Patch the IIS Vulnerability

Your Windows server might be vulnerable to a recent bug impacting servers running IIS and versions of Windows from 2008 R2 to current versions Windows Server 2012 and 2012 R2. Microsoft have now released the security update to remove the vulnerability.

This tutorial will guide you through the steps to manually install Windows updates. Once you complete this installation, your server will have the necessary patch to ensure your system is not vulnerable to this bug.

If you have any questions or need help checking your server, please e-mail us at support@simplyhosting.cloud or call us at 0345 259 1234 Monday through Friday between 8am – 6pm GMT.

Windows Vulnerability Patch Installation

If you have opted to install Windows updates automatically then the patch will have been installed depending on the schedule you have chosen. Microsoft released the vulnerability patch late on 14th April 2015 and the specific security update is called 3042553. We recommend installing any Windows updates labelled as important.

To check how your schedule is set and manually install updates outside of the normal schedule or install a specific update then follow the steps below. Please note there may be some small differences between our guide and your own version of Windows, but overall they reflect the steps to check the schedule and install Windows updates manually.

Windows Server 2008 R2:

  1. Click on the ‘Start’ menu
  2. Select ‘All Programs’
  3. Select ‘Windows Update’
  4. Click ‘Check for updates’ from the left-hand side of the screen
  5. Then click ‘Change settings’ from the left-hand side of the screen
  6. From the ‘Important updates’ dropdown, select ‘Download updates but let me choose whether to install them’
  7. Click on ‘Updates are available’
  8. Make sure the box for the update you wish to install is ticked or simply choose to install all available updates
  9. Click ‘Install updates’

Upon completion, you will be prompted to restart the server for the updates to take effect. Once you’ve done that, your server will no longer be vulnerable to Sandworm. You will need to follow these steps for each of the Windows Server 2008 R2 you have with Simply Cloud.

Windows Server 2012:

  1. Click on the ‘Start’ menu
  2. Open the Control Panel
  3. Select ‘System and Security’ (this will only appear if the control panel is in ‘Category’ view but if it isn’t then ‘Windows Update’ will be one of the items listed under ‘All Control Panel Items’)
  4. Click on ‘Windows Update’
  5. Click ‘Check for updates’ from the left-hand side of the screen
  6. From the ‘Important update’s’ dropdown, select ‘Download updates but let me choose whether to install them’
  7. Click on ‘Updates are available’
  8. Make sure the box for the update you wish to install is ticked or simply choose to install all available updates
  9. Click ‘Install updates’

Upon completion, you will be prompted to restart the server for the updates to take effect. Once you’ve done that, your server will no longer be vulnerable.

You will need to follow these steps for each of the Windows Server 2012 you have with Simply Cloud.


Was this article helpful?

Related guides