MS15-109: Security update for Windows Shell to address remote code execution: October 13, 2015

Summary
This security update resolves vulnerabilities in Microsoft Windows. These vulnerabilities could allow remote code execution if a user opens a specially crafted toolbar object in Windows or if an attacker convinces a user to view specially crafted content online. 

To learn more about the vulnerabilities, see Microsoft Security Bulletin MS15-109.
More information
Important
  • All future security and nonsecurity updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.
More information about this security update
The following articles contain more information about this security update as it relates to individual product versions. The articles may contain known issue information.
  • 3080446 MS15-109: Description of the security update for Windows Shell: October 13, 2015
  • 3093513 MS15-109: Description of the security update for Windows Shell: October 13, 2015
  • 3097617 Cumulative Update for Windows 10: October 13, 2015
How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Get security updates automatically.

Note For Windows RT and Windows RT 8.1, this update is available through Windows Update only.

Method 2: Microsoft Download Center

You can obtain the stand-alone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

Click the download link in Microsoft Security Bulletin MS15-109 that corresponds to the version of Windows that you are running.
More information

Security update deployment information

Windows Vista (all editions)

Reference Table

The following table contains the security update information for this software.
Security update file namesFor all supported 32-bit editions of Windows Vista:
Windows6.0-KB3080446-x86.msu
Windows6.0-KB3093513-x86.msu
For all supported x64-based editions of Windows Vista:
Windows6.0-KB3080446-x64.msu
Windows6.0-KB3093513-x64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementIn some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, you receive a message that advises you to restart.
Removal informationWUSA.exe does not support uninstall of updates. To uninstall an update installed by WUSA, click Control Panel, and then click Security. Under Windows Update, click View installed updates and select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3080446
See Microsoft Knowledge Base Article 3093513
Registry key verificationNote A registry key does not exist to validate the presence of this update.

Windows Server 2008 (all editions)

Reference Table

The following table contains the security update information for this software.
Security update file namesFor all supported 32-bit editions of Windows Server 2008:
Windows6.0-KB3080446-x86.msu
For all supported x64-based editions of Windows Server 2008:
Windows6.0-KB3080446-x64.msu
For all supported Itanium-based editions of Windows Server 2008:
Windows6.0-KB3080446-ia64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementIn some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, you receive a message that advises you to restart.
Removal informationWUSA.exe does not support uninstall of updates. To uninstall an update installed by WUSA, click Control Panel, and then click Security. Under Windows Update, click View installed updates and select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3080446
Registry key verificationNote A registry key does not exist to validate the presence of this update.

Windows 7 (all editions)

Reference Table

The following table contains the security update information for this software.
Security update file nameFor all supported 32-bit editions of Windows 7:
Windows6.1-KB3080446-x86.msu
Windows6.1-KB3093513-x86.msu
For all supported x64-based editions of Windows 7:
Windows6.1-KB3080446-x64.msu
Windows6.1-KB3093513-x64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementIn some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, you receive a message that advises you to restart.
Removal informationTo uninstall an update installed by WUSA, use the /Uninstall setup switch or click Control Panel, click System and Security, and then under Windows Update, click View installed updates and select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3080446
See Microsoft Knowledge Base Article 3093513
Registry key verificationNote A registry key does not exist to validate the presence of this update.

Windows Server 2008 R2 (all editions)

Reference Table

The following table contains the security update information for this software.
Security update file nameFor all supported x64-based editions of Windows Server 2008 R2:
Windows6.1-KB3080446-x64.msu
For all supported Itanium-based editions of Windows Server 2008 R2:
Windows6.1-KB3080446-ia64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementIn some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, you receive a message that advises you to restart.
Removal informationTo uninstall an update installed by WUSA, use the /Uninstall setup switch or click Control Panel, click System and Security, and then under Windows Update, click View installed updates and select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3080446
Registry key verificationNote A registry key does not exist to validate the presence of this update.

Windows 8 and Windows 8.1 (all editions)

Reference Table

The following table contains the security update information for this software.
Security update file nameFor all supported 32-bit editions of Windows 8:
Windows8-RT-KB3080446-x86.msu
For all supported x64-based editions of Windows 8:
Windows8-RT-KB3080446-x64.msu
For all supported 32-bit editions of Windows 8.1:
Windows8.1-KB3080446-x86.msu
For all supported x64-based editions of Windows 8.1:
Windows8.1-KB3080446-x64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementA system restart is required after you apply this security update.
Removal informationTo uninstall an update installed by WUSA, use the /Uninstall setup switch or click Control Panel, click System and Security, click Windows Update, and then under See also, click Installed updates and select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3080446
Registry key verificationNote A registry key does not exist to validate the presence of this update.

Windows Server 2012 and Windows Server 2012 R2 (all editions)

Reference Table

The following table contains the security update information for this software.
Security update file nameFor all supported editions of Windows Server 2012:
Windows8-RT-KB3080446-x64.msu
For all supported editions of Windows Server 2012 R2:
Windows8.1-KB3080446-x64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementA system restart is required after you apply this security update.
Removal informationTo uninstall an update installed by WUSA, use the /Uninstall setup switch or click Control Panel, click System and Security, click Windows Update, and then under See also, click Installed updates and select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3080446
Registry key verificationNote A registry key does not exist to validate the presence of this update.

Windows RT and Windows RT 8.1 (all editions)

Reference Table

The following table contains the security update information for this software.
DeploymentThe update is available via Windows Update only.
Restart RequirementA system restart is required after you apply this security update.
Removal InformationClick Control Panel, click System and Security, click Windows Update, and then under See also, click Installed updates and select from the list of updates.
File InformationSee Microsoft Knowledge Base Article 3080446

Windows 10 (all editions)

Reference Table

The following table contains the security update information for this software.
Security update file nameFor all supported 32-bit editions of Windows 10:
Windows10.0-KB3097617-x86.msu
For all supported x64-based editions of Windows 10:
Windows10.0-KB3097617-x64.msu
Installation switchesSee Microsoft Knowledge Base Article 934307
Restart requirementA system restart is required after you apply this security update.
Removal informationTo uninstall an update installed by WUSA, use the /Uninstall setup switch or click Control Panel, click System and Security, click Windows Update, and then under See also, click Installed updates and select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3097617
Registry key verificationNote A registry key does not exist to validate the presence of this update.

File hash information

Package namePackage hash SHA 1Package hash SHA 2
Windows6.0-KB3080446-ia64.msu2EDF442D0DF93027885DBD5DD6E81B17C1C62AAFD10E6793C2D67659F98E7A83F27C70A56477FECFDA7B1242E94EFAB1DC6DBF09
Windows6.0-KB3080446-x64.msu4F6F5B0F65B54F79A179A031CD89BA0733A1A048BA57B5C98EFD37BDF9FDD03B4D861C141178BF63CFD083195F54F6F8645D736C
Windows6.0-KB3080446-x86.msuAC65A42C7255666F7ECC8D16DFD5C978584EFDD0D56086C3864E3AD64489DB1E1DF3C56E87534ED2BCEA42B2D9C8E433D8B9B7AE
Windows6.0-KB3093513-x64.msuCB8086C08C9D1C22A6F3C5BB3427B92DAC076336CE415268CDFD505E2FA7511FEB926C127A63AF5F301AFAB61645AC4A9594081F
Windows6.0-KB3093513-x86.msu098B98ECA74405B2EA127E44A4AE53DF327203A675D92035B643B673D76BCEBF00D8939C40E447DDE397C6D94C19513B7E2DC338
Windows6.1-KB3080446-ia64.msu709059BD91D7E953E7BB2AD8C06D5BAA1686B9AC0E0788F4F196049A4BD86452F72394BBF6D02B170023E94D8CA5C0FAFF424A6C
Windows6.1-KB3080446-x64.msuD95D07F35284FA5CF9A15458CA0830313F1137AA0C33A32772B2288DC534E26754D22F903352538223CB00C733ACBBB561DBB472
Windows6.1-KB3080446-x86.msuAE97BBA1015F8B3A819486B1C443ED2ECD21C72DE639953A70E78A16A1FBFDA3F0B9B903BDA654DCE58233477FFBC377FA29AC43
Windows6.1-KB3093513-x64.msu2C1E5FF88F5ACBD93BB3D80B09731DB3FB85EB1ED2C1827F212E983508898FAA60E9FB19C452DA0A12820A841B92B6AC4CEC29B5
Windows6.1-KB3093513-x86.msuA4BD5E6E7933351D527ACA55FF9EAF311E0592F2536FED30B7956445F35D4C59ACCE9DFCCEE69977E7FBFA6532C16D8077F190FE
Windows8.1-KB3080446-arm.msu16A7EA89318764D877B935BC5C6A8BC8C15CBEE8554E8840019957A9878F097F3D0B924EF511692485C23AFF84FFAF8F7D700AEB
Windows8.1-KB3080446-arm.msuBD7195CDC6680674955B6D685525E00F93FDD6391484AE3EB0455260F1D7D0D27D8EA959696E210506F28436D0A7C1078CE513A2
Windows8.1-KB3080446-arm.msuE354994F12A1BC4596D314B639109780507C2911F2512E1F76DE7D96181B189A4FBD92EC407E1612BE58EDBEED15334A8C905F4B
Windows8.1-KB3080446-x64.msu72C17CE5DA8CAE3849359318AC70ED8BB230771B42E525FD596342E12BB5D205B0AF52308A3FF0C986DF47D078B1B5CD36A61D7C
Windows8.1-KB3080446-x64.msu9C35B421CA6EC5BCAAE383A29424B6A45E1EDDEB2DF341E89E97CA2AF00FAA0DB4CB7F59B5D8EE5CBFCCA33737052D7DD85AEEEA
Windows8.1-KB3080446-x64.msuEE123046C4DD23C84114F89CBA52016CBE493A6A73E3C0E87D10CD205DDA463A0BD8649401877CFFACF87F8DB8BE0ABE7AC1AF22
Windows8.1-KB3080446-x86.msuA21890D540B08C4D69F706AF714CD68F8D58E315175C937AC75AB637678018CDEC60C7E6A133C372A90EC72DB0EE9B0724CCDFC6
Windows8.1-KB3080446-x86.msuAB216422913870BF1E7D6A60C0291DFD47A546E27387CF0959265868B5546CECF24E30A9731A5492F54A2C265C4B634A6DDC11C5
Windows8.1-KB3080446-x86.msuB1621501EA0D6BAE1144EBB2C51E1220F34166BCE14214088AAB69B3B552E7C1EE883BF6D70151BF88CAA15161E096AD73F7943E
Windows8-RT-KB3080446-arm.msu40B752134A78FC643A8144A0862E12555D7F8BCE874CB670AB6AE989B2AFB4EB72060C18D31BCC4501F02FAA7309B90187213192
Windows8-RT-KB3080446-x64.msu367D50B76755A13F7A30CAAC0F25E7C3B420A1BB52EBA089EB887D950132B50E3D590246E0291CFA059232A4D5B9D09646F5C509
Windows8-RT-KB3080446-x86.msuBAD029B1C42DF3DAA04E7517C8949CD2E5CF435B916997CD6D500C9B50480875ECB13C12048292856CDD8019130B89E79E2852A3

How to obtain help and support for this security update

Help for installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help for protecting your Windows-based computer from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support
malicious attacker exploit
Properties

Article ID: 3096443 - Last Review: 10/16/2015 18:06:00 - Revision: 2.0

Windows 10, Windows Server 2012 R2 Datacenter, Windows Server 2012 R2 Standard, Windows Server 2012 R2 Essentials, Windows Server 2012 R2 Foundation, Windows 8.1 Enterprise, Windows 8.1 Pro, Windows 8.1, Windows RT 8.1, Windows Server 2012 Datacenter, Windows Server 2012 Standard, Windows Server 2012 Essentials, Windows Server 2012 Foundation, Windows 8 Enterprise, Windows 8 Pro, Windows 8, Windows RT, Windows Server 2008 R2 Service Pack 1, Windows 7 Service Pack 1, Windows Server 2008 Service Pack 2, Windows Vista Service Pack 2

  • atdownload kbbug kbexpertiseinter kbfix kbsecbulletin kbsecurity kbsecvulnerability KB3096443
Feedback