MS15-080: Description of the security update for Microsoft Lync 2013 (Skype for Business): August 11, 2015

Applies to: Microsoft Lync 2013Skype for Business


This security update resolves vulnerabilities in Microsoft Lync 2013. These vulnerabilities could allow remote code execution if a user opens a specially crafted document or goes to an untrusted webpage that contains embedded TrueType or OpenType fonts. To learn more about the vulnerabilities, see Microsoft Security Bulletin MS15-080.

How to obtain and install the update

Method 1: Windows Update (or Microsoft Update)

This update is available through Windows Update/Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Get security updates automatically

Method 2: Microsoft Download Center

You can obtain the stand-alone update package through the Microsoft Download Center. To install the update, follow the installation instructions on the download page.

  • The download page will display this update as being for Lync 2013.
  • After you apply this update, Lync 2013 will be upgraded to Skype for Business. Learn about the new experience in Skype for Business.
  • You can still use the Lync client user interface after you apply this update for Lync 2013 (Skype for Business).
  • Get the general information about how to switch between the Skype for Business and the Lync client user interfaces for Microsoft Office 365 users and Lync Server 2013 users.

More Information

Non-security-related fixes that are included in this security update

This security update also fixes the following non-security-related issues:
  • 3151577 Meeting Validation Code Removed from UCAddin.dll (Lync plug-in for Outlook)

Update deployment information

For deployment information about this update, see Microsoft Knowledge Base article 3078662 .


To install this update, you must first have the following updates installed:

Update removal information

Note We do not recommend that you remove any security update.

To remove this update, use the Programs and Features item in Control Panel.

Update restart information

This update does not require a system restart after you apply it unless files that are being updated are locked or are being used.

Update replacement information

This update replaces previously released update 3039779 .