MS16-087: Description of the security update for Windows print spooler components: July 12, 2016

Applies to: Windows Server 2012 R2 DatacenterWindows Server 2012 R2 StandardWindows Server 2012 R2 Essentials More

This security update was re-released September 12, 2017, to address known issues in update 3170455 for CVE-2016-3238.

Microsoft has made available the following updates for currently-supported versions of Microsoft Windows. For more information, go to the following article in the Microsoft Knowledge Base:

  • Re-released update 3170455 for Windows Server 2008
  • Monthly rollup 4038777 and security update 4038779 for Windows 7 and Windows Server 2008 R2
  • Monthly rollup 4038799 and security update 4038786 for Windows Server 2012
  • Monthly rollup 4038792 and security update 4038793 for Windows 8.1 and Windows Server 2012 R2
  • Cumulative update 4038781 for Windows 10
  • Cumulative update 4038781 for Windows 10 Version 1511
  • Cumulative update 4038782 for Windows 10 Version 1607 and Windows Server 2016

Microsoft recommends that customers who are running Windows Server 2008 reinstall update 3170455. Microsoft recommends that customers who are running other supported versions of Windows install the appropriate update.

To learn more about the re-release, go to CVE-2017-3238.
For more information, go to Microsoft Knowledge Base article 3170005.

Summary


This security update resolves vulnerabilities in Microsoft Windows. The more severe of the vulnerabilities could allow remote code execution if an attacker is able to execute a man-in-the-middle (MiTM) attack on a workstation or print server, or set up a rogue print server on a target network.

To learn more about the vulnerability, see Microsoft Security Bulletin MS16-087.

More Information


Important
 
  • All future security and non-security updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

How to obtain and install the update


Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Get security updates automatically.

Note For Windows RT 8.1, this update is available through Windows Update only.

More Information


File Information (September 12, 2017 re-release)



File information
The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and the times for these files are listed in Coordinated Universal Time (UTC). The dates and the times for these files on your local computer are displayed in your local time together with your current daylight saving time (DST) bias. Additionally, the dates and the times may change when you perform certain operations on the files.

Windows Server 2008 file information