This security update resolves several reported vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage in Internet Explorer. To learn more about the vulnerabilities, see Microsoft Security Bulletin MS15-065.

Resolves a vulnerability in Windows that could allow remote code execution if a user opens a specially crafted document or visits a malicious webpage that embeds TrueType or OpenType font files.

Description of the security update for the remote code execution vulnerability in Windows XP SP3, Windows Server 2003 SP2, Windows Server 2003 SP2 R2, Windows XP Professional x64 Edition SP2, Windows XP Embedded SP3, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009

How to obtain help and support for this security update. Help installing updates: Support for Microsoft Update Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Specifically, to see this information, look for the Vulnerability Information heading, expand the Remote Desktop Protocol Vulnerability - CVE-2012-0002 section, and then expand the Workarounds for Remote Desktop Protocol Vulnerability - CVE-2012-0002 section. To enable or disable this fixit solution, click the Fix it button or link under the Enable heading or under the Disable heading.

Known issues and additional information about this security update. Microsoft is aware of problems with the security updates described in MS13-066 that affect Active Directory Federation Services (ADFS) 2.0.

Resolves a vulnerability in Windows that could allow information disclosure if a logged-on user accesses a specially crafted website that's designed to start Microsoft XML Core Services (MSXML) through Internet Explorer.

Resolves a vulnerability in Windows that could allow remote code execution if a user opens a specially crafted document or visits a malicious webpage that embeds TrueType or OpenType font files.

The Microsoft .NET Framework Repair Tool detects frequently occurring issues that affect Microsoft .NET Framework setup or updates. The tool tries to resolve those issues by applying known fixes or by repairing corrupted installations of the supported .NET Framework versions. The tool has an easy-to-use, wizard-based user interface (UI).

Resolves vulnerabilities in Windows that could allow remote code execution if a user views shared content that embeds OpenType or TrueType font files. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system.