MS16-030: Description of the security update for Windows OLE: March 8, 2016

Summary
This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow remote code execution if Windows OLE fails to properly validate user input. An attacker could exploit the vulnerabilities to execute malicious code. However, an attacker must first convince a user to open a specially crafted file or a program from either a webpage or an email message.

To learn more about the vulnerability, see Microsoft Security Bulletin MS16-030.
More information
Important
  • All future security and non-security updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.
How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, seeGet security updates automatically.

Note For Windows RT 8.1, this update is available through Windows Update only.

Method 2: Microsoft Download Center

You can obtain the stand-alone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

Click the download link in Microsoft Security Bulletin MS16-030 that corresponds to the version of Windows that you are running.
More information

How to obtain help and support for this security update

Help for installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help for protecting your Windows-based computer from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support
malicious attacker exploit
File Information

File hash information

File nameSHA1 hashSHA256 hash
Windows6.0-KB3139940-ia64.msu02342BD16CCF66128272DFD81C10AEC5D279831321420B331B2EB1EF9B28F0A0C4B5D496ECAE22077C9FA6BCE9792909B9C19B8D
Windows8.1-KB3139940-x64.msu089BA970E4744A62249C9D24E4F53B75423806E4E6FF602EF1B3C5D3AF5E9908DC4F3B97191DE1A951B08BAC860F21AB682213E6
Windows8-RT-KB3139940-x64.msuD2F4B77969FA4D23AB4ABF7B41C486022B7DA1E7DB0E3202C81CC95BE56D3E5935932D997699B2C4990B5D54AC8122AD2EBC317C
Windows6.1-KB3139940-x86.msuB453A1E3A9E4E4666517B0686753C0AA261EF753DD16E5ABAD789215A51A8C4BF77BDAA2D0B4354A9C1036AB461249BA0E5C9CF6
Windows8.1-KB3139940-x86.msu2BD2BD3359B1A803320CEA720B4250BC524F6B3E9D57D7AA3238354C8934F3A9119403AC38A624949370CF4000A58DF35A47BD38
Windows6.1-KB3139940-ia64.msuFEFA37F0CE51E1564273E04DF8037D36C24F92A82117E3139FC35DD298F3E8FC6914548D850A1C89FCA23D307D508BF6FF829DC6
Windows6.1-KB3139940-x64.msu38FC3FB8E8088281EC8004F262617B7FF9A4750D59ECAFB35BB5155BCC6A452F402334189AADF0B56A92EB379F05EED9A6C062D8
Windows6.0-KB3139940-x64.msu3908AC8D76F0452E21E358D9235F0647CB62DACCBD9500D86E93A3E150CF9D28A59CE52672A74DED5709A83BE6814DFA0E5F9660

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables.

Windows Vista and Windows Server 2008 file information

Notes
  • The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table:
    Version Product Milestone Service branch
    6.0.600 2.19xxxWindows Vista or Windows Server 2008SP2GDR
    6.0.600 2.23xxxWindows Vista or Windows Server 2008SP2LDR
  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.
  • The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
For all supported ia64-based versions
File nameFile versionFile sizeDateTimePlatform
Asycfilt.dll6.0.6002.19596218,11203-Feb-201616:21IA-64
Asycfilt.dll6.0.6002.23907218,11203-Feb-201616:01IA-64
Oleaut32.dll6.0.6002.195961,987,58403-Feb-201616:23IA-64
Oleaut32.dll6.0.6002.239071,986,04803-Feb-201616:02IA-64
Oleaut32.dll6.0.6002.19596564,73603-Feb-201617:06x86
Oleaut32.dll6.0.6002.23907564,73603-Feb-201616:32x86
Asycfilt.dll6.0.6002.1959667,07203-Feb-201617:05x86
Asycfilt.dll6.0.6002.2390767,07203-Feb-201616:31x86
For all supported x86-based versions
File nameFile versionFile sizeDateTimePlatform
Asycfilt.dll6.0.6002.1959667,07203-Feb-201617:05x86
Asycfilt.dll6.0.6002.2390767,07203-Feb-201616:31x86
Olepro32.dll6.0.6002.1959689,60003-Feb-201617:06x86
Olepro32.dll6.0.6002.2390789,60003-Feb-201616:32x86
Oleaut32.dll6.0.6002.19596564,73603-Feb-201617:06x86
Oleaut32.dll6.0.6002.23907564,73603-Feb-201616:32x86
For all supported x64-based versions
File nameFile versionFile sizeDateTimePlatform
Asycfilt.dll6.0.6002.1959684,99203-Feb-201616:41x64
Asycfilt.dll6.0.6002.2390784,99203-Feb-201616:41x64
Oleaut32.dll6.0.6002.19596848,38403-Feb-201616:42x64
Oleaut32.dll6.0.6002.23907847,87203-Feb-201616:42x64
Oleaut32.dll6.0.6002.19596564,73603-Feb-201617:06x86
Oleaut32.dll6.0.6002.23907564,73603-Feb-201616:32x86
Asycfilt.dll6.0.6002.1959667,07203-Feb-201617:05x86
Asycfilt.dll6.0.6002.2390767,07203-Feb-201616:31x86

