| Patch Name : |
NDP20-KB928365-X64.exe |
| Patch Description : |
.NET Framework 2.0 SYSTEM.WEB.DLL and MSCOREE.DLL Security Update for Windows 2000, Windows Server 2003 and Windows XP |
| Bulletin Id : |
MS07-040 |
| Bulletin Title : |
Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212) |
| KnowledgeBase : | 928365 |
| Severity : |
Important |
| Location Path : | NDP20-KB928365-X64.exe |
| Bulletin Summary: |
Two of these vulnerabilities could allow remote code execution on client systems with .NET Framework installed, and one could allow information disclosure on Web servers running ASP.NET. In all remote code execution cases, users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
This security update addresses two vulnerabilities by modifying the way .NET Framework addresses buffer allocation.
|
| Superceding Bulletin Id : |
MS09-061 |
| Patch Release Date : |
Jul 10, 2007 |
| CVE Id : | CVE-2007-0043 |
| Affected Product Information |
|
| Product Name |
Service Pack Name |
| .NET Framework 2.0 (x64) | .NET Framework 2.0 (x64) GOLD |
|
| File changes |
|
| File Path |
Version |
| $x64$%windir%\Microsoft.NET\Framework\v2.0.50727\Aspnet_isapi.dll | 2.0.50727.832 |
| $x64$%windir%\Microsoft.NET\Framework\v2.0.50727\Aspnet_regiis.exe | 2.0.50727.832 |
| $x64$%windir%\Microsoft.NET\Framework\v2.0.50727\System.web.dll | 2.0.50727.832 |
|
| Registry changes |
|
| Registry Path |
Key Name |
Key Value |
| No records found | | |
