MS16-035 - Security Update for .NET Framework to Address Security Feature Bypass

Bulletin ID: 

MS16-035

Severity: 

Important

Description: 

Severity Rating: Important
Revision Note: V2.6 (November 8, 2016): Revised bulletin to announce that a detection change was made to account for .NET Framework 4.6.1 hotfix rollup customers who were not being properly offered security updates applicable to the .NET Framework 4.6.1.
Summary: This security update resolves a vulnerability in Microsoft .NET Framework. The security feature bypass exists in a .NET Framework component that does not properly validate certain elements of a signed XML document.

Security advisory: 

Related content