This security update resolves vulnerabilities in Windows. The most severe of the vulnerabilities could allow remote code execution if an attacker is able to log on to a target system and run a specially crafted application. To learn more about the vulnerability, see Microsoft Security Bulletin MS16-014.

Fixes an issue in which an application that uses legacy Windows NT event log APIs cannot read the description of an event log message from a computer that is running Windows Vista or Windows Server 2008.

Resolves a vulnerability in Windows that could allow elevation of privilege if a local, authenticated attacker installs a malicious Kerberos service on a domain-joined computer. This service could then generate a specially crafted request for a Kerberos service ticket that allows the attacker to obtain system-level privileges.

How to obtain help and support for this security update. Help for installing updates: Windows Update: FAQ Security solutions for IT professionals: TechNet Security Support and Troubleshooting Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure Local support according to your country: International Support Windows Server 2008 file information

How to obtain and install the update . Method 1: Windows Update. This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically.

Symptoms. After installing security update 4041995 or any other recent update that includes srv2.sys, CPU usage may spike up to 100% when you perform any type of SMB activity, such as copying files over the network. The problem is especially likely to occur if the computer only has a single-core CPU.

Hotifx information. A supported update is available from Microsoft Support. If the update is available for download, there is a "Hotfix download available" section at the top of this Knowledge Base article.

How to obtain and install the update Method 1: Windows Update. This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically.

INTRODUCTION . Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information.

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC).