This update resolves vulnerabilities in the Microsoft .NET Framework. A security vulnerability exists in the .NET Framework that could allow an attacker to access information at rest that should be defended by cryptographic mechanisms. This update fixes the way that the Framework handles the key and therefore defends the data at rest. To learn more about the vulnerability, see Microsoft Security Bulletin MS16-155.
Additional information about this security update
The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information.
- 3204802 MS16-155: Description of the Security Only Update for the .NET Framework 4.6.2 for Windows 8.1 and Windows Server 2012 R2: December 13, 2016