Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Alert

Microsoft Security Bulletin Summary for March 2016

Mar 8, 2016 10:22AM PST

Published : March 08, 2016

Microsoft released 13 new security updates today. Five (5) are rated Critical and eight (Cool are rated as Important.

Microsoft also released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.

Critical: 5

MS16-123 - Cumulative Security Update for Internet Explorer (3142015)
MS16-124 - Cumulative Security Update for Microsoft Edge (3142019)
MS16-126 - Security Update for Graphic Fonts to Address Remote Code Execution (314314Cool
MS16-127 - Security Update for Windows Media to Address Remote Code Execution (3143146)
MS16-128 - Security Update for Microsoft Windows PDF Library to Address Remote Code Execution (3143081)

Important: 8

MS16-125 - Security Update for Windows Library Loading to Address Remote Code Execution (3140709)
MS16-129 - Security Update for Microsoft Office to Address Remote Code Execution (3141806)
MS16-130 - Security Update for Windows OLE to Address Remote Code Execution (3143136)
MS16-131 - Security Update for Microsoft Windows to Address Elevation of Privilege (3140410)
MS16-132 - Security Update for Secondary Logon to Address Elevation of Privilege (3143141)
MS16-133 - Security Update for Windows USB Mass Storage Class Driver to Address Elevation of Privilege (3143142)
MS16-134 - Security Update for Windows Kernel-Mode Drivers to Address Elevation of Privilege (3143145)
MS16-135 - Security Update for .NET Framework to Address Security Feature Bypass (3141780)

Security Bulletin: https://technet.microsoft.com/en-us/library/security/ms16-mar.aspx

Discussion is locked

- Collapse -
Microsoft Security Bulletin Minor Revisions
Mar 11, 2016 4:09AM PST

Issued: March 10, 2016

Summary
The following bulletins and/or bulletin summaries have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-MAR
* MS16-027 - Critical

Bulletin Information:

MS16-MAR
- Title: Microsoft Security Bulletin Summary for March 2016
- https://technet.microsoft.com/library/security/ms16-mar.aspx
- Reason for Revision: V2.1 (March 10, 2016): Added a Known Issues reference to the Executive Summaries table for MS16-035. For more information, see Microsoft Knowledge Base Article 3148821.
- Originally posted: March 8, 2016
- Updated: March 10, 2016
- Bulletin Severity Rating: Not applicable
- Version: 2.1

MS16-027
- Title: Security Update for Windows Media to Address Remote Code
Execution (3143146)
- https://technet.microsoft.com/library/security/ms16-027.aspx
- Reason for Revision: V1.1 (March 10, 2016): Corrected the Updates Replaced for Windows 8.1 and Windows RT 8.1. This is an informational change only.
- Originally posted: March 8, 2016
- Updated: March 10, 2016
- Bulletin Severity Rating: Critical
- Version: 1.1

- Collapse -
Microsoft Security Bulletin Minor Revisions
Mar 15, 2016 6:01PM PDT

Issued: March 15, 2016

Summary
The following bulletins and/or bulletin summaries have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-MAR

Bulletin Information:

MS16-MAR
- Title: Microsoft Security Bulletin Summary for March 2016
- https://technet.microsoft.com/library/security/ms16-mar.aspx
- Reason for Revision: V2.2 (March 15, 2016): Added Known Issues references to the Executive Summaries table for MS16-035. For more information, see Microsoft Knowledge Base Article 3135996, Microsoft Knowledge Base Article 3136000, and Microsoft Knowledge
Base Article 3149737.
- Originally posted: March 8, 2016
- Updated: March 15, 2016
- Bulletin Severity Rating: Not applicable
- Version: 2.2

- Collapse -
Microsoft Security Bulletin Minor Revisions
Mar 24, 2016 3:07PM PDT

Issued: March 24, 2016

Summary
The following bulletins and/or bulletin summaries have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-028 - Critical

Bulletin Information:

