Microsoft Alerts

MS Security Bulletin - revisions/updates

FYI...

MS Security Bulletin MS16-003 - Critical
Cumulative Security Update for JScript and VBScript to Address Remote Code Execution (3125540)
- https://technet.microsoft.com/en-us/library/security/MS16-003
V1.1 (May 25, 2016): Removed redundant rows from the Vulnerability Severity Rating and Maximum Security Impact by Affected Software table, and added the applicable update numbers for clarity. This is an informational change only.
___

Microsoft Security Bulletin MS15-126 - Critical
Cumulative Security Update for JScript and VBScript to Address Remote Code Execution (3116178)
- https://technet.microsoft.com/en-us/library/security/MS15-126
V1.1 (May 25, 2016): Removed redundant rows from the Vulnerability Severity Rating and Maximum Security Impact by Affected Software table, and added the applicable update numbers for clarity. This is an informational change only.
___

Update installs 'Get Windows 10 app' in Windows 8.1 and Windows 7 SP1
- https://support.microsoft.com/en-us/kb/3035583
Last Review: 05/25/2016 17:40:00 - Rev: 14.0

>> http://windowssecrets.com/patch-watch/getting-ready-or-not-for-windows-10/
May 25, 2016

GWX Control Panel
> http://blog.ultimateoutsider.com/2015/08/using-gwx-stopper-to-permanently-remove.html
Version: 1.7.4.1
April 1, 2016
> http://blog.ultimateoutsider.com/2016/03/gwx-control-panel-release-notes-and.html

:fear::fear::fear:
 
Last edited:
MS Security Bulletin Summary - June 2016

FYI...

- https://technet.microsoft.com/en-us/library/security/ms16-jun
June 14, 2016 - "This bulletin summary lists security bulletins released for June 2016...
(Total of -16-)

Microsoft Security Bulletin MS16-063 - Critical
Cumulative Security Update for Internet Explorer (3163649)
- https://technet.microsoft.com/library/security/MS16-063
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer

Microsoft Security Bulletin MS16-068 - Critical
Cumulative Security Update for Microsoft Edge (3163656)
- https://technet.microsoft.com/library/security/MS16-068
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft Edge

Microsoft Security Bulletin MS16-069 - Critical
Cumulative Security Update for JScript and VBScript (3163640)
- https://technet.microsoft.com/library/security/MS16-069
Critical - Remote Code Execution - May require restart - Microsoft Windows

Microsoft Security Bulletin MS16-070 - Critical
Security Update for Microsoft Office (3163610)
- https://technet.microsoft.com/library/security/MS16-070
Critical - Remote Code Execution - May require restart - Microsoft Office, Microsoft Office Services and Web Apps

Microsoft Security Bulletin MS16-071 - Critical
Security Update for Microsoft Windows DNS Server (3164065)
- https://technet.microsoft.com/library/security/MS16-071
Critical - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-072 - Important
Security Update for Group Policy (3163622)
- https://technet.microsoft.com/library/security/MS16-072
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-073 - Important
Security Update for Windows Kernel-Mode Drivers (3164028)
- https://technet.microsoft.com/library/security/MS16-073
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-074 - Important
Security Update for Microsoft Graphics Component (3164036)
- https://technet.microsoft.com/library/security/MS16-074
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-075 - Important
Security Update for Windows SMB Server (3164038)
- https://technet.microsoft.com/library/security/MS16-075
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-076 - Important
Security Update for Netlogon (3167691)
- https://technet.microsoft.com/library/security/MS16-076
Important - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-077 - Important
Security Update for WPAD (3165191)
- https://technet.microsoft.com/library/security/MS16-077
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-078 - Important
Security Update for Windows Diagnostic Hub (3165479)
- https://technet.microsoft.com/library/security/MS16-078
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-079 - Important
Security Update for Microsoft Exchange Server (3160339)
- https://technet.microsoft.com/library/security/MS16-079
Important - Elevation of Privilege - May require restart - Microsoft Windows

Microsoft Security Bulletin MS16-080 - Important
Security Update for Microsoft Windows PDF (3164302)
- https://technet.microsoft.com/library/security/MS16-080
Important - Remote Code Execution - May require restart - Microsoft Windows

Microsoft Security Bulletin MS16-081 - Important
Security Update for Active Directory (3160352)
- https://technet.microsoft.com/library/security/MS16-081
Important - Denial of Service - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-082 - Important
Security Update for Microsoft Windows Search Component (3165270)
- https://technet.microsoft.com/library/security/MS16-082
Important - Denial of Service - Requires restart - Microsoft Windows
___

- https://blogs.technet.microsoft.com/msrc/2016/06/14/june-2016-security-update-release/
June 14, 2016

- https://technet.microsoft.com/en-us/library/security/mt631688.aspx

June 2016 Office Update Release
- https://blogs.technet.microsoft.com...g/2016/06/14/june-2016-office-update-release/
June 14, 2016 - "... there are 22 security updates (1 bulletin) and 46 non-security updates.
Security bulletins:
MS16-070: https://technet.microsoft.com/en-us/library/security/ms16-070.aspx
All of the security and non-security updates for June are listed in KB article 3166910*
* http://support.microsoft.com/kb/3166910
A new version of Office 2013 Click-To-Run is available: 15.0.4833.1001
A new version of Office 2010 Click-To-Run is available: 14.0.7170.5000
For information on Office 365 Click-To-Run updates, see Office 365 client update branch releases:
- https://technet.microsoft.com/en-us/mt465751
___

