MS15-028: Vulnerability in Windows Task Scheduler could allow security feature bypass: March 10, 2015

Applies to: Windows Server 2012 R2 DatacenterWindows Server 2012 R2 StandardWindows Server 2012 R2 Essentials More

Summary


This security update resolves a privately reported vulnerability in Windows. This vulnerability could allow users who have limited rights on an affected system to use Task Scheduler to execute files that they do not have permissions to run. To learn more about the vulnerability, see Microsoft Security Bulletin MS15-028.

How to obtain and install the update


Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Get security updates automatically.

Note For Windows RT and Windows RT 8.1, this update is available through Windows Update only.

More Information