May 2016 – Microsoft Security Updates

By | February 8, 2017

Microsoft Problems with Security Updates (May 2016)

The release date for this bulletin is the 10th May 2016.

The Microsoft updates or patches listed below will require a restart of services or server in order to be applied effectively.

The severity ratings are Critical and Important  whereas the vulnerability impact includes remote code execution, elevation of privileges and information disclosure.

Bulletin number Title Description
MS16-067

Security Update for Volume Manager Driver (3155784)

This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow information disclosure if a USB disk mounted over Remote Desktop Protocol (RDP) via Microsoft RemoteFX is not correctly tied to the session of the mounting user.
MS16-066

Security Update for Virtual Secure Mode (3155451)

This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow security feature bypass if an attacker runs a specially crafted application to bypass code integrity protections in Windows.
MS16-065

Security Update for .NET Framework (3156757)

This security update resolves a vulnerability in Microsoft .NET Framework. The vulnerability could cause information disclosure if an attacker injects unencrypted data into the target secure channel and then performs a man-in-the-middle (MiTM) attack between the targeted client and a legitimate server.
MS16-064

Security Update for Adobe Flash Player (3157993)

This security update resolves vulnerabilities in Adobe Flash Player when installed on all supported editions of Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, and Windows 10.
MS16-062

Security Update for Windows Kernel-Mode Drivers (3158222)

This security update resolves vulnerabilities in Microsoft Windows. The more severe of the vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application.
MS16-061

Security Update for Microsoft RPC (3155520)

This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an authenticated attacker makes malformed Remote Procedure Call (RPC) requests to an affected host.
MS16-060

Security Update for Windows Kernel (3154846)

This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application.
MS16-059

Security Update for Windows Media Center (3150220)

This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if Windows Media Center opens a specially crafted Media Center link (.mcl) file that references malicious code. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
MS16-058

Security Update for Windows IIS (3141083)

This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker with access to the local system executes a malicious application. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
MS16-057

Security Update for Windows Shell (3156987)

This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker successfully convinces a user to browse to a specially crafted website that accepts user-provided online content, or convinces a user to open specially crafted content. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
MS16-056

Security Update for Windows Journal (3156761)

This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a specially crafted Journal file. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
MS16-055

Security Update for Microsoft Graphics Component (3156754)

This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow remote code execution if a user opens a specially crafted document or visits a specially crafted website. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
MS16-054

Security Update for Microsoft Office (3155544)

This security update resolves vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Microsoft Office file. An attacker who successfully exploited the vulnerabilities could run arbitrary code in the context of the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
MS16-053

Cumulative Security Update for JScript and VBScript (3156764)

This security update resolves vulnerabilities in the JScript and VBScript scripting engines in Microsoft Windows. The vulnerabilities could allow remote code execution if a user visits a specially crafted website. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited these vulnerabilities could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
MS16-052

Cumulative Security Update for Microsoft Edge (3155538)

This security update resolves vulnerabilities in Microsoft Edge. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Microsoft Edge. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than users with administrative user rights.
MS16-051

Cumulative Security Update for Internet Explorer (3155533)

This security update resolves vulnerabilities in Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Microsoft Problems with Security Updates (May 2016)

The Below table gives a brief summary of the applications or software which are vulnerable to attack if updates are not implemented.

Note: If  require more information on the Microsoft Problems with solutions please click on the Bulletin numbers below

Date Bulletin number Title Affected Software
10-May-16

MS16-067

Security Update for Volume Manager Driver (3155784) Microsoft Windows
10-May-16

MS16-066

Security Update for Virtual Secure Mode (3155451) Microsoft Windows
10-May-16

MS16-065

Security Update for .NET Framework (3156757) Microsoft Windows,
Microsoft .NET Framework
10-May-16

MS16-064

Security Update for Adobe Flash Player (3157993) Microsoft Windows,
Adobe Flash Player
10-May-16

MS16-062

Security Update for Windows Kernel-Mode Drivers (3158222) Microsoft Windows
10-May-16

MS16-061

Security Update for Microsoft RPC (3155520) Microsoft Windows
10-May-16

MS16-060

Security Update for Windows Kernel (3154846) Microsoft Windows
10-May-16

MS16-059

Security Update for Windows Media Center (3150220) Microsoft Windows
10-May-16

MS16-058

Security Update for Windows IIS (3141083) Microsoft Windows
10-May-16

MS16-057

Security Update for Windows Shell (3156987) Microsoft Windows
10-May-16

MS16-056

Security Update for Windows Journal (3156761) Microsoft Windows
10-May-16

MS16-055

Security Update for Microsoft Graphics Component (3156754) Microsoft Windows
10-May-16

MS16-054

Security Update for Microsoft Office (3155544) Microsoft Office,
Microsoft Office Services and Web Apps
10-May-16

MS16-053

Cumulative Security Update for JScript and VBScript (3156764) Microsoft Windows
10-May-16

MS16-052

Cumulative Security Update for Microsoft Edge (3155538) Microsoft Windows,
Microsoft Edge
10-May-16

MS16-051

Cumulative Security Update for Internet Explorer (3155533) Microsoft Windows,
Internet Explorer

 

Microsoft Problems and Solutions for the months of 2016 (click below)

Jan-16 Feb-16 Mar-16 Apr-16 May-16 Jun-16 Jul-16 Aug-16 Sep-16 Oct-16 Nov-16 Dec-16

Leave a Reply

Your email address will not be published. Required fields are marked *