MS16-063: http://www.securitytracker.com/id/1036096
MS16-068: http://www.securitytracker.com/id/1036099
MS16-069: http://www.securitytracker.com/id/1036097
MS16-070: http://www.securitytracker.com/id/1036093
MS16-071: http://www.securitytracker.com/id/1036095
MS16-072: http://www.securitytracker.com/id/1036100
MS16-073: http://www.securitytracker.com/id/1036109
MS16-074: http://www.securitytracker.com/id/1036101
MS16-075: http://www.securitytracker.com/id/1036110
MS16-076: http://www.securitytracker.com/id/1036103
MS16-077: http://www.securitytracker.com/id/1036104
MS16-078: http://www.securitytracker.com/id/1036105
MS16-079: http://www.securitytracker.com/id/1036106
MS16-080:
MS16-081: http://www.securitytracker.com/id/1036108
MS16-082: http://www.securitytracker.com/id/1036102
___

ISC Analysis
- https://isc.sans.edu/mspatchdays.html?viewday=2016-06-14
2016-06-14

Qualys Analysis
- https://blog.qualys.com/laws-of-vulnerabilities/2016/06/14/patch-tuesday-june-2016
June 14, 2016 - "... 16 bulletins fixing over 40 distinct vulnerabilities (CVEs). It brings up the half-year total to 81 which projects to a total of over 160 bulletins for 2016, a new record in terms of patches for the last decade..."

.
 
Last edited:
MS16-039 re-released, Cumulative update for Win10, MS16-072: NOT

FYI...

Microsoft Security Bulletin MS16-039 - Critical
Security Update for Microsoft Graphics Component (3148522)
- https://technet.microsoft.com/library/security/ms16-039.aspx
V3.0 (June 14, 2016): Microsoft has re-released security update 3144427 for affected editions of Microsoft Lync 2010 and Microsoft Lync 2010 Attendee. The re-release addresses issues customers might have experienced downloading security update 3144427. Customers running Microsoft Lync 2010 should install the update to be fully protected from the vulnerability. See Microsoft Knowledge Base Article 3144427* for more information.
* https://support.microsoft.com/en-us/kb/3144427
Last Review: 05/31/2016 00:46:00 - Rev: 4.0
___

Cumulative update for Windows 10
- https://support.microsoft.com/en-us/kb/3163017
Last Review: 06/14/2016 18:16:00 - Rev: 1.0
___

MS16-072 patch/update borks Group Policy...
- http://www.theregister.co.uk/2016/06/15/microsoft_fix_borks_group_policy/
15 Jun 2016 - "... most recent security update is causing problems with Windows Group Policy settings.
Users on Reddit* and Microsoft support forums** are reporting that after the MS16-072 update was installed, changes were made in Group Policy object (GPO) settings that left previously hidden drives and devices accessible..."
* https://www.reddit.com/r/sysadmin/comments/4o78yo/kb3159398_or_kb3164033_seems_to_remove_all/

** https://social.technet.microsoft.co...e34/patch-tuesday-kb3159398?forum=winserverGP

MS16-072: Security update for Group Policy
- https://support.microsoft.com/en-gb/kb/3163622
Last Review: 06/16/2016 21:06:00 - Rev: 4.0
Applies to:
Windows 10 ...
Windows Server 2012 ...
Windows 8.1 ...
Windows Server 2008 ...
Windows 7 SP1
Windows Vista SP2...
[ Known issues:
MS16-072 changes the security context with which user group policies are retrieved. This 'by-design' behavior change protects customers’ computers from a security vulnerability. Before MS16-072 is installed, user group policies were retrieved by using the user’s security context. After MS16-072 is installed, user group policies are retrieved by using the machines security context. This issue is applicable for the following KB articles:
https://support.microsoft.com/en-us/kb/3159398 - MS16-072: Description of the security update for Group Policy: June 14, 2016
https://support.microsoft.com/en-us/kb/3163017 - Cumulative update for Windows 10: June 14, 2016
https://support.microsoft.com/en-us/kb/3163018 - Cumulative update for Windows 10 Version 1511 and Windows Server 2016 Technical Preview 4: June 14, 2016
https://support.microsoft.com/en-us/kb/3163016 - Cumulative Update for Windows Server 2016 Technical Preview 5: June 14 2016
Symptoms: All user Group Policy, including those that have been security filtered on user accounts or security groups, or both, may fail to apply on domain joined computers.
Cause: This issue may occur if the Group Policy Object is missing the Read permissions for the Authenticated Users group or if you are using security filtering and are missing Read permissions for the domain computers group.
Resolution: To resolve this issue, use the Group Policy Management Console (GPMC.MSC) and follow one of the following steps:
Add the Authenticated Users group with Read Permissions on the Group Policy Object (GPO).
If you are using security filtering, add the Domain Computers group with read permission. ]
> https://blogs.technet.microsoft.com...072-known-issue-use-powershell-to-check-gpos/
June 16, 2016

>> https://social.technet.microsoft.co...e34/patch-tuesday-kb3159398?forum=winserverGP
"... uninstalled this update and rebooted, everything was back to normal..."

Related: MS16-072: Description of the security update for Group Policy
> https://support.microsoft.com/en-us/kb/3159398
Last Review: 06/16/2016 21:18:00 - Rev: 2.0
See "Known issues"

> https://support.microsoft.com/en-us/kb/3163016
Last Review: 06/16/2016 21:09:00 - Rev: 2.0
Applies to: Windows Server 2016
See "Known issues"
> https://support.microsoft.com/en-us/kb/3163017
Last Review: 06/16/2016 21:14:00 - Rev: 2.0
Applies to: Windows 10
See "Known issues"
> https://support.microsoft.com/en-us/kb/3163018
Last Review: 06/15/2016 08:02:00 - Rev: 2.0
Applies to: Windows Server 2016... Windows 10

:fear:
 
Last edited:
Win7SP1 - WinSvr2008R2 updates revised

FYI... Win7SP1 - WinSvr2008R2 updates revised

June 2016 update rollup for Win7SP1 and Windows Svr 2008 R2 SP1
- https://support.microsoft.com/en-us/kb/3161608
Last Review: 06/22/2016 10:00:00 - Rev: 2.0
"The June 2016 update rollup package for Windows 7 Service Pack 1 (SP1) and Windows Server 2008 R2 SP1 fixes issues and includes performance and reliability improvements. We recommend that you apply this update rollup as part of your regular maintenance routines...
Method 1: Windows Update: This update is provided as an -Optional- update on Windows Update..."

>> http://www.infoworld.com/article/30...61608-to-fix-slow-windows-7-update-scans.html
Jun 22, 2016
___

Windows Update Client for Win7 and Windows Svr 2008 R2
- https://support.microsoft.com/en-us/kb/3161647
Last Review: 06/21/2016 17:25:00 - Rev: 2.0
"This update contains some improvements to Windows Update Client in Windows 7 Service Pack 1 (SP1) and Windows Server 2008 R2 SP1. This includes the following:
• An optimization that addresses long scan time for updates that's reported on some computers.
• Fix for a Windows Update error 0x8007000E on some computers while they are updating.
• Some reliability improvements..."

:fear::fear:
 
Compatibility update for upgrading Win7-Win8 Rev 23.0, 27.0

FYI...

Compatibility update for upgrading Windows 7
- https://support.microsoft.com/en-us/kb/2952664
Last Review: 07/05/2016 16:22:00 - Rev: 23.0
Applies to:
Windows 7 SP1
___

Compatibility update for Windows 8.1 and Windows 8
- https://support.microsoft.com/en-us/kb/2976978
Last Review: 07/05/2016 16:23:00 - Rev: 27.0
Applies to:
Windows 8.1 Enterprise, Windows 8.1, Windows 8.1 Pro, Windows 8 Enterprise, Windows 8, Windows 8 Pro
___

> http://www.infoworld.com/article/30...6978-2977759-and-windows-journal-3170735.html
Jul 6, 2016

- https://support.microsoft.com/en-us/kb/2977759
Last Review: 07/05/2016 16:24:00 - Rev: 23.0
Applies to:
Windows 7 Enterprise, Windows 7 Home Premium, Windows 7 Home Basic, Windows 7 Professional, Windows 7 Starter, Windows 7 Ultimate

Update for Journal.dll binary in Windows
- https://support.microsoft.com/en-us/kb/3138378
Last Review: 05/10/2016 17:25:00 - Rev: 4.0
Applies to:
Windows Server 2012 R2 Datacenter, Windows Server 2012 R2 Standard, Windows Server 2012 R2 Essentials, Windows Server 2012 R2 Foundation, Windows 8.1 Enterprise, Windows 8.1 Pro, Windows 8.1, Windows RT 8.1, Windows Server 2012 Datacenter, Windows Server 2012 Standard, Windows Server 2012 Essentials, Windows Server 2012 Foundation, Windows Server 2008 R2 Service Pack 1, Windows 7 Service Pack 1, Windows Server 2008 Service Pack 2, Windows Vista Service Pack 2

:fear::fear:
 
Last edited:
July 2016 'Non-Security' Office Update Release / MS16-072 more detail

FYI...

July 2016 'Non-Security' Office Update Release
> https://blogs.technet.microsoft.com...july-2016-non-security-office-update-release/
July 5, 2016
"Listed below are the non-security updates we released on Microsoft Update and the Download Center today. See the linked KB articles for more information.
Office 2007: Update for Microsoft Office Outlook 2007 Junk Email Filter (KB3115307)*
Office 2010: Definition Update for Microsoft Office 2010 (KB3115321)**
Office 2013 ...
Office 2016 ..."

* https://support.microsoft.com/en-us/kb/3115307
Last Review: 07/05/2016 16:32:00 - Rev: 1.0

** https://support.microsoft.com/en-us/kb/3115321
Last Review: 07/05/2016 16:33:00 - Rev: 1.0
___

MS posts -more- details for botched permissions in MS16-072
- http://www.infoworld.com/article/30...ails-for-botched-permissions-in-ms16-072.html
Jul 6, 2016 - "... The patch caused problems, though - not with client-side computers, but in the way admins have set permissions for Group Policies - on the server side..."

:spider:
 
Last edited:
MS Security Bulletin Summary - July 2016

FYI...

- https://technet.microsoft.com/library/security/ms16-jul
July 12, 2016
MS16-084 – MS16-094
(Total of -11-)

Microsoft Security Bulletin MS16-084 - Critical
Cumulative Security Update for Internet Explorer (3169991)
- https://technet.microsoft.com/library/security/MS16-084
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer

Microsoft Security Bulletin MS16-085 - Critical
Cumulative Security Update for Microsoft Edge (3169999)
- https://technet.microsoft.com/library/security/MS16-085
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft Edge

Microsoft Security Bulletin MS16-086 - Critical
Cumulative Security Update for JScript and VBScript (3169996)
- https://technet.microsoft.com/library/security/MS16-086
Critical - Remote Code Execution - May require restart - Microsoft Windows

Microsoft Security Bulletin MS16-087 - Critical
Security Update for Windows Print Spooler Components (3170005)
- https://technet.microsoft.com/library/security/MS16-087
Critical - Remote Code Execution - May require restart - Microsoft Windows

Microsoft Security Bulletin MS16-088 - Critical
Security Update for Microsoft Office (3170008)
- https://technet.microsoft.com/library/security/MS16-088
Critical - Remote Code Execution - May require restart - Microsoft Office, Microsoft Office Services and Web Apps

Microsoft Security Bulletin MS16-089 - Important
Security Update for Windows Secure Kernel Mode (3170050)
- https://technet.microsoft.com/library/security/MS16-089
Important - Information Disclosure - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-090 - Important
Security Update for Windows Kernel-Mode Drivers (3171481)
- https://technet.microsoft.com/library/security/MS16-090
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-091 - Important
Security Update for .NET Framework (3170048)
- https://technet.microsoft.com/library/security/MS16-091
Important - Information Disclosure - May require restart - Microsoft Windows, Microsoft .NET Framework

Microsoft Security Bulletin MS16-092 - Important
Security Update for Windows Kernel (3171910)
- https://technet.microsoft.com/library/security/MS16-092
Important - Security Feature Bypass - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-093 - Critical
Security Update for Adobe Flash Player (3174060)
- https://technet.microsoft.com/library/security/MS16-093
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Adobe Flash Player

Microsoft Security Bulletin MS16-094 - Important
Security Update for Secure Boot (3177404)
- https://technet.microsoft.com/library/security/MS16-094
Important - Security Feature Bypass - Requires restart - Microsoft Windows
___

July 2016 Office Update Release
- https://blogs.technet.microsoft.com...g/2016/07/12/july-2016-office-update-release/
July 12, 2016 - "... This month, there are -26- security updates (1 bulletin) and -41- non-security updates.
Security bulletins: MS16-088: https://technet.microsoft.com/en-us/library/security/ms16-088.aspx
All of the security and non-security updates for June are listed in KB article 3173835* ..."
* https://support.microsoft.com/en-us/kb/3173835
Last Review: 07/12/2016 16:32:00 - Rev: 1.0
___

MS16-084: http://www.securitytracker.com/id/1036283
MS16-085: http://www.securitytracker.com/id/1036286
MS16-086: http://www.securitytracker.com/id/1036282
MS16-087: http://www.securitytracker.com/id/1036277
MS16-088: http://www.securitytracker.com/id/1036274
- http://www.securitytracker.com/id/1036275
MS16-089: http://www.securitytracker.com/id/1036287
MS16-090: http://www.securitytracker.com/id/1036288
MS16-091: http://www.securitytracker.com/id/1036291
MS16-092: http://www.securitytracker.com/id/1036289
MS16-093:
MS16-094: http://www.securitytracker.com/id/1036290
___

ISC Analysis: https://isc.sans.edu/diary.html?storyid=21249
2016-07-12: https://isc.sans.edu/mspatchdays.html?viewday=2016-07-12

Qualys Analysis: https://blog.qualys.com/laws-of-vul...2/patch-tuesday-july-2016-microsoft-and-adobe
July 12, 2016 - "... 11 security updates that affect a host of desktop and server systems. Six updates are categorized as Critical while the rest are categorized as Important. All critical updates released today affect desktop systems. Top priority should be given to fixing browsers and Office which includes MS16-084 that affects Internet Explorer, MS16-085 which affects Microsoft Edge and MS16-088 for Office. All three updates fix vulnerabilities that allow an attacker to take complete control of the victim’s machine and therefore these should be patched immediately... Adobe Reader is back after being dormant for three months. Adobe has released APSB16-26 which fixes 30 vulnerabilities on Windows and Mac platforms. Many vulnerabilities fixed by APSB16-26 allows an attacker to take complete control of the victim machine and we recommend applying patch for this critical issue as soon as possible. This is the third Acrobat Reader fix in 2016 while the count of Adobe Flash is more than double. Adobe has also released an update for its Flash Player – APSB16-25 which fixes -52- vulnerabilities... we recommend applying the Flash and Reader update immediately..."

.
 
Last edited:
'Get Windows 10 app' - Rev 16.0

FYI...

Update installs 'Get Windows 10 app' in Win8.1 and Win7SP1
- https://support.microsoft.com/en-us/kb/3035583
Last Review: 07/19/2016 20:10:00 - Rev: 16.0
Applies to:
Windows 8.1 Pro
Windows 8.1
Windows 7 SP1

Win10 NAG screen: http://core0.staticworld.net/images/article/2016/06/dont-miss-out-100669527-large.idge.jpg
___

GWX Control Panel
> http://ultimateoutsider.com/downloads/
"... disable 'Upgrade to Windows 10' behavior in the Windows Update control panel"

- http://www.infoworld.com/article/30...-windows-10-nagster-kb-3035583-yet-again.html
Jul 20, 2016

:fear::fear:
 
Last edited:
Update for Windows Journal component removal / Win10 upgrade stuck at 99 percent

FYI...

Update for Windows Journal component removal
- https://support.microsoft.com/en-us/kb/3161102
Article ID: 3161102 - Last Review: 07/29/2016 03:01:00 - Rev: 2.0
Applies to:
Windows 8.1 Enterprise, Windows 8.1 Pro, Windows 8.1, Windows 7 Service Pack 1
"Known issues in this update: This update does not work on Windows Embedded 7 and should not be installed on that operating system.
Remove Windows Journal Component: This update removes the Windows Journal component. We recommend that all users install this update immediately..."
___

Windows 10 upgrade stuck at 99 percent? Here are your options
- http://www.infoworld.com/article/31...tuck-at-99-percent-here-are-your-options.html
Jul 28, 2016

> http://answers.microsoft.com/en-us/...ck-at-99/1708a411-3255-4bec-804a-d2553f2fd645
___

Excel Workbooks may not open after installing MS16-088
- https://blogs.technet.microsoft.com...books-may-not-open-after-installing-ms16-088/
"... Update 7/28/2016
Update: Our dev team is working on options to preserve security and assist customers with their workflow. Currently we do not have any further workarounds.
Additional background: The security update changed how Excel handles documents that are opened from untrusted locations (such the Internet zone) which are not supported in Protected View, such as HTML/XML/XLA files. Opening them without Protected View has led to a security vulnerability, and therefore files open from such locations are now blocked. We realize this breaks compatibility with some existing solutions, and are working on getting these file types supported with Protected View. Until that happens, users will need to manually trust the file before they open them in Excel, as demonstrated in one of the workaround suggestions. Excel can still open these files without an issue if they are trusted.
We strongly recommend against removing the security update..."
See: 'Additional info' for Office 2016, 2013, 2010 on '0ffice Trusted Locations'.

:fear::fear:
 
Last edited:
Win10 'Anniversary Update' woes continue

FYI...

Win10 'Anniversary Update' woes continue
... Problems with last week’s Anniversary Update keep piling up, and solutions remain elusive
- http://www.infoworld.com/article/31...dows-10-anniversary-update-woes-continue.html
Aug 8, 2016

- http://www.theregister.co.uk/2016/08/08/windows_10_anniversary_update_is_borking_boxen_everywhere/
8 Aug 2016

Block forced Windows 10 updates
- http://www.infoworld.com/article/29...ws-10-updates-using-a-metered-connection.html

Enable Metered Connection to Delay Windows 10 Updates
- http://lifehacker.com/enable-metered-connection-to-delay-windows-10-updates-1723316525

>> http://www.guidingtech.com/48828/delay-disable-mandatory-updates-windows-10/

>> http://www.howtogeek.com/223864/how-to-uninstall-and-block-updates-and-drivers-on-windows-10/
"... If you want to temporarily prevent Windows from automatically downloading and installing any updates, you can do it without using the above tool to block updates. Just set your current Internet connection as “metered” and Windows won’t download updates while connected to it — at least until you tell Windows the connection isn’t metered anymore."

> http://www.howtogeek.com/224471/how-to-prevent-windows-10-from-automatically-downloading-updates/

:fear::fear:
 
Last edited:
MS Security Bulletin Summary - August 2016

FYI...

- https://technet.microsoft.com/en-us/library/security/ms16-aug
Aug 9, 2016 - "This bulletin summary lists security bulletins released for August 2016...
(Total of -9-)

Microsoft Security Bulletin MS16-095 - Critical
Cumulative Security Update for Internet Explorer (3177356)
- https://technet.microsoft.com/library/security/MS16-095
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer

Microsoft Security Bulletin MS16-096 - Critical
Cumulative Security Update for Microsoft Edge (3177358)
- https://technet.microsoft.com/library/security/MS16-096
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft Edge

Microsoft Security Bulletin MS16-097 - Critical
Security Update for Microsoft Graphics Component (3177393)
- https://technet.microsoft.com/library/security/MS16-097
Critical - Remote Code Execution - May require restart - Microsoft Windows, Microsoft Office, Microsoft Communications Platforms and Software

Microsoft Security Bulletin MS16-098 - Important
Security Update for Windows Kernel-Mode Drivers (3178466)
- https://technet.microsoft.com/library/security/MS16-098
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-099 - Critical
Security Update for Microsoft Office (3177451)
- https://technet.microsoft.com/library/security/MS16-099
Critical - Remote Code Execution - May require restart - Microsoft Office, Microsoft Office Services and Web Apps

Microsoft Security Bulletin MS16-100 - Important
Security Update for Secure Boot (3179577)
- https://technet.microsoft.com/library/security/MS16-100
Important - Security Feature Bypass - Does not require restart - Microsoft Windows

Microsoft Security Bulletin MS16-101 - Important
Security Update for Windows Authentication Methods (3178465)
- https://technet.microsoft.com/library/security/MS16-101
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-102 - Critical
Security Update for Microsoft Windows PDF Library (3182248)
- https://technet.microsoft.com/library/security/MS16-102
Important - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-103 - Important
Security Update for ActiveSyncProvider (3182332)
- https://technet.microsoft.com/library/security/MS16-103
Important - Information Disclosure - Requires restart - Microsoft Windows
___

MS16-095: http://www.securitytracker.com/id/1036562
MS16-096: http://www.securitytracker.com/id/1036569
MS16-097: http://www.securitytracker.com/id/1036564
MS16-098: http://www.securitytracker.com/id/1036572
MS16-099: http://www.securitytracker.com/id/1036559
MS16-100: http://www.securitytracker.com/id/1036573
MS16-101: http://www.securitytracker.com/id/1036576
MS16-102: http://www.securitytracker.com/id/1036561
MS16-103: http://www.securitytracker.com/id/1036577
___

- https://blogs.technet.microsoft.com/msrc/2016/08/09/august-2016-security-update-release/
Aug 9, 2016

- https://technet.microsoft.com/en-us/library/security/mt631688.aspx

Microsoft Security Advisory 3179528
Update for Kernel Mode Blacklist
- https://technet.microsoft.com/en-us/library/security/3179528.aspx
Aug 9, 2016

August 2016 Office Update Release
- https://blogs.technet.microsoft.com...2016/08/09/august-2016-office-update-release/
Aug 9, 2016 - "... This month, there are -28- security updates (3 bulletins) and 40 non-security updates.
Security bulletins:
MS16-054 - https://technet.microsoft.com/en-us/library/security/ms16-054.aspx
MS16-097 - https://technet.microsoft.com/en-us/library/security/ms16-097.aspx
MS16-099 - https://technet.microsoft.com/en-us/library/security/ms16-099.aspx
All of the security and non-security updates for August are listed in KB article 3181038:
> http://support.microsoft.com/kb/3181038
A new version of Office 2013 Click-To-Run is available: 15.0.4849.1003
A new version of Office 2010 Click-To-Run is available: 14.0.7172.5001
A new version of Office 2013 Click-To-Run is available: 15.0.4849.1003
For information on Office 365 Click-To-Run updates, see Office 365 client update branch releases:
> https://technet.microsoft.com/en-us/mt465751

Non-Security Office Update Release - August 2016
- https://blogs.technet.microsoft.com...gust-2016-non-security-office-update-release/
Aug 2, 2016
___

ISC Analysis
- https://isc.sans.edu/mspatchdays.html?viewday=2016-08-09
Aug 9, 2016

Qualys Analysis
- https://blog.qualys.com/laws-of-vulnerabilities/2016/08/09/microsoft-patch-tuesday-august-2016
Aug 9, 2016

.
 
Last edited:
Last edited:
MS QC patch ...

FYI...

MS16-098: Description of the security update for Windows kernel-mode drivers...
- http://www.infoworld.com/article/31...inting-bugs-in-kb-3177725-and-kb-3176493.html
Aug 15, 2016 - "... Microsoft's latest Patch Tuesday bug appears to affect Vista, Windows 7, 8.1, RT 8.1, as well as Server 2008, 2008 R2, 2012, and 2012 R2. More than that, it appears to clobber all versions of Windows 10. In other words, if you applied the latest cumulative update to any version of Windows 10, your printer won't work right...
Microsoft has admitted to distributing the bug, but there's no indication when it will issue a fix..."
* https://answers.microsoft.com/en-us...s/1280fc29-68ff-4328-83b2-e42704633262?auth=1
Dan Mattson - Microsoft: "... we are actively investigating this issue and have updated some of the KB articles involved with a 'Known Issues' section:
"After you apply this security update and you print multiple documents in succession, the first two documents may print successfully. However, the third and subsequent documents may not print."
Links: https://support.microsoft.com/en-us/kb/3177725
- https://support.microsoft.com/en-us/kb/3178466
If publicly available information on this topic changes, we will provide an update here as well."

- https://support.microsoft.com/en-us/kb/3177725
Last Review: 08/12/2016 17:37:00 - Rev: 3.0
- https://support.microsoft.com/en-us/kb/3178466
Last Review: 08/12/2016 17:38:00 - Rev: 3.0

:fear::fear:
 
Last edited:
M$ Bulletin Summary 8.2016 - Revisions...

FYI...

> https://technet.microsoft.com/library/security/ms16-aug.aspx
Updated: August 18, 2016 - Version: 1.4
Revisions:
V1.0 (August 9, 2016): Bulletin Summary published.
V1.1 (August 10, 2016): For MS16-101, Bulletin Summary revised to correct the security impact for CVE-2016-3237 from elevation of privilege to security feature bypass. This is an informational change only. Customers who have already successfully installed the update do not need to take any action.
V1.2 (August 11, 2016): For MS16-102, Bulletin Summary revised to remove Windows Server 2012 R2 (Server Core installation) from the affected software table because the Server Core version of Windows Server 2012 R2 is not affected. These are informational changes only. Customers who have already successfully installed the update do not need to take any action.
V1.3 (August 12, 2016): For MS16-102, Bulletin Summary revised to remove Windows 10 version 1607 from the affected software table because it is not affected. This is an informational change only. Customers who have already successfully installed the update do not need to take any action.
V1.4 (August 18, 2016): For MS16-095, MS16-096, MS16-097, MS16-098, MS16-101, MS16-102, and MS16-103, Bulletin Summary revised to add 'Known Issues' references to the Executive Summaries table. See the relevant Knowledge Base articles for more information.

MS16-097: https://support.microsoft.com/en-us/kb/3177393
"... articles may contain 'known issue' information"
MS16-098: https://support.microsoft.com/en-us/kb/3178466
"Known issues: After you apply this security update and you print multiple documents in succession, the first two documents may print successfully. However, the third and subsequent documents may not print."
MS16-101: https://support.microsoft.com/en-us/kb/3179577
"... articles may contain 'known issue' information"
MS16-102: https://support.microsoft.com/en-us/kb/3182248
"... articles may contain 'known issue' information"
MS16-103: https://support.microsoft.com/en-us/kb/3182332
"... articles may contain 'known issue' information"

:fear::fear: :sad:
 
MS16-098 ptr fix ...

FYI...

