MS16-009: Security update for Internet Explorer: February 9, 2016

Applies to: Internet Explorer 11Internet Explorer 10Internet Explorer 9


This security update resolves several reported vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage in Internet Explorer. To learn more about these vulnerabilities, see Microsoft Security Bulletin MS16-009.

Additionally, this security update includes several nonsecurity-related fixes for Internet Explorer.

How to get and install the update

Method 1: Microsoft Update

This update is available through Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to get security updates automatically, see the "Turn on automatic updating in Control Panel" section of this Safety & Security Center article.

Note For Windows RT and Windows RT 8.1, this update is available through Microsoft Update only.

More Information

Known issues in this security update

  • After you install this security update for Internet Explorer 11 on Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1, Windows 8.1, or Windows Server 2012 R2, sites that are specified in the Enterprise Mode Site List may not load in Enterprise mode. To resolve this issue, install update 3141092.

Compatibility issues in this security update

  • After you install this security update, an iframe within the modal window that is created by showModalDialog will not be able to set the returnvalue of the window by using the iframe’s returnvalue. Instead, an iframe must explicitly set the returnvalue of the parent modal window by using parent.returnvalue or top.returnvalue.

File Information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables.