Microsoft releases MS16-120: Description of the security update for Lync 2013 (Skype for Business): October 11, 2016




This security update resolves vulnerabilities in Microsoft Lync 2013 and Skype for Business. The vulnerabilities could allow remote code execution if a user opens a specially crafted document or visits a webpage that contains specially crafted embedded fonts. To learn more about the vulnerabilities, see Microsoft Security Bulletin MS16-120.
For a complete list of affected software, see Microsoft Knowledge Base article 3192884.

Nonsecurity-related fixes and improvements that are included in this security update

  • 3193843 Lync 2013 (Skype for Business) connects through the DirectAccess tunnel when you connect to an external network
  • 3195495 Skype for Business doesn’t open the Outlook window when you try to “Find Previous Conversations”