MS16-140 – Important: Security Update for Boot Manager (3193479) – Version: 1.1

This post has been republished via RSS; it originally appeared at: Microsoft Security Bulletins.

Severity Rating: Important
Revision Note: V1.1 (November 23, 2016): Revised bulletin to announce a detection change for certain servers running Windows Servers 2012, Windows Server 2012 R2, and Windows Server 2016. Affected servers will not automatically receive the security update. For more information about the servers affected by this detection change, see Knowledge Base Article 3193479
Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow security feature bypass if an attacker installs an affected boot policy and bypasses Windows security features.