MS15-128: Security update for Microsoft graphics component to address remote code execution: December 8, 2015

Summary
This security update resolves vulnerabilities in Microsoft Windows, the .NET Framework, Microsoft Office, Skype for Business, Microsoft Lync, and Silverlight. These vulnerabilities could allow remote code execution if a user opens a specially crafted document or visits a webpage that contains specially crafted embedded fonts.

To learn more about these vulnerabilities, see Microsoft Security Bulletin MS15-128.
More information
Important
  • All future security and non-security updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.
Additional information about this security update
The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information.
  • 3109094 MS15-128 and MS15-135: Description of the security update for Windows kernel-mode drivers: December 8, 2015
  • 3114478 MS15-128: Description of the security update for Word Viewer: December 8, 2015
  • 3085616 MS15-128: Description of the security update for the 2007 Microsoft Office Suite: December 8, 2015
  • 3099874 MS15-128: Description of the security update for the .NET Framework 4.6 in Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: December 8, 2015
  • 3099869 MS15-128: Description of the security update for the .NET Framework 4.5, 4.5.1, and 4.5.2 in Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: December 8, 2015
  • 3099866 MS15-128: Description of the security update for the .NET Framework 4 in Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: December 8, 2015
  • 3099862 MS15-128: Description of the security update for the .NET Framework 3.5.1 in Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1: December 8, 2015
  • 3099864 MS15-128: Description of the security update for the .NET Framework 3.5 in Windows 8.1 and Windows Server 2012 R2: December 8, 2015
  • 3099863 MS15-128: Description of the security update for the .NET Framework 3.5 in Windows 8 and Windows Server 2012: December 8, 2015
  • 3099860 MS15-128: Description of the security update for the .NET Framework 3.0 Service Pack 2 in Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: December 8, 2015
  • 3114372 MS15-128: Description of the security update for Skype for Business 2016: December 8, 2015
  • 3085612 MS15-128: Description of the security update for Office 2010: December 8, 2015
  • 3114351 MS15-128: Description of the security update for Lync 2013 (Skype for Business): December 8, 2015
  • 3115871 MS15-128: Description of the security update for Lync 2010: December 8, 2015
  • 3115872 MS15-128: Description of the security update for Lync 2010 Attendee (user level install): December 8, 2015
  • 3115873 MS15-128: Description of the security update for Lync 2010 Attendee (admin level install): December 8, 2015
  • 3115875 MS15-128: Description of the security update for Live Meeting Console: December 8, 2015
  • 3115870 MS15-128: Description of the security update for Live Meeting Add-in: December 8, 2015
  • 3116869 Cumulative update for Windows 10: December 8, 2015
  • 3116900 Cumulative update for Windows 10 Version 1511: December 8, 2015
How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Get security updates automatically.

Note For Windows RT and Windows RT 8.1, this update is available through Windows Update only.

Method 2: Microsoft Download Center

You can obtain the stand-alone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

Click the download link in Microsoft Security Bulletin MS15-128 that corresponds to the version of Windows that you are running.
More information

Security update deployment information

Windows Vista (all editions)

Reference table

The following table contains the security update information for this software.

