071A1B25502A987A88289E5F0C92890DD4EA9C85F83CE97A94C527EC477A03C63726AB14B55DEC
WindowsServer2003-KB3045171-x64-CHT.exe1D8B89C0C3E4717CF7903A7CA5BC2EC351D616F65E07309D3074AF5A9056BC6A92BD1B0815CBA4188B56FC30517FD7EA53D16FFD
WindowsServer2003-KB3045171-x64-DEU.exe865584B92193740FFC5CCEDF11FF67D5631A0754B0747CA84CFAC4CF93C5C772867EEAB315A8B1B889FCC41581BE3AE3051A5D3A
WindowsServer2003-KB3045171-x64-ENU.exeA3129F8EA90CE3F49D432BE087BCB2C086B22728461BB729719E9BC3ABDA29D6D5B4C8D20FBA74FB4CC40F886EFFC4AE100BDC86
WindowsServer2003-KB3045171-x64-ESN.exe5882B44F7402796D70B29C34A3757009C74CFA1867B47DA2B1771D514A540DBD07816E3F7EEBE42F20EF82F6AE22CB602964B8BA
WindowsServer2003-KB3045171-x64-FRA.exe7D710D51407192ABDA507CE58B063A11A73078CD874BC86503FC78DFBE0FFC4896007723525B4FECB987E42CD50B1BF9790A205C
WindowsServer2003-KB3045171-x64-ITA.exeFF5391B665D3757524795BC261914BA2F398B04FBD86BFA696C0834957B4682DB988F2669BBCE9CB8D968D93740E6130229A7099
WindowsServer2003-KB3045171-x64-JPN.exe390441641B45570BA10B05A1685B0A2E53FEFD36DD39E8C4A1B64FB59029D348D0765D2EEBBB8AC6A33AF9C216A1469504F5A08A
WindowsServer2003-KB3045171-x64-KOR.exeABD6F0F4BEA723F0CEBFCC7A3355737EB5286C9A46246DF6F98FE753720402F91B85977C3FAB1A38331ACFF0E3029760EAF8D35D
WindowsServer2003-KB3045171-x64-PTB.exe823AC2F0E5B4A74530AAD2C63BE8255FBA833FDA8F6F3CA8182781D4FFC3006B95BFE79FABE9270526E7FB61A2AE4DEF91A8DB56
WindowsServer2003-KB3045171-x64-RUS.exe38A316E1E2837E1A5002ADA9A62D0CC2DD83921332261A4A2974085FD356EE3226A781308D7F58BF8AE7169DC1D8A00EF794880D
WindowsServer2003-KB3045171-x86-CHS.exeD6DB53026F2372C2179BCCD3D0D78EDC5866843B1EC4955C69D1221A9BB1A00111500DA87B17E3628485852B2F1FDAA988F72314
WindowsServer2003-KB3045171-x86-CHT.exe3F108F3479A77B0B8775720B7D8364A4BC851D35CF1D664E55F1488D158978C13EC91EF054D648EEA3BC8D3DCA292C7C14349E99
WindowsServer2003-KB3045171-x86-CSY.exe7C7014EABA21B8581942712EFED6AB4548D9941DE1509DADD5AB657ED1657A778B4BAED9D1DCB9E83F19C505019CFC50DA3EF510
WindowsServer2003-KB3045171-x86-DEU.exe8D18201139A418D03194BF0C02EA2C05367B4C6001584565C6883A091064229E0D8EE4605BAC196670CFC14563DE58E763391B1F
WindowsServer2003-KB3045171-x86-ENU.exe1EFAA58A56C7A1657D52368FC03C848A0DF02065900D5B475D3627699C96E09FDA9958B635ACD3F3B7F4F5B1ACDEA5E9E50F8167
WindowsServer2003-KB3045171-x86-ESN.exeF7B1291B5442570784012A403563802803002EBBEAA5944B515F49E5EC84306675C1B1BB09EF7FC2F21592E553E8CD50251ACCB5
WindowsServer2003-KB3045171-x86-FRA.exe5BD1F9BD3D0FFB0BFC9DFAAC6CF33E085AB2B1EE5034DDDFC13A61442159626C9E563CF4B5FB6BEADD7C697C4DE597DC24EBCD7C
