KB4507459 updates Windows 10 1607 to Build 14393.3115 – 16 July 2019

Microsoft rolls out KB4507459 cumulative update for Windows 10 1607 users which in turn enhances the existing build to 14393.3115. With this release, the Company brings remarkable fixes in personal identification number, Remote Desktop Server, Window-Eyes screen reader application, and others. Alongside, KB4507459 includes also some known issues in STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5), in 2245 (NERR_PasswordTooShort), and in others.

The company has provided temporary solutions to these and guaranteed to work upon them in the forthcoming days. Aside to this, you can download KB4507459 as .msi files by visiting the link provided at the end of this guide. Today, in this tutorial, we guide on how to incorporate the improvements associated with the build 14393.3115. Here is the complete catalog of  Windows 10 cumulative updates.


Fixes and Improvements for Windows 10 1607

Here are the key changes that appear along with this patch update-

  • They work upon an issue that may restrict the personal identification number (PIN) prompt from appearing when authenticating in Internet Explorer.
  • Windows expert works upon an issue with leaking Windows notification sockets that causes Windows to run out of ports. 
  • They update the time zone information for Brazil.
  • The team addresses an issue that represents the Power button on the Ctrl+Alt+Del screen. This issue occurs when the “User Configuration\Administrative Templates\Start Menu and Taskbar\Remove and restrict access to the Shut Down, Restart, Sleep, and Hibernates commands” policy is enabled.
  • Tech community discusses an issue that fails to bypass automatic sign in (Autologon) when you press and hold the Shift key during startup.
  • Windows expert team works upon an issue that may restrict the Netlogon service from establishing a secure channel and reports the error, “0xC000007A – ERROR_PROC_NOT_FOUND.” 
  • The patch KB4507459 resolves the issue that causes Windows Defender Application Control to create excessively events related to dynamic code generation. 
  • Microsoft team addresses a bug that let applications using windows.storage.dll discontinue working. In the course of doing so, it demonstrates ExceptionCode c0000005 (Access violation) when this particular process closes. 
  • The team expert announces that if you restart one of the nodes of the S2D cluster, you may experience Storage Spaces Direct (S2D) pool to lose Pool Quorum and prevents access to the S2D volumes
  • With this Build 14393.3115, Microsoft works upon Remote Desktop Web Access (RDWeb) that allows user passwords to be updated even if there is a “Confirm New Password” field error. 
  • In this cumulative update, they identify the issue which may cause a Remote Desktop to quit responding. According to them, it occurs when someone who is using drive redirection disconnects.
  • Addresses an issue that may restrict some applications from running as expected on clients of Active Directory Federation Services 2016 (AD FS 2016) after installing KB4493473 on the server. Applications that may manifest this behavior use an IFRAME during non-interactive authentication requests and receive X-Frame Options set to DENY.
  • They work upon an issue that obstructs Microsoft Application Virtualization (App-V) scripting from working if you run it when you’re not connected to a domain controller (DC). Besides, App-V scripting also may fail when you operate it in an environment that only accommodates the Microsoft Azure Active Directory.
  • Addresses an issue with opening or using the Window-Eyes screen reader application that appears in an error and restricts a few remarkable features from functioning as expected.
  • The team community works upon an issue that may cause a cluster node to lose membership in a cluster and cause all its workloads to failover. Besides, this issue may appear when a cluster node makes a Live Dump.

Known Issues on KB4507459


There occurs a problem for the Hosts that are administered by SCVMM. This is because SCVMM can’t mention or even run logical switches which are deployed on the hosts after each update installation.

After all, if you don’t follow the best practices, there is a higher potentiality to appear a stop bug in vfpext.sys on the hosts.

To solve the above issue, you must follow either of these two solutions-

1 – Do mofcomp among the subsequent mof files on the affected host-

  • Scvmmswitchportsettings.mof
  • VMMDHCPSvr.mof

2 –  As a workaround, you can also move towards the best tactics while patching so as to avoid a stop error in vfpext.sys in an SDN v2 environment (NC managed hosts).


After installing KB4467684, the cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the group policy “Minimum Password Length” is configured with greater than 14 characters.

On installing KB4467684, the cluster service won’t start. In fact, it starts showing the following error message-

“2245 (NERR_PasswordTooShort)” if the group policy “Minimum Password Length”

Basically, this issue appears when one uses more than 14 characters on the cluster services.

To extricate this issue, there is the requirement to set up the domain default “Minimum Password Length” policy. Here, it should be equal to or less than 14 characters.

The Company is yet to provide a permanent solution to this trouble.

A few specific functions, such as rename may result “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)” bug.

This error message appears only if you do above operations on a Cluster Shared Volume (CSV). This bug may also arise if someone uses Non-Admin account to do similar processes on a CSV owner node.

To fix this problem, you may perform the following tasks-

  1. Carry out the operation using a process that has administrator privilege.
  2. Execute the procedure from a node that doesn’t require CSV ownership.

Microsoft is yet to provide a permanent solution to this issue.

When you take help of Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) to start up your machine, there may appear the following error-


Status: 0xc0000001, Info: A required device isn't connected or can't be accessed“.

For mitigation instructions, see KB4512816.

The Company is yet to provide a permanent solution to this trouble.

How to get KB4507459 cumulative Update

Note: Before going further, do download the latest SSU (KB4509091).

You can download the cumulative update KB4507459 through Windows Update Section. Alternatively, you can have this new patch update KB4507459 automatically for your PC through Windows Update. In case, you don’t want to wait, go to the following address download the cumulative update-

 Settings > Update & Security > Windows Update

Once you reach to the above location, press Check for updates option.

Get the Standalone package.

Source: Microsoft Update Catalog