April 2015 security updates for Internet Explorer

Microsoft Security Bulletin MS15-032 (3038314)This critical security update resolves vulnerabilities in Internet Explorer. For more information, please see Microsoft Security Bulletin MS15-032.

Security Update for Flash Player (3049508)

This security update for Adobe Flash Player in Internet Explorer 10 and 11 on supported editions of Windows 8, Windows 8.1 and Windows Server 2012 and Windows Server 2012 R2 is also available. The details of the vulnerabilities are documented in Adobe security bulletin APSB15-06. This update addresses the vulnerabilities in Adobe Flash Player by updating the affected Adobe Flash binaries contained within Internet Explorer 10 and Internet Explorer 11. For more information, please see Microsoft Security Advisory 2755801.

Disabling SSL 3.0

As communicated in our February 2015 security updates blog, today we’re releasing an update that disables SSL 3.0 by default in Internet Explorer 11. Enterprise customers can choose to enable SSL 3.0 for compatibility with their web applications, however we strongly recommend instead that they update their web servers and web applications to use latest security protocols such as TLS 1.2. For more information, please see Microsoft Security Advisory 3009008.

Staying up-to-date

Most customers have automatic updates enabled and will not need to take any action because these updates will be downloaded and installed automatically. Customers who have automatic updates disabled need to check for updates and install this update manually.

– Maliha Qureshi, Senior Program Manager, Customer Experience Quality

[Updated on 4/15/2015 at 11:00 AM to include Security Update for Flash Player (3049508). - ed]