KB5034184 is the cumulative monthly rollup update for Windows Server 2012. It was released on 9 January 2024 under the ‘Patch Tuesday’ program of Microsoft.
Windows Server 2012 reached ‘End of Support’ on 10 October 2023. Going forward, ESU or Extended Security Updates will be available for Windows Server 2012.
ESU or Extended Security Updates are cumulative. You can buy ESU for Windows Server 2012 on an annual renewal basis until October 2026.
KB5034184 has been superseded by KB5034830. You can read more about KB5034830 on this page.
Salient points
- KB5034184 is the monthly rollup update (ESU or Extended Security Update) for Windows Server 2012 for January 2024. It supersedes the KB5033429 update.
- KB5033429 is the monthly rollup update for December 2023. It was released on 12 December 2023. You can read more about KB5033429 on this page.
- KB5034588 is the Servicing Stack Update that corresponds to KB5034184. The SSU was released on 9 January 2024. You would need to deploy KB5034588 prior to installing the KB5034184 monthly rollup update.
- 22 security vulnerabilities affect Windows Server 2012 as part of the January 2024 security report.
- One CRITICAL security vulnerability affects Windows Server 2012. You can read more about this vulnerability in the vulnerabilities section.
- The issue with language packs continues to affect Windows Server 2012. If you install a language pack after installing KB5034184, you will need to re-install the KB55034184 update. This is because installing a language pack renders the monthly rollup update infructitious.
To install KB5034184, you will need a valid key for the Extended Security Updates because the Windows Server 2012 attained End of Support status on 10 October 2023.
Download KB5034184
KB5034184 is a cumulative monthly rollup update of the type of an Extended Security Update. It can be installed automatically or through a manual approach.
For automatic patching of the monthly rollup update, you could use one of the following methods:
- Windows Update
- WSUS or Windows Server Update Service
WSUS remains the best method to automatically import and deploy security updates or cumulative updates on Windows Servers. We strongly suggest using WSUS as the preferred method for rolling out updates.
However, you will still need a valid key to apply the Extended Security Updates on Windows Server 2012.
For manual installation, you can download the offline installer files from the Microsoft Update Catalog site. Alternatively, you can use the direct download links for KB5034184 shared below.
The manual installation of KB5034184 involves the following 2 steps:
- Download and install KB5034588 Servicing Stack Update
- Download and install the KB5034184 cumulative update
For each of these updates, we have shared the download links below.
Download KB5034588
The Servicing Stack Update file for KB5034588 has a size of 10.0 MB. Servicing Stack Updates, upon installation, do not cause the server to reboot. This Servicing Stack Update was released in January 2024.
Download KB5034184
The download links for KB5034184 are shared hereunder.
- Download KB5034184 from the Microsoft Update Catalog site
- Direct download link for cumulative update KB5034184
The size of the offline installer file for KB5034184 is 438.5 MB.
The server will reboot post-installation of the monthly rollup update. So, we do suggest installing the cumulative update as part of an organized change process within the IT infrastructure.
Vulnerabilities
There are 22 security vulnerabilities that have been disclosed for Windows Server 2012 as part of the January 2024 security bulletin released by Microsoft.
This includes a single CRITICAL severity threat.
CRITICAL vulnerabilities
There is a single CRITICAL security vulnerability that affects Windows Server 2012. The CRITICAL vulnerability could lead to ‘Security Feature Bypass’ attack.
CVE details | CVSS | Severity | Impact | Description |
---|---|---|---|---|
CVE-2024-20674 | 9.0 | CRITICAL | Security Feature Bypass | The authentication feature could be bypassed as this vulnerability allows impersonation. An authenticated attacker could exploit this vulnerability by establishing a machine-in-the-middle (MITM) attack or other local network spoofing technique, then sending a malicious Kerberos message to the client victim machine to spoof itself as the Kerberos authentication server. |
KB5034184 – Changelog
The following changes are part of the KB5034184 monthly rollup update (Extended Security Updates) for Windows Server 2012.
- This update contains miscellaneous security improvements to internal Windows OS functionality.
- This update brings in security changes for Windows Server 2012.
- The update also resolves the issue with the ActiveX scroll bar. The ActiveX scroll bar does not work in Internet Explorer 11 or in IE mode.
December 2023 Cumulative or Security Updates
- KB5033371 for Windows 10 version 1809
- KB5033373 for Windows 10 version 1607
- KB5033379 for Windows 10
- KB5033372 for Windows 10 21H2 and 22H2
- KB5033375 Cumulative Update for Windows 11 22H2 and 23H2
- KB5033369 Cumulative Update for Windows 11 21H2
- KB5033420 Monthly Rollup Update for Windows Server 2012 R2
- KB5033429 Monthly Rollup Update for Windows Server 2012
- KB5033383 Cumulative Update for Windows Server 2022
- KB5033118 Cumulative Update for Windows Server 2022
- KB5033371 Cumulative Update for Windows Server 2019
- KB5033373 Cumulative Update for Windows Server 2016
- Microsoft Edge upgrades to version 120.0.2210.61
November 2023 Cumulative or Security Updates
- KB5032196 Cumulative Update for Windows Server 2019
- KB5032197 Cumulative Update for Windows Server 2016
- KB5032198 Cumulative Update for Windows Server 2022
- KB5032247 Monthly Rollup Update for Windows Server 2012
- KB5032249 Monthly Rollup for Windows Server 2012 R2
Rajesh Dhawan is a technology professional who loves to write about Cyber-security events and stories, Cloud computing and Microsoft technologies. He loves to break complex problems into manageable chunks of meaningful information.