Print functionality is broken after any of the MS16-098 security updates are installed
- https://support.microsoft.com/en-us/kb/3187022
Last Review: 08/30/2016 16:24:00 - Rev: 3.0
"Prerequisites: To apply this update, you must have April 2014 update rollup for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 (2919355) installed in Windows 8.1 or Windows Server 2012 R2.
Or, install Service Pack 1 for Windows 7 or Windows Server 2008 R2..."
___

Fix for print bug in MS16-098 for Win7 and 8.1 – not Win10
> http://www.infoworld.com/article/31...s16-098kb-3177725-but-not-for-windows-10.html
Aug 25, 2016 - "... Microsoft rolled out a fix to the bug and assigned a different KB number, KB 3187022:
'Print functionality is broken after any of the MS16-098 security updates are installed'
If you're running Windows 7, Win8.1, or WinRT, that patch should've appeared last night in your Windows Update queue. But here's the rub. Microsoft didn't release the fix for Windows 10 in any version. Instead, Win10 users are stuck with the bug... Vista users, it seems, aren't in the picture..."

:fear:
 
Last edited:
MS Update Svcs Rev 36.0 / MS16-099 v2.0 / MS16-102 V1.2

FYI...

Description of Software Update Services and Windows Server Update Services changes in content for 2016
- https://support.microsoft.com/en-us/kb/894199
Last Review: 08/30/2016 16:24:00 - Rev: 36.0
[See] "... summary of the new and changed content scheduled for release on Tuesday, August 30, 2016..."
> https://support.microsoft.com/en-us/kb/894199#bookmark-ref
___

MS Security Bulletin MS16-099 - Critical
Security Update for Microsoft Office (3177451)
- https://technet.microsoft.com/en-us/library/security/MS16-099
Revisions:
V1.0 (August 9, 2016): Bulletin published.
V1.1 (August 11, 2016): Bulletin revised to correct the Updates Replaced entries for Microsoft Word Viewer updates 3115479 and 3115480. This is an informational change only. Customers who have already successfully updated their systems do not need to take any action.
V2.0 (August 22, 2016): Bulletin revised to announce the availability of the 14.6.7 update for Microsoft Office for Mac 2011 (3179162) and the 15.25 update for Microsoft Office 2016 for Mac (3179163). Customers running affected Mac software should install the appropriate update for their product to be protected from the vulnerabilities discussed in this bulletin. Customers running other Microsoft Office software do not need to take any action. See Microsoft Knowledge Base Article 3179162 and Microsoft Knowledge Base Article 3179163 for more information and download links.
___

MS Security Bulletin MS16-102 - Critical
Security Update for Microsoft Windows PDF Library (3182248)
- https://technet.microsoft.com/en-us/library/security/MS16-102
Revisions:
V1.0 (August 9, 2016): Bulletin published.
V1.1 (August 11, 2016): Bulletin revised to remove Windows Server 2012 R2 (Server Core installation) from the affected software table because the Server Core version of Windows Server 2012 R2 is not affected. This is an informational change only. Customers who have already successfully installed the update do not need to take any action.
V1.2 (August 12, 2016): Bulletin revised to correct the updates replaced for Window 8.1, Windows Server 2012, and Windows Server 2012 R2. Bulletin revised to remove Windows 10 version 1607 from the affected software table because it is not affected. This is an informational change only. Customers who have already successfully installed the update do not need to take any action.
___

> https://blogs.technet.microsoft.com/askpfeplat/2016/08/30/a-bit-about-the-windows-servicing-model/
Aug 30, 2016 - "... a discussion on the upcoming changes to our monthly patch releases to align down-level supported operating systems, updating practices to coincide with the Windows 10 Service Model... Beginning in October 2016 onwards, don’t expect to see individual KB’s but instead expect to see the following in the monthly patch release cycle:
1. Security-Only Update:
- Collects all of the security patches for that month into a single update
2. Cumulative Update:
- Security Updates from previous bullet point
- Collective update of all Updates, Rollups, Bug Fixes, and Security Updates
3. .Net Framework Security-Only Update:
- Contains only security updates
4. .Net Framework Rollup
- .Net Framework Security Updates from Previous Bullet Point
- Reliability updates
This change brings up a key question: 'With the new Windows as a Service: Service Model, can we back out a single patch (KB) if it causes issues since they are all rolled up?' The short answer is 'No', you can’t control which KB’s can be applied, so the complete roll up would need to be backed out. But the answer is more complex than a simple no. The point of rollups is to correct the fragmentation caused by systems containing a mix of individual updates. It will not be possible to uninstall specific KB’s of a rollup. If there is a problem the partner will need to open up a case and provide business justification to drive the discussion with Microsoft..."

:fear::fear:
 
Last edited:
MS Security Bulletin Summary - September 2016

FYI...

- https://technet.microsoft.com/library/security/ms16-sep
Sep 13, 2016 - "This bulletin summary lists security bulletins released for September 2016...
(Total of -14-)

Microsoft Security Bulletin MS16-104 - Critical
Cumulative Security Update for Internet Explorer (3183038)
- https://technet.microsoft.com/library/security/MS16-104
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer

Microsoft Security Bulletin MS16-105 - Critical
Cumulative Security Update for Microsoft Edge (3183043)
- https://technet.microsoft.com/library/security/MS16-105
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft Edge

Microsoft Security Bulletin MS16-106 - Critical
Security Update for Microsoft Graphics Component (3185848)
- https://technet.microsoft.com/library/security/MS16-106
Critical - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-107 - Critical
Security Update for Microsoft Office (3185852)
- https://technet.microsoft.com/library/security/MS16-107
Critical - Remote Code Execution - May require restart - Microsoft Office, Microsoft Office Services and Web Apps