Security update file namesFor all supported 32-bit editions of Windows Vista:
Windows6.0-KB3109094-x86.msu
For the Microsoft .NET Framework 3.0 Service Pack 2 when installed on all supported 32-bit editions of Windows Vista:
Windows6.0-KB3099860-x86.msu
For the Microsoft .NET Framework 4 when installed on all supported 32-bit editions of Windows Vista:
NDP40-KB3099866-x86.exe
For the Microsoft .NET Framework 4.5/4.5.1/4.5.2 when installed on all supported 32-bit editions of Windows Vista:
NDP45-KB3099869-x86.exe
For the Microsoft .NET Framework 4.6 when installed on all supported 32-bit editions of Windows Vista:
NDP46-KB3099874-x86.exe
For all supported x64-based editions of Windows Vista:
Windows6.0-KB3109094-x64.msu
For the Microsoft .NET Framework 3.0 Service Pack 2 when installed on all supported x64-based editions of Windows Vista:
Windows6.0-KB3099860-x64.msu
For the Microsoft .NET Framework 4 when installed on all supported x64-based editions of Windows Vista:
NDP40-KB3099866-x64.exe
For the Microsoft .NET Framework 4.5/4.5.1/4.5.2 when installed on all supported x64-based editions of Windows Vista:
NDP45-KB3099869-x64.exe
For the Microsoft .NET Framework 4.6 when installed on all supported x64-based editions of Windows Vista:
NDP46-KB3099874-x64.exe
Installation switchesFor Microsoft Windows, see Microsoft Knowledge Base Article 934307
For the Microsoft .NET Framework, see Microsoft Knowledge Base Article 2844699
Update log fileFor Windows Vista:
Not applicable
For the Microsoft .NET Framework 3.0 Service Pack 2:
Microsoft .NET Framework 3.0-KB3099860_*-msi0.txt
Microsoft .NET Framework 3.0-KB3099860_*.html
For the Microsoft .NET Framework 4:
KB3099866_*_*-Microsoft .NET Framework 4 Client Profile-MSP0.txt
KB3099866_*_*.html
For the Microsoft .NET Framework 4.5/4.5.1/4.5.2:
KB3099869_*_*-Microsoft .NET Framework [.NET target version]-MSP0.txt
KB3099869_*_*.html
For the Microsoft .NET Framework 4.6:
KB3099874_*_*-Microsoft .NET Framework 4.6-MSP0.txt
KB3099874_*_*.html
Restart requirementFor Windows Vista:
Yes, you must restart your system after you apply this security update.
For the Microsoft .NET Framework:
This update does not require a restart. The installer stops the required services, applies the update, and then restarts the services. However, if the required services cannot be stopped for any reason, or if required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.
Removal informationFor Windows Vista:
WUSA.exe does not support uninstalling updates. To uninstall an update that is installed by WUSA, click Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
For the Microsoft .NET Framework:
Click Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3109094
See Microsoft Knowledge Base Article 3099860
See Microsoft Knowledge Base Article 3099866
See Microsoft Knowledge Base Article 3099869
See Microsoft Knowledge Base Article 3099874
Registry key verificationFor Windows Vista:
A registry key does not exist to validate the presence of this update.
For the Microsoft .NET Framework 3.0 Service Pack 2:
A registry key does not exist to validate the presence of this update. Use WMI to detect for the presence of this update.
For the Microsoft .NET Framework 4 when installed on all supported 32-bit editions of Windows Vista:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Microsoft .NET Framework 4 Client Profile\KB3099866
”ThisVersionInstalled” = “Y”
For the Microsoft .NET Framework 4 when installed on all supported x64-based editions of Windows Vista:
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Updates\Microsoft .NET Framework 4 Client Profile\KB3099866
”ThisVersionInstalled” = “Y”
For the Microsoft .NET Framework 4.5/4.5.1/4.5.2:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Microsoft .NET Framework [.NET target version]\KB3099869
”ThisVersionInstalled” = “Y”
For the Microsoft .NET Framework 4.6:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Microsoft .NET Framework 4.6\KB3099874
"ThisVersionInstalled" = "Y"

Windows Server 2008 (all editions)

Reference table

The following table contains the security update information for this software.

Security update file namesFor all supported 32-bit editions of Windows Server 2008:
Windows6.0-KB3109094-x86.msu
For the Microsoft .NET Framework 3.0 Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2:
Windows6.0-KB3099860-x86.msu
For the Microsoft .NET Framework 4 when installed on all supported 32-bit editions of Windows Server 2008 Service Pack 2:
NDP40-KB3099866-x86.exe
For the Microsoft .NET Framework 4.5/4.5.1/4.5.2 when installed on all supported 32-bit editions of Windows Server 2008 Service Pack 2:
NDP45-KB3099869-x86.exe
For the Microsoft .NET Framework 4.6 when installed on all supported 32-bit editions of Windows Server 2008 Service Pack 2:
NDP46-KB3099874-x86.exe
For all supported x64-based editions of Windows Server 2008:
Windows6.0-KB3109094-x64.msu
For the Microsoft .NET Framework 3.0 Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2:
Windows6.0-KB3099860-x64.msu
For the Microsoft .NET Framework 4 when installed on all supported x64-based editions of Windows Server 2008 Service Pack 2:
NDP40-KB3099866-x64.exe
For the Microsoft .NET Framework 4.5/4.5.1/4.5.2 on all supported x64-based editions of Windows Server 2008 Service Pack 2:
NDP45-KB3099869-x64.exe
For the Microsoft .NET Framework 4.6 on all supported x64-based editions of Windows Server 2008 Service Pack 2:
NDP46-KB3099874-x64.exe
For all supported Itanium-based editions of Windows Server 2008:
Windows6.0-KB3109094-ia64.msu
Installation switchesFor Microsoft Windows, see Microsoft Knowledge Base Article 934307
For the Microsoft .NET Framework, see Microsoft Knowledge Base Article 2844699
Update log fileFor Windows Server 2008:
Not applicable
For the Microsoft .NET Framework 3.0 Service Pack 2:
Microsoft .NET Framework 3.0-KB3099860_*-msi0.txt
Microsoft .NET Framework 3.0-KB3099860_*.html
For the Microsoft .NET Framework 4:
KB3099866_*_*-Microsoft .NET Framework 4 Client Profile-MSP0.txt
KB3099866_*_*.html
For the Microsoft .NET Framework 4.5/4.5.1/4.5.2:
KB3048077_*_*-Microsoft .NET Framework [.NET target version]-MSP0.txt
KB3099869_*_*.html
For the Microsoft .NET Framework 4.6:
KB3099874_*_*-Microsoft .NET Framework 4.6-MSP0.txt
KB3099874_*_*.html
Restart requirementFor Windows Server 2008:
Yes, you must restart your system after you apply this security update.
For the Microsoft .NET Framework:
This update does not require a restart. The installer stops the required services, applies the update, and then restarts the services. However, if the required services cannot be stopped for any reason, or if required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.
Removal informationFor Windows Server 2008:
WUSA.exe does not support uninstalling updates. To uninstall an update that is installed by WUSA, click Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
For the Microsoft .NET Framework:
Click Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3109094
See Microsoft Knowledge Base Article 3099860
See Microsoft Knowledge Base Article 3099866
See Microsoft Knowledge Base Article 3099869
See Microsoft Knowledge Base Article 3099874
Registry key verificationFor Windows Server 2008:
A registry key does not exist to validate the presence of this update.
For the Microsoft .NET Framework 3.0 Service Pack 2:
A registry key does not exist to validate the presence of this update. Use WMI to detect for the presence of this update.
For the Microsoft .NET Framework 4 when installed on all supported 32-bit editions of Windows Server 2008:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Microsoft .NET Framework 4 Client Profile\KB3099866
”ThisVersionInstalled” = “Y”
For the Microsoft .NET Framework 4 when installed on all supported x64-based editions of Windows Server 2008:
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Updates\Microsoft .NET Framework 4 Client Profile\KB3099866
”ThisVersionInstalled” = “Y”
For the Microsoft .NET Framework 4.5/4.5.1/4.5.2:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Microsoft .NET Framework [.NET target version]\KB3099869
”ThisVersionInstalled” = “Y”
For the Microsoft .NET Framework 4.6 RC and 4.6:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Microsoft .NET Framework 4.6\KB3099874
"ThisVersionInstalled" = "Y"

Windows 7 (all editions)

Reference table

The following table contains the security update information for this software.

Security update file nameFor all supported 32-bit editions of Windows 7:
Windows6.1-KB3109094-x86.msu
For the Microsoft .NET Framework 3.5.1 on all supported 32-bit editions of Windows 7 Service Pack 1:
Windows6.1-KB3099862-x86.msu
For all supported x64-based editions of Windows 7:
Windows6.1-KB3109094-x64.msu
For the Microsoft .NET Framework 3.5.1 on all supported x64-based editions of Windows 7 Service Pack 1:
Windows6.1-KB3099862-x64.msu
Installation switchesFor Microsoft Windows, see Microsoft Knowledge Base Article 934307
For the Microsoft .NET Framework, see Microsoft Knowledge Base Article 2844699
Update log fileFor Windows 7:
Not applicable
For the Microsoft .NET Framework 3.5.1:
Not applicable.
Restart requirementFor Windows 7:
Yes, you must restart your system after you apply this security update.
For the Microsoft .NET Framework:
This update does not require a restart. The installer stops the required services, applies the update, and then restarts the services. However, if the required services cannot be stopped for any reason, or if required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.
Removal informationFor Windows 7:
To uninstall an update that is installed by WUSA, use the /Uninstall setup switch, or click Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
For the Microsoft .NET Framework:
Click Control Panel, click System and Security, and then under Windows Update, click View installed updates, and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3109094
See Microsoft Knowledge Base Article 3099862
Registry key verificationFor Windows 7:
A registry key does not exist to validate the presence of this update.
For the Microsoft .NET Framework 3.5.1:
A registry key does not exist to validate the presence of this update. Use WMI to detect for the presence of this update.

Windows Server 2008 R2 (all editions)

Reference table

The following table contains the security update information for this software.

Security update file nameFor all supported x64-based editions of Windows Server 2008 R2:
Windows6.1-KB3109094-x64.msu
For the Microsoft .NET Framework 3.5.1 on all supported x64-based editions of Windows Server 2008 R2 Service Pack 1:
Windows6.1-KB3099862-x64.msu
For all supported Itanium-based editions of Windows Server 2008 R2:
Windows6.1-KB3109094-ia64.msu
Installation switchesFor Microsoft Windows, see Microsoft Knowledge Base Article 934307
For the Microsoft .NET Framework, see Microsoft Knowledge Base Article 2844699
Update log fileFor Windows Server 2008 R2:
Not applicable
For the Microsoft .NET Framework 3.5.1:
Not applicable
Restart requirementFor Windows Server 2008 R2:
Yes, you must restart your system after you apply this security update.
For the Microsoft .NET Framework:
This update does not require a restart. The installer stops the required services, applies the update, and then restarts the services. However, if the required services cannot be stopped for any reason, or if required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.
Removal informationFor Windows Server 2008 R2:
To uninstall an update installed by WUSA, use the /Uninstall setup switch or click Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
For the Microsoft .NET Framework:
Click Control Panel, click System and Security, and then under Windows Update, click View installed updates, and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3109094
See Microsoft Knowledge Base Article 3099862
Registry key verificationFor Windows Server 2008 R2:
A registry key does not exist to validate the presence of this update.
For the Microsoft .NET Framework 3.5.1:
A registry key does not exist to validate the presence of this update. Use WMI to detect for the presence of this update.

Windows 8 and Windows 8.1 (all editions)

Reference table

The following table contains the security update information for this software.

Security update file nameFor all supported 32-bit editions of Windows 8:
Windows8-RT-KB3109094-x86.msu
For the Microsoft .NET Framework 3.5 on Windows 8 for 32-bit Systems:
Windows8-RT-KB3099863-x86.msu
For all supported x64-based editions of Windows 8:
Windows8-RT-KB3109094-x64.msu
For the Microsoft .NET Framework 3.5 on Windows 8 for x64-based Systems:
Windows8-RT-KB3099863-x64.msu
For all supported 32-bit editions of Windows 8.1:
Windows8.1-KB3109094-x86.msu
For the Microsoft .NET Framework 3.5 on Windows 8.1 for 32-bit Systems:
Windows8.1-KB3099864-x86.msu
For all supported x64-based editions of Windows 8.1:
Windows8.1-KB3109094-x64.msu
For the Microsoft .NET Framework 3.5 on Windows 8.1 for x64-based Systems:
Windows8.1-KB3099864-x64.msu
Installation switchesFor Microsoft Windows, see Microsoft Knowledge Base Article 934307
For the Microsoft .NET Framework, see Microsoft Knowledge Base Article 2844699
Restart requirementFor Windows 8 and Windows 8.1:
Yes, you must restart your system after you apply this security update.
For the Microsoft .NET Framework:
This update does not require a restart. The installer stops the required services, applies the update, and then restarts the services. However, if the required services cannot be stopped for any reason, or if required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.
Removal informationFor Windows 8 and Windows 8.1:
To uninstall an update installed by WUSA, use the /Uninstall setup switch or click Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
For the Microsoft .NET Framework:
Click Control Panel, click System and Security, and then under Windows Update, click View update history and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3109094
See Microsoft Knowledge Base Article 3099863
See Microsoft Knowledge Base Article 3099864
Registry key verificationRegistry keys do not exist to validate the presence of these updates.

Windows Server 2012 and Windows Server 2012 R2 (all editions)

Reference table

The following table contains the security update information for this software.

Security update file nameFor all supported editions of Windows Server 2012:
Windows8-RT-KB3109094-x64.msu
For the Microsoft .NET Framework 3.5 on Windows Server 2012:
Windows8-RT-KB3099863-x64.msu
For all supported editions of Windows Server 2012 R2:
Windows8.1-KB3109094-x64.msu
For the Microsoft .NET Framework 3.5 on Windows Server 2012 R2:
Windows8.1-KB3099864-x64.msu
Installation switchesFor Microsoft Windows, see Microsoft Knowledge Base Article 934307
For the Microsoft .NET Framework, see Microsoft Knowledge Base Article 2844699
Restart requirementFor Windows Server 2012 and Windows Server 2012 R2:
Yes, you must restart your system after you apply this security update.
For the Microsoft .NET Framework:
This update does not require a restart. The installer stops the required services, applies the update, and then restarts the services. However, if the required services cannot be stopped for any reason, or if required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.
Removal informationFor Windows Server 2012 and Windows Server 2012 R2:
To uninstall an update installed by WUSA, use the /Uninstall setup switch or click Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
For the Microsoft .NET Framework:
Click Control Panel, click System and Security, and then under Windows Update, click View update history and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3109094
See Microsoft Knowledge Base Article 3099863
See Microsoft Knowledge Base Article 3099864
Registry key verificationRegistry keys do not exist to validate the presence of these updates.

Windows RT and Windows RT 8.1 (all editions)

Reference table

The following table contains the security update information for this software.

DeploymentThe 3109094 update is available via Windows Update only.
Restart RequirementYes, you must restart your system after you apply this security update.
Removal InformationClick Control Panel, click System and Security, click Windows Update, and then under See also, click Installed updates and then select from the list of updates.
File InformationSee Microsoft Knowledge Base Article 3109094

Windows 10 (all editions)

Reference table

The following table contains the security update information for this software.

Security update file nameFor all supported 32-bit editions of Windows 10:
Windows10.0-KB3116869-x86.msu
For the Microsoft .NET Framework 3.5 on all supported 32-bit editions of Windows 10:
Windows10.0-KB3116869-x86.msu
For all supported x64-based editions of Windows 10:
Windows10.0-KB3116900-x64.msu
For the Microsoft .NET Framework 3.5 on all supported x64-based editions of Windows 10:
Windows10.0-KB3116900-x64.msu
Installation switchesFor Microsoft Windows, see Microsoft Knowledge Base Article 934307
For the Microsoft .NET Framework, see Microsoft Knowledge Base Article 2844699
Restart requirementYes, you must restart your system after you apply this security update.
Removal informationTo uninstall an update installed by WUSA, use the /Uninstall setup switch or click Control Panel, and then click Security. Under Windows Update, click View installed updates, and then select from the list of updates.
File informationSee Microsoft Knowledge Base Article 3116869
See Microsoft Knowledge Base Article 3116900
Registry key verificationRegistry keys do not exist to validate the presence of these updates.

Microsoft Word Viewer (all editions)

Reference table

The following table contains the security update information for this software.

Security update file nameFor Microsoft Word Viewer:
office2003-kb3114479-fullfile-enu.exe
Installation switchesSee Microsoft Knowledge Base Article 912203
Restart requirementIn some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.

To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012.
Removal informationUse Add or Remove Programs item in Control Panel.
File informationSee Microsoft Knowledge Base Article 3114479
Registry key verificationNot applicable

Microsoft Office 2007 (all editions)

Reference table

The following table contains the security update information for this software.

Security update file nameFor all supported editions of Microsoft Office 2007:
ogl2007-kb3085616-fullfile-x86-glb.exe
Installation switchesSee Microsoft Knowledge Base Article 912203
Restart requirementIn some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.

To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012.
Removal informationUse Add or Remove Programs item in Control Panel.
File informationSee Microsoft Knowledge Base Article 3085616
Registry key verificationNot applicable

Microsoft Office 2010 (all editions)

Reference table

The following table contains the security update information for this software.

Security update file nameFor all supported editions of Microsoft Office 2010 (32-bit editions):
ogl2010-kb3085612-fullfile-x86-glb.exe
For all supported editions of Microsoft Office 2010 (64-bit editions):
ogl2010-kb3085612-fullfile-x64-glb.exe
Installation switchesSee Microsoft Knowledge Base Article 912203
Restart requirementIn some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.

To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012.
Removal informationUse Add or Remove Programs item in Control Panel.
File informationSee Microsoft Knowledge Base Article 3085612
Registry key verificationNot applicable

Microsoft Live Meeting 2007, Microsoft Lync 2010, Microsoft Lync 2010 Attendee, Microsoft Lync 2013 (Skype for Business), and Microsoft Lync Basic 2013 (Skype for Business Basic)

Reference table

The following table contains the security update information for this software.

Security update file nameFor Microsoft Live Meeting 2007 Console (3115875):
LMSetup.exe
For Microsoft Lync 2010 (32-bit) (3115871):
lync.msp
For Microsoft Lync 2010 (64-bit) (3115871):
lync.msp
For Microsoft Lync 2010 Attendee (user level install) (3115872):
AttendeeUser.msp
For Microsoft Lync 2010 Attendee (admin level install) (3115873):
AttendeeAdmin.msp
For all supported editions of Microsoft Lync 2013 (Skype for Business) (32-bit) and Microsoft Lync Basic 2013 (Skype for Business Basic) (32-bit):
lync2013-kb3114351-fullfile-x86-glb.exe
For all supported editions of Microsoft Lync 2013 (Skype for Business) (64-bit) and Microsoft Lync Basic 2013 (Skype for Business Basic) (64-bit):
lync2013-kb3114351-fullfile-x64-glb.exe
For all supported 32-bit editions of Skype for Business 2016 and Skype for Business Basic 2016:
lync2016-kb3114372-fullfile-x86-glb.exe
For all supported 64-bit editions of Skype for Business Basic 2016:
lync2016-kb3114372-fullfile-x64-glb.exe
Installation switchesSee Microsoft Knowledge Base Article 912203
Restart requirementIn some cases, this update does not require a restart. If the required files are being used, this update will require a restart. If this behavior occurs, a message appears that advises you to restart.

To help reduce the chance that a restart will be required, stop all affected services and close all applications that may use the affected files prior to installing the security update. For more information about the reasons why you may be prompted to restart, see Microsoft Knowledge Base Article 887012.
Removal InformationUse Add or Remove Programs item in Control Panel.
File InformationFor Microsoft Live Meeting 2007 Console:
See Microsoft Knowledge Base Article 3115875
For all supported editions of Microsoft Lync 2010:
See Microsoft Knowledge Base Article 3115871
For Microsoft Lync 2010 Attendee (user level install):
See Microsoft Knowledge Base Article 3115872
For Microsoft Lync 2010 Attendee (admin level install):
See Microsoft Knowledge Base Article 3115873
For Microsoft Link 2013 (Skype for Business) and Microsoft Link Basic 2013 (Skype for Business Basic):
See Microsoft Knowledge Base Article 3101496
For Skype for Business 2016 and Skype for Business Basic 2016:
See Microsoft Knowledge Base Article 3114372
Registry Key VerificationFor Microsoft Live Meeting 2007 Console:
Not applicable
For Microsoft Lync 2010 (32-bit):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{0EEB34F6-991D-4a1b-8EEB-772DA0EADB22}
Version = 7577.4476
For Microsoft Lync 2010 (64-bit):
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{0EEB34F6-991D-4a1b-8EEB-772DA0EADB22}
Version = 7577.4476
For Microsoft Lync 2010 Attendee (admin level install):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\94E53390F8C13794999249B19E6CFE33\InstallProperties\DisplayVersion = 4.0. 7577.4476
For Microsoft Lync 2010 Attendee (user level install):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{0EEB34F6-991D-4a1b-8EEB-772DA0EADB22}
Version = 7577.4476
For Microsoft Lync 2013 (Skype for Business) and Microsoft Lync Basic 2013 (Skype for Business Basic):
Not applicable
For Skype for Business 2016 and Skype for Business Basic 2016:
Not applicable

How to obtain help and support for this security update

Help for installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help for protecting your Windows-based computer from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support
malicious attacker exploit
Properties

Article ID: 3104503 - Last Review: 12/08/2015 19:40:00 - Revision: 1.0

Windows 10, Windows Server 2012 R2 Datacenter, Windows Server 2012 R2 Standard, Windows Server 2012 R2 Essentials, Windows Server 2012 R2 Foundation, Windows 8.1 Enterprise, Windows 8.1 Pro, Windows 8.1, Windows RT 8.1, Windows Server 2012 Datacenter, Windows Server 2012 Standard, Windows Server 2012 Essentials, Windows Server 2012 Foundation, Windows 8 Enterprise, Windows 8 Pro, Windows 8, Windows RT, Windows Server 2008 R2 Service Pack 1, Windows 7 Service Pack 1, Windows Server 2008 Service Pack 2, Windows Vista Service Pack 2, Microsoft Office 2010 Service Pack 2, 2007 Microsoft Office Suite Service Pack 3, Microsoft Office Enterprise 2007, Microsoft Office Enterprise 2007 Home Use Program, Microsoft Office Professional 2007, Microsoft Office Standard 2007, Microsoft Office Home and Student 2007, Microsoft Office Small Business 2007, Microsoft Office Basic 2007, Microsoft Office Live Meeting 2007, Word Viewer, Microsoft Lync 2013, Microsoft Lync 2010 Attendee, Microsoft Lync 2010, Skype for Business 2016, Skype for Business, Microsoft .NET Framework 3.0 Service Pack 2, Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4, Microsoft .NET Framework 4.5.2, Microsoft .NET Framework 4.5.1, Microsoft .NET Framework 4.5, Microsoft .NET Framework 4.6

  • atdownload kbbug kbexpertiseinter kbfix kbsecbulletin kbsecurity kbsecvulnerability KB3104503
Feedback