Internet Explorer Security Patch
This cumulative security update resolves seven privately reported vulnerabilities and one publicly disclosed vulnerability in Internet Explorer. The more severe vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. This security update is rated Critical for all supported releases of Internet Explorer.
Affected Software
Operating System | Component | Maximum Security Impact | Aggregate Severity Rating | Bulletins Replaced by This Update |
Internet Explorer 5.01 and Internet Explorer 6 Service Pack 1 | ||||
Microsoft Windows 2000 Service Pack 4 |
Remote Code Execution |
Critical |
||
Microsoft Windows 2000 Service Pack 4 |
Remote Code Execution |
Critical |
||
Internet Explorer 6 | ||||
Windows XP Service Pack 2 and Windows XP Service Pack 3 |
Remote Code Execution |
Critical |
||
Windows XP Professional x64 Edition Service Pack 2 |
Remote Code Execution |
Critical |
||
Windows Server 2003 Service Pack 2 |
Remote Code Execution |
Moderate |
||
Windows Server 2003 x64 Edition Service Pack 2 |
Remote Code Execution |
Moderate |
||
Windows Server 2003 with SP2 for Itanium-based Systems |
Remote Code Execution |
Moderate |
||
Internet Explorer 7 | ||||
Windows XP Service Pack 2 and Windows XP Service Pack 3 |
Remote Code Execution |
Critical |
||
Windows XP Professional x64 Edition Service Pack 2 |
Remote Code Execution |
Critical |
||
Windows Server 2003 Service Pack 2 |
Remote Code Execution |
Critical |
||
Windows Server 2003 x64 Edition Service Pack 2 |
Remote Code Execution |
Critical |
||
Windows Server 2003 with SP2 for Itanium-based Systems |
Remote Code Execution |
Critical |
||
Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2 |
Remote Code Execution |
Critical |
||
Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2 |
Remote Code Execution |
Critical |
||
Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2** |
Remote Code Execution |
Critical |
||
Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2** |
Remote Code Execution |
Critical |
||
Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2 |
Remote Code Execution |
Critical |
||
Internet Explorer 8 | ||||
Windows XP Service Pack 2 and Windows XP Service Pack 3 |
Remote Code Execution |
Critical |
||
Windows XP Professional x64 Edition Service Pack 2 |
Remote Code Execution |
Critical |
||
Windows Server 2003 Service Pack 2 |
Remote Code Execution |
Critical |
||
Windows Server 2003 x64 Edition Service Pack 2 |
Remote Code Execution |
Critical |
||
Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2 |
Remote Code Execution |
Critical |
||
Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2 |
Remote Code Execution |
Critical |
||
Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2** |
Remote Code Execution |
Critical |
||
Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2** |
Remote Code Execution |
Critical |
||
Windows 7 for 32-bit Systems |
Remote Code Execution |
Critical |
||
Windows 7 for x64-based Systems |
Remote Code Execution |
Critical |
||
Windows Server 2008 R2 for x64-based Systems** |
Remote Code Execution |
Critical |
||
Windows Server 2008 R2 for Itanium-based Systems |
Remote Code Execution |
Critical |
**Server Core installation not affected. The vulnerabilities addressed by this update do not affect supported editions of Windows Server 2008 or Windows Server 2008 R2 as indicated, when installed using the Server Core installation option. For more information on this installation option, see the MSDN articles, Server Core and Server Core for Windows Server 2008 R2. Note that the Server Core installation option does not apply to certain editions of Windows Server 2008 and Windows Server 2008 R2; see Compare Server Core Installation Options.