MS15-118: Security update for the .NET Framework to address elevation of privilege: November 10, 2015

February 9, 2016 This security update has been rereleased and contains an updated article. We recommend that you apply this updated security update.

Summary

This security update resolves vulnerabilities in the Microsoft .NET Framework. The most severe of these vulnerabilities could allow elevation of privilege if an attacker injects a client-side script into a user's browser. To learn more about the vulnerability, see Microsoft Security Bulletin MS15-118.

More Information

Important

  • All future security and non-security updates for Windows Server 2012 R2, Windows 8.1, Windows RT 8.1, and require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows Server 2012 R2-based, Windows 8.1-based, or Windows RT 8.1-based computer so that you receive future updates.
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known-issue information.

Microsoft .NET Framework 4.6 and 4.6.1
  • 3098785  MS15-118: Description of the security update for the .NET Framework 4.6 and 4.6.1 on Windows 8.1 and Windows Server 2012 R2: November 10, 2015 Updated article
  • 3098000 MS15-118: Description of the security update for the .NET Framework 4.6 and 4.6 RC on Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2: November 10, 2015
  • 3097999 MS15-118: Description of the security update for the .NET Framework 4.6 and 4.6 RC on Windows 8, Windows RT, and Windows Server 2012: November 10, 2015
  • 3098784 MS15-118: Description of the security update for the .NET Framework 4.6 and 4.6 RC on Windows 8 and Windows Server 2012: November 10, 2015
  • 3098001 MS15-118: Description of the security update for the .NET Framework 4.6 and 4.6 RC on Windows 7 SP1, Windows Server 2008 R2 SP1, Windows Vista SP2, and Windows Server 2008 SP2: November 10, 2015
  • 3098786 MS15-118: Description of the security update for the .NET Framework 4.6 and 4.6 RC on Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, and Windows Server 2008 R2 SP1: November 10, 2015

Microsoft .NET Framework 4.5, 4.5.1, and 4.5.2
  • 3098779 MS15-118: Description of the security update for the .NET Framework 4.5.1 and 4.5.2 on Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2: November 10, 2015



    Known issues in this security update
    • You may experience issues when you run .NET Framework applications in the following scenarios:
      • You manually install this security update on a system that has the Microsoft .NET Framework 4.6 installed.
      • You upgrade from the .NET Framework 4.5.1 or 4.5.2 to the .NET Framework 4.6 after you install this security update.
      • You install Visual Studio 2015 after you install this security update.
      For more information, click the following article number to view the article in the Microsoft Knowledge Base:
      3118750 Known issue for security updates 3098779 and 3097997 for the .NET Framework 4.5.1 and 4.5.2 on Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2
  • 3097997 MS15-118: Description of the security update for the .NET Framework 4.5.1 and 4.5.2 on Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2: November 11, 2015

    Known issues in this security update
    • You may experience issues when you run .NET Framework applications in the following scenarios:
      • You manually install this security update on a system that has the Microsoft .NET Framework 4.6 installed.
      • You upgrade from the .NET Framework 4.5.1 or 4.5.2 to the .NET Framework 4.6 after you install this security update.
      • You install Visual Studio 2015 after you install this security update.
      For more information, click the following article number to view the article in the Microsoft Knowledge Base:
      3118750 Known issue for security updates 3098779 and 3097997 for the .NET Framework 4.5.1 and 4.5.2 on Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2
  • 3098780 MS15-118: Description of the security update for the .NET Framework 4.5, 4.5.1, and 4.5.2 on Windows 8, Windows RT, and Windows Server 2012 R2: November 10, 2015
  • 3097995 MS15-118: Description of the security update for the .NET Framework 4.5.1 on Windows 8, Windows RT, and Windows Server 2012: November 10, 2015
  • 3097996 MS15-118: Description of the security update for the .NET Framework 4.5.1 on Windows 7 SP1, Windows Server 2008 R2 SP1, Windows Vista SP2, and Windows Server 2008 SP2: November 10, 2015
  • 3098781 MS15-118: Description of the security update for the .NET Framework 4.5, 4.5.1, and 4.5.2 on Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, and Windows Server 2008 R2 SP1: November 10, 2015

Microsoft .NET Framework 4
  • 3098778 MS15-118: Description of the security update for the .NET Framework 4 on Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, and Windows Server 2008 R2 SP1: November 10, 2015
  • 3097994 MS15-118: Description of the security update for the .NET Framework 4 on Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, and Windows Server 2008 R2 SP1: November 10, 2015

Microsoft .NET Framework 3.5 and 3.5.1
  • 3097989 MS15-118: Description of the security update for the .NET Framework 3.5.1 on Windows 7 SP1 and Windows Server 2008 R2 SP1: November 10, 2015
  • 3097992 MS15-118: Description of the security update for the .NET Framework 3.5 on Windows 8.1 and Windows Server 2012 R2: November 10, 2015
  • 3097991 MS15-118: Description of the security update for the .NET Framework 3.5 on Windows 8 and Windows Server 2012: November 10, 2015

Microsoft .NET Framework 2.0
  • 3097988 MS15-118: Description of the security update for the .NET Framework 2.0 Service Pack 2 on Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: November 10, 2015

Security update deployment information
File hash information
How to obtain help and support for this security update

Applies to

This article applies to the following:
  • Microsoft .NET Framework 4.6 RC, 4.6, and 4.6.1 when used with: 
    • Windows 10
    • Windows Server 2012 R2
    • Windows RT 8.1
    • Windows 8.1
    • Windows Server 2012
    • Windows RT
    • Windows 8
    • Windows Server 2008 R2 Service Pack 1
    • Windows 7 Service Pack 1
    • Windows Server 2008 Service Pack 2
    • Windows Vista Service Pack 2
  • Microsoft .NET Framework 4.5.2 when used with:
    • Windows Server 2012 R2
    • Windows 8.1
    • Windows RT 8.1
    • Windows Server 2012
    • Windows 8
    • Windows RT
    • Windows Server 2008 R2 Service Pack 1
    • Windows 7 Service Pack 1
    • Windows Server 2008 Service Pack 2
    • Windows Vista Service Pack 2
  • Microsoft .NET Framework 4.5.1 when used with:
    • Windows Server 2012 R2
    • Windows 8.1
    • Windows RT 8.1
    • Windows Server 2012
    • Windows 8
    • Windows RT
    • Windows Server 2008 R2 Service Pack 1
    • Windows 7 Service Pack 1
    • Windows Server 2008 Service Pack 2
    • Windows Vista Service Pack 2
  • Microsoft .NET Framework 4.5 when used with:
    • Windows Server 2012
    • Windows 8
    • Windows RT
  • Microsoft .NET Framework 4 when used with:
    • Windows Server 2008 R2 Service Pack 1
    • Windows 7 Service Pack 1
    • Windows Server 2008 Service Pack 2
  • Microsoft .NET Framework 3.5.1 when used with:
    • Windows Server 2008 R2 Service Pack 1
    • Windows 7 Service Pack 1
  • Microsoft .NET Framework 3.5 when used with:
    • Windows 10
    • Windows Server 2012 R2
    • Windows 8.1
    • Windows Server 2012
    • Windows 8
  • Microsoft .NET Framework 2.0 Service Pack 2 when used with:
    • Windows Server 2008 Service Pack 2
    • Windows Vista Service Pack 2
Proprietăți

ID articol: 3104507 - Ultima examinare: 9 feb. 2016 - Revizie: 1

Feedback