MS15-104: Description of the security update for Skype for Business Server 2015 (Web Components Server): September 8, 2015

Applies to: Skype for Business Server 2015


This security update resolves vulnerabilities in Skype for Business and Microsoft Lync Server. The most severe of these vulnerabilities could allow elevation of privilege if a user clicks a specially crafted URL. An attacker would have to convince users to click a link in an instant messenger or email message that directs them to an affected website by way of a specially crafted URL. To learn more about the vulnerability, see Microsoft Security Bulletin MS15-104.

How to get and install the update

Microsoft Download Center

You can get the stand-alone update package through the Microsoft Download Center.  

Install and removal information

How to install and remove this security update

To install or remove this security update, see article 3061064.

Note We don't recommend that you remove any security update.

Update deployment information

For deployment information about this security update, see Microsoft Knowledge Base Article 3089952.

Update replacement information

This update doesn't replace any previously released update.