MS16-065: Security update for the .NET Framework: May 10, 2016

Summary

This security update resolves a vulnerability in the Microsoft .NET Framework. The vulnerability could cause information disclosure if an attacker injects unencrypted data in the target secure channel and then performs a man-in-the-middle (MiTM) attack between the targeted client and a legitimate server. To learn more about the vulnerability, see Microsoft Security Bulletin MS16-065.

More Information

Important
  • All future security and nonsecurity updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Known issues in this security update

  • After you install any of the security updates that are included in MS16-065 on a Front End or Standard Edition server for Lync Server 2010, Lync Server 2013, or Skype for Business Server 2015, several conferencing modalities no longer function for internal users.

    For more information, click the following article number to view the article in the Microsoft Knowledge Base:
    3165438 Conferencing modalities no longer function in Lync Server 2010, Lync Server 2013, or Skype for Business Server 2015 after you install Security Bulletin MS16-065

Additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information.

Microsoft .NET Framework 4.6 and 4.6.1

  • 3142036 MS16-065: Description of the security update for the .NET Framework 4.6 and 4.6.1 in Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2: May 10, 2016
  • 3142037 MS16-065: Description of the security update for the .NET Framework 4.6 in Windows 7 SP1 and Windows Server 2008 R2 SP1 and the .NET Framework 4.6.1 in Windows Vista SP2 and Windows Server 2008 SP2: May 10, 2016
  • 3142035 MS16-065: Description of the security update for the .NET Framework 4.6 and 4.6.1 in Windows Server 2012: May 10, 2016

Microsoft .NET Framework 4.5.2

  • 3142030 MS16-065: Description of the security update for the .NET Framework 4.5.2 in Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2: May 10, 2016
  • 3142033 MS16-065: Description of the security update for the .NET Framework 4.5.2 in Windows Vista Service Pack 2, Windows Server 2008 Service Pack 2, Windows 7 Service Pack 1, and Windows Server 2008 R2 Service Pack 1: May 10, 2016
  • 3142032 MS16-065: Description of the security update for the .NET Framework 4.5.2 in Windows Server 2012: May 10, 2016

Microsoft .NET Framework 3.5 and 3.5.1

  • 3142024 MS16-065: Description of the security update for the .NET Framework 3.5.1 in Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1: May 10, 2016
  • 3142026 MS16-065: Description of the security update for the .NET Framework 3.5 in Windows 8.1 and Windows Server 2012 R2: May 10, 2016
  • 3142025 MS16-065: Description of the security update for the .NET Framework 3.5 in Windows Server 2012: May 10, 2016

Microsoft .NET Framework 2.0

  • 3142023 MS16-065: Description of the security update for the .NET Framework 2.0 Service Pack 2 in Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: May 10, 2016


Security update deployment information
How to obtain help and support for this security update

Applies to

This article applies to the following:
  • Microsoft .NET Framework 4.6.1 when used with:
    • Windows Server 2012 R2
    • Windows 8.1
    • Windows RT 8.1
    • Windows Server 2012
    • Windows Server 2008 R2 Service Pack 1
    • Windows 7 Service Pack 1
  • Microsoft .NET Framework 4.6 when used with:
    • Windows Server 2012 R2
    • Windows 8.1
    • Windows RT 8.1
    • Windows Server 2012
    • Windows Server 2008 R2 Service Pack 1
    • Windows 7 Service Pack 1
    • Windows Server 2008 Service Pack 2
    • Windows Vista Service Pack 2
  • Microsoft .NET Framework 4.5.2 when used with:
    • Windows Server 2012 R2
    • Windows 8.1
    • Windows RT 8.1
    • Windows Server 2012
    • Windows Server 2008 R2 Service Pack 1
    • Windows 7 Service Pack 1
    • Windows Server 2008 Service Pack 2
    • Windows Vista Service Pack 2
  • Microsoft .NET Framework 3.5.1 when used with:
    • Windows Server 2008 R2 Service Pack 1
    • Windows 7 Service Pack 1
  • Microsoft .NET Framework 3.5 when used with:
    • Windows Server 2012 R2
    • Windows 8.1
    • Windows Server 2012
  • Microsoft .NET Framework 2.0 Service Pack 2 when used with:
    • Windows Server 2008 Service Pack 2
    • Windows Vista Service Pack 2
    • Windows Server 2003 Service Pack 2
Properties

Article ID: 3156757 - Last Review: May 19, 2016 - Revision: 1

Feedback