Windows Update KB3177393 resolves a security flaw in Office, Skype, and Lync

Ivan Jenic
by Ivan Jenic
Troubleshooting Expert
0 Comments
Download PDF
Affiliate Disclosure

During this month’s Patch Tuesday, Microsoft released a new security update KB3177393 for every supported version of Windows. The update resolves vulnerabilities in the Microsoft Graphics component in Windows, Office, Skype for Business, and Lync.

“This security update resolves vulnerabilities in Microsoft Windows, Microsoft Office, Skype for Business, and Microsoft Lync. The vulnerabilities could allow remote code execution if a user either visits a specially crafted website or opens a specially crafted document. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.”

A few code execution vulnerabilities appear when the Windows font library improperly handles special fonts. Of course, as is usually the case with security flaws in Windows, an attacker who takes advantage of this vulnerability can take full control over an affected computer.

To get rid of the vulnerability, Microsoft changed the way the Windows font library handles embedded fonts.

As we said, this security update is available for all supported versions of Windows including Windows 10, where it was included in cumulative updates KB3176495KB3176493, and KB3176492. If you want to find out more details about KB3177393, check the update’s security bulletin on TechNet.

Microsoft marked this update as highly recommended, so no matter which version of Windows you’re using, you should install this patch.

RELATED STORIES YOU NEED TO CHECK OUT: