Microsoft October security bulletin KB3097617 summary Win10/Win8.1/Win7 and other affected

month 14 news, Microsoft released this month's routine security update this morning, the security bulletin and update details have been announced. In October 2015, there were 6 major updates, 3 of which were serious and 3 were important.
Affected operating systems and components include: Windows Vista, Win7, Win8, Win8.1, Win10, Windows Server 2008/2012 (R2), and Windows RT and Windows RT 8.1 for tablet devices, including Microsoft Office Software and services such as RT/2007/2010/2013/2013.

It is recommended that users download and install updates from Windows Update in a timely manner.

The October 2015 security update includes:

Cumulative Security Update for Internet Explorer (3096441)

This security update resolves vulnerabilities in Internet Explorer . The most serious of the vulnerabilities could allow remote code execution when a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. Customers with accounts configured to have fewer system user rights are less affected than customers with administrative user rights.

Cumulative Security Update for Microsoft Edge (3096448)

This security update resolves vulnerabilities in Microsoft Edge. The most severe of the vulnerabilities could allow information to leak when users use Microsoft Edge to view specially crafted web pages. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. Customers with accounts configured to have fewer system user rights are less affected than customers with administrative user rights.

JScript and VBScript Security Updates for Remote Code Execution (3089659)

This security update resolves vulnerabilities in the VBScript and JScript scripting engines of Microsoft Windows. If an attacker hosts a specially crafted website that is designed to exploit this vulnerability through Internet Explorer (or a website that exploits an intruding website or accepts or hosts user-provided content or advertisements) and then tricks the user into viewing the website, the most serious vulnerability may Allow remote code execution. An attacker could also embed an ActiveX control with "safety initialization" in an application that uses the IE rendering engine or a Microsoft Office document to direct users to a specially crafted website.

Windows Shell Security Update for Remote Code Execution (3096443)

This security update resolves vulnerabilities in Microsoft Windows. These vulnerabilities could allow remote code execution if a user opens a specially crafted toolbar object in Windows or an attacker convinced a user to view specially crafted content online.

Microsoft Office Security Update for Remote Code Execution (3096440)

This security update resolves vulnerabilities in Microsoft Office. The most serious of the vulnerabilities could allow remote code execution when a user opens a specially crafted Microsoft Office file. An attacker who successfully exploited these vulnerabilities could run arbitrary code in the context of the current user. Customers with accounts configured to have fewer system user rights are less affected than customers with administrative user rights.

Windows Kernel Security Update for Resolving Elevation of Privilege (3096447)

This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application.

Microsoft's KB3097617 cumulative update for Win10 today includes KB3096447, KB3096443, KB3096448, and KB3096441 updates.

Recommended:

Win10 released 4 cumulative updates including KB3097617 including security patches