Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

MS15-118: Description of the security update for the .NET Framework 4.5.1 and 4.5.2 on Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2: November 10, 2015


Summary

This update resolves vulnerabilities in the Microsoft .NET Framework. The most severe of these vulnerabilities could allow elevation of privilege if an attacker injects a client-side script into a user's browser. To learn more about this vulnerability, see Microsoft Security Bulletin MS15-118.

↑ Back to the top


More information

Important All future security and nonsecurity updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.

Known issues in this security update

  • You may experience issues when you run .NET Framework applications in the following scenarios:
    • You manually install this security update on a system that has the Microsoft .NET Framework 4.6 installed.
    • You upgrade from the .NET Framework 4.5.1 or 4.5.2 to the .NET Framework 4.6 after you install this security update.
    • You install Visual Studio 2015 after you install this security update.
    For more information, click the following article number to view the article in the Microsoft Knowledge Base:
    3118750 Known issue for security updates 3098779 and 3097997 for the .NET Framework 4.5.1 and 4.5.2 on Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2

↑ Back to the top


How to obtain and install this update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Get security updates automatically.

Note For Windows RT 8.1, this update is available through Windows Update only.

Method 2: Microsoft Download Center

You can obtain the stand-alone update package through the Microsoft Download Center. To install this update, follow the installation instructions on the download page.

DownloadDownload security update 3098779

↑ Back to the top


Update deployment information

 For deployment information about this update, see Microsoft Knowledge Base article 3104507.

Update removal information

Note We do not recommend that you remove any security update.

To remove this update, use the Programs and Features item in Control Panel.



Update restart information

This update does not require a system restart after you apply it unless files that are being updated are locked or are being used.



Update replacement information

This update replaces previously released update 2901128.

File information
How to obtain help and support for this security update

↑ Back to the top



Applies to

This article applies to the following:
  • Microsoft .NET Framework 4.5.2 when used with:
    • Windows Server 2012 R2
    • Windows 8.1
    • Windows RT 8.1
  • Microsoft .NET Framework 4.5.1 when used with:
    • Windows Server 2012 R2
    • Windows 8.1
    • Windows RT 8.1

↑ Back to the top


Keywords: kbAudOEM, kbAudKnowledgeWorker, kbAudITPRO, kbAudDeveloper, kbAudEndUser, kbAudGeneralUser, KB3098779, kbexpertiseinter, kbbug, Partner, kbfix, kbsecbulletin, kbsecurity, kbsecvulnerability, atdownload

↑ Back to the top

Article Info
Article ID : 3098779
Revision : 2
Created on : 2/3/2017
Published on : 2/3/2017
Exists online : False
Views : 462