MS16-028
- Title: Security Update for Microsoft Windows PDF Library to Address Remote Code Execution (3143081)
- https://technet.microsoft.com/library/security/ms16-028.aspx
- Reason for Revision: V1.1 (March 24, 2016): Removed Windows Server 2012 from the Affected Software and Vulnerability Severity Ratings table because it is not affected. This is an informational change only.
- Originally posted: March 8, 2016
- Updated: March 24, 2016
- Bulletin Severity Rating: Critical
- Version: 1.1

- Collapse -
Microsoft Security Bulletin Minor Revisions
Mar 29, 2016 7:30AM PDT

Issued: March 25, 2016

Summary
The following bulletins and/or bulletin summaries have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-MAR

Bulletin Information:

MS16-MAR
- Title: Microsoft Security Bulletin Summary for March 2016
- https://technet.microsoft.com/library/security/ms16-mar.aspx
- Reason for Revision: V3.1 (March 25, 2016): For MS16-028, removed Windows Server 2012 (Server Core installation) from Windows Operating Systems and Components (Table 1 of 2) because it is not affected. This is an informational change only.
- Originally posted: March 8, 2016
- Updated: March 25, 2016
- Bulletin Severity Rating: Not applicable
- Version: 3.1

- Collapse -
Microsoft Security Bulletin Minor Revisions
Apr 7, 2016 3:31PM PDT

Issued: March 25, 2016

Summary
The following bulletins and/or bulletin summaries have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS13-082 - Critical
* MS15-115 - Critical
* MS15-121 - Important
* MS15-122 - Important
* MS16-027 - Critical

Bulletin Information:

MS13-082
- Title: Vulnerabilities in .NET Framework Could Allow Remote Code Execution (2878890)
- https://technet.microsoft.com/library/security/ms13-082.aspx
- Reason for Revision: V1.2 (April 7, 2016): Corrected download links for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows 2008 R2. This is an informational change only. Customers who have already successfully updated their systems do not need to take any action.
- Originally posted: October 8, 2013
- Updated: April 7, 2016
- Bulletin Severity Rating: Critical
- Version: 1.2

MS15-115
- Title: Security Update for Microsoft Windows to Address Remote Code Execution (3105864)
- https://technet.microsoft.com/library/security/ms15-115.aspx
- Reason for Revision: V2.1 (April 7, 2016): Updated the footnotes following the Affected Software table to further clarify installation order for security update 3101746 in MS15-115, 3081320 in MS15-121, and 3101246 in MS15-122. This is an informational change only. Customers who have already successfully installed the update do not need to take any action.
- Originally posted: November 10, 2015
- Updated: April 7, 2016
- Bulletin Severity Rating: Critical
- Version: 2.1

MS15-121
- Title: Security Update for Schannel to Address Spoofing (3081320)
- https://technet.microsoft.com/library/security/ms15-121.aspx
- Reason for Revision: V1.1 (April 7, 2016): Updated the footnotes following the Affected Software table to further clarify installation order for security update 3101746 in MS15-115, 3081320 in MS15-121, and 3101246 in MS15-122. This is an informational change only. Customers who have already successfully installed the update do not need to take any
action.
- Originally posted: November 10, 2015
- Updated: April 7, 2016
- Bulletin Severity Rating: Important
- Version: 1.1

MS15-122
- Title: Security Update for Kerberos to Address Security Feature Bypass (3105256)
- https://technet.microsoft.com/library/security/ms15-122.aspx
- Reason for Revision: V1.2 (April 7, 2016): Updated the footnotes following the Affected Software and Vulnerability Severity Ratings table to further clarify installation order for security update 3101746 in MS15-115, 3081320 in MS15-121, and 3101246 in MS15-122. This is an informational change only. Customers who have already successfully installed the update do not need to take any action.
- Originally posted: November 10, 2015
- Updated: April 7, 2016
- Bulletin Severity Rating: Important
- Version: 1.2

MS16-027
- Title: Security Update for Windows Media to Address Remote Code Execution (3143146)
- https://technet.microsoft.com/library/security/ms16-027.aspx
- Reason for Revision: V1.2 (April 7, 2016): Added a note to clarify that Windows Media is only enabled on Windows server operating systems when the Desktop Experience feature is enabled. This is an informational change only.
- Originally posted: March 8, 2016
- Updated: April 7, 2016
- Bulletin Severity Rating: Critical
- Version: 1.2