Windows 8.1 and Windows Server 2012 R2 file information

Notes
  • The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table:
    VersionProductMilestoneService branch
    6.3.960 0.17xxxWindows RT 8.1, Windows 8.1, and Windows Server 2012 R2RTMGDR
  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.
  • The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
For all supported x64-based versions
File nameFile versionFile sizeDateTimePlatformService branch
Ole32.dll6.3.9600.182271,661,57603-Feb-201620:37x64AMD64_MICROSOFT-WINDOWS-COM-BASE-QFE
Asycfilt.dll6.3.9600.1822791,13603-Feb-201615:00x64Not applicable
Ole32.dll6.3.9600.182271,212,24803-Feb-201620:36x86X86_MICROSOFT-WINDOWS-COM-BASE-QFE
Asycfilt.dll6.3.9600.1822777,82403-Feb-201615:00x86Not applicable
Olepro32.dll6.3.9600.1822786,01603-Feb-201615:09x86Not applicable
For all supported x86-based versions
File nameFile versionFile sizeDateTimePlatform
Ole32.dll6.3.9600.182271,212,24803-Feb-201620:36x86
Asycfilt.dll6.3.9600.1822777,82403-Feb-201615:00x86
Olepro32.dll6.3.9600.1822786,01603-Feb-201615:09x86

Windows Server 2012 file information

Notes
  • The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table:
    Version Product Milestone Service branch
    6.2.920 0.17xxxWindows Server 2012RTMGDR
    6.2.920 0.21xxxWindows Server 2012RTMLDR
  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.
  • The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
For all supported x64-based versions
File nameFile versionFile sizeDateTimePlatformService branch
Ole32.dll6.2.9200.176461,567,56803-Feb-201617:45x64AMD64_MICROSOFT-WINDOWS-COM-BASE-QFE
Ole32.dll6.2.9200.217651,567,05603-Feb-201618:07x64AMD64_MICROSOFT-WINDOWS-COM-BASE-QFE
Asycfilt.dll6.2.9200.1764684,99203-Feb-201615:05x64Not applicable
Asycfilt.dll6.2.9200.2176584,99203-Feb-201615:45x64Not applicable
Ole32.dll6.2.9200.176461,150,27203-Feb-201616:15x86X86_MICROSOFT-WINDOWS-COM-BASE-QFE
Ole32.dll6.2.9200.217651,150,78403-Feb-201616:40x86X86_MICROSOFT-WINDOWS-COM-BASE-QFE
Asycfilt.dll6.2.9200.1764669,63203-Feb-201615:57x86Not applicable
Asycfilt.dll6.2.9200.2176569,63203-Feb-201616:26x86Not applicable
Olepro32.dll6.2.9200.1764679,36003-Feb-201615:58x86Not applicable
Olepro32.dll6.2.9200.2176579,36003-Feb-201616:26x86Not applicable

Windows 7 and Windows Server 2008 R2 file information

Notes
  • The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table:
    Version Product Milestone Service branch
    6.1.760 1.18xxxWindows 7 or Windows Server 2008 R2 SP1GDR
    6.1.760 1.23xxxWindows 7 or Windows Server 2008 R2 SP1 LDR
  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.
  • The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
For all supported x86-based versions
File nameFile versionFile sizeDateTimePlatform
Asycfilt.dll6.1.7601.1914467,58403-Feb-201618:43x86
Asycfilt.dll6.1.7601.2334467,58403-Feb-201618:40x86
Olepro32.dll6.1.7601.1914490,62403-Feb-201618:49x86
Olepro32.dll6.1.7601.2334490,62403-Feb-201618:42x86
Oleaut32.dll6.1.7601.19144572,41603-Feb-201618:49x86
Oleaut32.dll6.1.7601.23344572,41603-Feb-201618:42x86
For all supported ia64-based versions
File nameFile versionFile sizeDateTimePlatform
Asycfilt.dll6.1.7601.19144221,69603-Feb-201618:03IA-64
Asycfilt.dll6.1.7601.23344221,69603-Feb-201617:57IA-64
Oleaut32.dll6.1.7601.191442,035,20003-Feb-201618:09IA-64
Oleaut32.dll6.1.7601.233442,035,20003-Feb-201618:03IA-64
Oleaut32.dll6.1.7601.19144572,41603-Feb-201618:49x86
Oleaut32.dll6.1.7601.23344572,41603-Feb-201618:42x86
Asycfilt.dll6.1.7601.1914467,58403-Feb-201618:43x86
Asycfilt.dll6.1.7601.2334467,58403-Feb-201618:40x86
For all supported x64-based versions
File nameFile versionFile sizeDateTimePlatform
Asycfilt.dll6.1.7601.1914484,99203-Feb-201618:52x64
Asycfilt.dll6.1.7601.2334484,99203-Feb-201619:09x64
Oleaut32.dll6.1.7601.19144862,20803-Feb-201618:58x64
Oleaut32.dll6.1.7601.23344862,20803-Feb-201619:12x64
Oleaut32.dll6.1.7601.19144572,41603-Feb-201618:49x86
Oleaut32.dll6.1.7601.23344572,41603-Feb-201618:42x86
Asycfilt.dll6.1.7601.1914467,58403-Feb-201618:43x86
Asycfilt.dll6.1.7601.2334467,58403-Feb-201618:40x86
Properties

Article ID: 3139940 - Last Review: 03/08/2016 18:07:00 - Revision: 1.0

Windows Server 2012 R2 Datacenter, Windows Server 2012 R2 Standard, Windows Server 2012 R2 Essentials, Windows Server 2012 R2 Foundation, Windows 8.1 Enterprise, Windows 8.1 Pro, Windows 8.1, Windows RT 8.1, Windows Server 2012 Datacenter, Windows Server 2012 Standard, Windows Server 2012 Essentials, Windows Server 2012 Foundation, Windows Server 2008 R2 Service Pack 1, Windows 7 Service Pack 1, Windows Server 2008 Service Pack 2, Windows Vista Service Pack 2

  • atdownload kbbug kbexpertiseinter kbfix kbsecbulletin kbsecurity kbsecvulnerability KB3139940
Feedback