WindowsServer2003-KB3045171-x86-HUN.exe71BF31CDD40641B8C5D7E138722BEF89F8F22C58D83F21FEFBF5443FF93D656DF43FC56EF97839DF33E465F79BFBD496CB348FB5
WindowsServer2003-KB3045171-x86-ITA.exe2973B2F02006A8474E111F990908FDCD918509B96C080F8F350E9D48EE6036815803CE33A056CE5865128FF533EDD73E3D5AAA43
WindowsServer2003-KB3045171-x86-JPN.exe521FD8869F610211BF7A8037C934B3B35B81F30A26E337842747D3BD051C68B292CC70FE661DEF2408F1DE56B56932B0F39F4DE9
WindowsServer2003-KB3045171-x86-KOR.exeE941CAD25C216EB06198A765743F66CFB40BAC8040F5BA2AAE85D72BC7AA5EC067787A59AF40E250DB0E8B3493A82945CC8A504F
WindowsServer2003-KB3045171-x86-NLD.exe81D0F67B3D1A084B30AFFAE04B7604A22FAA82AB4D46B6A5EFAB61529C12FC7D447C0B58E7D9C8D97DC76B044A9730E3777515ED
WindowsServer2003-KB3045171-x86-PLK.exeB75CA95EDEF6C502F8CAF8448BEE5B569B97F4B3DEEEC6B0602B946C6DA2A16F591D4682E912450D4521ADD7044F6A5BF07D64B5
WindowsServer2003-KB3045171-x86-PTB.exe3F2957CBF037CF2D914C39A64ED7EFFB7879422CFF41E5425D91E74DC93D59727F94D7FA31EF30C7AAD11A1D992954AB059482D8
WindowsServer2003-KB3045171-x86-PTG.exe31658A69D55A28E63EB6AC9EB52BF08CC3FA25F9885D115CF5A98E2B8E32682182E9F714BE1A89BA8A9D06D70C0A0147B932F239
WindowsServer2003-KB3045171-x86-RUS.exe070F8DF1DB761134134ADD755B56B7DC51300A2432CF3A5A206E2710D1BF804C6B792468D5A4DEAD729B83E82666EB26EC77784D
WindowsServer2003-KB3045171-x86-SVE.exe379F14B4B8154AC0483AB01BD45DD4E678D1378A194036D91AD629359AB3F8FC532649B8CAE41364B06AD7AF6A8B9F0CDBEA5AE6
WindowsServer2003-KB3045171-x86-TRK.exe1E102AF5B7739DDC6E1C75D56181F8C72CAFC8D070BF8656007077ABD17E8F0C01F681B55135FB694E2BB8E5E5F22A8B790F2587
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE
Properties

Article ID: 3057191 - Last Review: 06/24/2015 22:39:00 - Revision: 2.0

Windows Server 2012 R2 Datacenter, Windows Server 2012 R2 Standard, Windows Server 2012 R2 Essentials, Windows Server 2012 R2 Foundation, Windows 8.1 Enterprise, Windows 8.1 Pro, Windows 8.1, Windows RT 8.1, Windows Server 2012 Datacenter, Windows Server 2012 Standard, Windows Server 2012 Essentials, Windows Server 2012 Foundation, Windows 8 Enterprise, Windows 8 Pro, Windows 8, Windows RT, Windows Server 2008 R2 Service Pack 1, Windows 7 Service Pack 1, Windows Server 2008 Service Pack 2, Windows Vista Service Pack 2, Microsoft Windows Server 2003 Service Pack 2

  • atdownload kbbug kbexpertiseinter kbfix kbsecbulletin kbsecurity kbsecvulnerability KB3057191
Feedback