Microsoft Security Bulletin MS16-108 - Critical
Security Update for Microsoft Exchange Server (3185883)
- https://technet.microsoft.com/library/security/MS16-108
Critical - Remote Code Execution - May require restart - Microsoft Exchange

Microsoft Security Bulletin MS16-109 - Important
Security Update for Silverlight (3182373)
- https://technet.microsoft.com/library/security/MS16-109
Important - Remote Code Execution - Does not require restart - Microsoft Windows

Microsoft Security Bulletin MS16-110 - Important
Security Update for Microsoft Windows (3178467)
- https://technet.microsoft.com/library/security/MS16-110
Important - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-111 - Important
Security Update for Windows Kernel (3186973)
- https://technet.microsoft.com/library/security/MS16-111
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-112 - Important
Security Update for Windows Lock Screen (3178469)
- https://technet.microsoft.com/library/security/MS16-112
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-112 - Important
Security Update for Windows Lock Screen (3178469)
- https://technet.microsoft.com/library/security/MS16-112
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-113 - Important
Security Update for Windows Secure Kernel Mode (3185876)
- https://technet.microsoft.com/library/security/MS16-113
Important - Information Disclosure - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-114 - Important
Security Update for Windows SMBv1 Server (3185879)
- https://technet.microsoft.com/library/security/MS16-114
Important - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-115 - Important
Security Update for Microsoft Windows PDF Library (3188733)
- https://technet.microsoft.com/library/security/MS16-115
Important - Information Disclosure - May require restart - Microsoft Windows

Microsoft Security Bulletin MS16-116 - Critical
Security Update in OLE Automation for VBScript Scripting Engine (3188724)
- https://technet.microsoft.com/library/security/MS16-116
Critical - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-117 - Critical
Security Update for Adobe Flash Player (3188128)
- https://technet.microsoft.com/library/security/MS16-117
Critical - Remote Code Execution- Requires restart - Microsoft Windows, Adobe Flash Player
___

MS16-104: http://www.securitytracker.com/id/1036788
MS16-105: http://www.securitytracker.com/id/1036789
MS16-106: http://www.securitytracker.com/id/1036786
MS16-107: http://www.securitytracker.com/id/1036785
MS16-108: http://www.securitytracker.com/id/1036778
MS16-109: http://www.securitytracker.com/id/1036795
MS16-110: http://www.securitytracker.com/id/1036798
MS16-111: http://www.securitytracker.com/id/1036802
MS16-112: http://www.securitytracker.com/id/1036799
MS16-113: http://www.securitytracker.com/id/1036800
MS16-114: http://www.securitytracker.com/id/1036803
___

- https://blogs.technet.microsoft.com/msrc/2016/09/13/september-2016-security-update-release/
Sep 13, 2016

Security Advisories:
Microsoft Security Advisory 3174644
Updated Support for Diffie-Hellman Key Exchange
- https://technet.microsoft.com/library/security/3174644
Sep 13, 2016
Microsoft Security Advisory 3181759
Vulnerabilities in ASP.NET Core View Components Could Allow Elevation of Privilege
- https://technet.microsoft.com/library/security/3181759
Sep 13, 2016

Sep 2016 Office Update Release
- https://blogs.technet.microsoft.com...6/09/13/september-2016-office-update-release/
Sep 13, 2016 - "... This month, there are -34- security updates (1 bulletin) and 35 non-security updates.
Security bulletins:
MS16-107: https://technet.microsoft.com/en-us/library/security/ms16-107.aspx
All of the security and non-security updates for September are listed in KB article 3188548:
> http://support.microsoft.com/kb/3188548
A new version of Office 2013 Click-To-Run is available: 15.0.4859.1002
A new version of Office 2010 Click-To-Run is available: 14.0.7173.5001
For information on Office 365 Click-To-Run updates, see Office 365 client update branch releases:
- https://technet.microsoft.com/en-us/mt465751
___

ISC Analysis: https://isc.sans.edu/mspatchdays.html?viewday=2016-09-13

Qualys Analysis: https://blog.qualys.com/laws-of-vul...icrosoft-patch-tuesday-update-for-august-2016
"... 14 security bulletins that affect a host of components including desktop operating systems, servers, browsers, Exchange server, Silverlight, SMBv1 and several others. It’s a large update that will keep desktop as well as server administrators busy. Seven updates are rated as critical, while the other seven are rated as Important. One 0-day vulnerability CVE-2016-3352 which was publicly disclosed earlier is also patched in the MS16-110 bulletin..."

.
 
Last edited:
MS16-104 - 'Known issues...'

FYI...

MS16-104: Security update for Internet Explorer
- https://support.microsoft.com/en-us/kb/3185319
"... Known issues in this security update:
• When you open a .URL shortcut in Windows Explorer (such as from the Favorites folder), you receive a "File Download – Security Warning" message.
• Microsoft is aware of limited situations in which an ActiveX installation fails when you use the ActiveX Installer Service (AXIS) together with Internet Explorer 10 or Internet Explorer 11.
To resolve this issue, install update 3192665*..."
Last Review: 09/30/2016 23:43:00 - Rev: 3.0
Applies to: Internet Explorer 11, Internet Explorer 10, Windows Internet Explorer 9

ActiveX installation that uses AXIS fails after you install MS16-104
* https://support.microsoft.com/en-us/kb/3192665
Last Review: 09/22/2016 20:07:00 - Rev: 1.0
Applies to: Windows 8.1 Enterprise, Windows 8.1 Pro, Windows 8.1, Windows 7 Service Pack 1

:fear::fear:
 
You must log in or register to reply here.
Back
Top