Patch Repository

.NET Framework 2.0 Patch Details
Patch Name NDP20-KB928365-X86.exe
Patch Description .NET Framework 2.0 SYSTEM.WEB.DLL and MSCOREE.DLL Security Update for Windows 2000, Windows Server 2003 and Windows XP
Bulletin Id MS07-040
Bulletin Title Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212)
Severity Critical
Location Path NDP20-KB928365-X86.exe
Bulletin Summary Two of these vulnerabilities could allow remote code execution on client systems with .NET Framework installed, and one could allow information disclosure on Web servers running ASP.NET. In all remote code execution cases, users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. This security update addresses two vulnerabilities by modifying the way .NET Framework addresses buffer allocation.
Superceding Bulletin Id None
Patch Release Date Jul 10, 2007

Affected Product Information

Product Name Service Pack Name
.NET Framework 2.0.NET Framework 2.0 Gold
Windows 2000 Advanced ServerWindows 2000 Service Pack 4
Windows 2000 ProfessionalWindows 2000 Service Pack 4
Windows 2000 ServerWindows 2000 Service Pack 4
Windows Server 2003 for Small Business ServerWindows Server 2003 Service Pack 2
Windows Server 2003 for Small Business ServerWindows Server 2003 Service Pack 1
Windows Server 2003, Datacenter EditionWindows Server 2003 Service Pack 2
Windows Server 2003, Enterprise EditionWindows Server 2003 Service Pack 2
Windows Server 2003, Enterprise EditionWindows Server 2003 Service Pack 1
Windows Server 2003, Standard EditionWindows Server 2003 Service Pack 2
Windows Server 2003, Standard EditionWindows Server 2003 Service Pack 1
Windows Server 2003, Web EditionWindows Server 2003 Service Pack 2
Windows Server 2003, Web EditionWindows Server 2003 Service Pack 1
Windows XP ProfessionalWindows XP Service Pack 3
Windows XP ProfessionalWindows XP Service Pack 2

Disclaimer: This webpage is intended to provide you information about patch announcement for certain specific software products. The information is provided "As Is" without warranty of any kind. The links provided point to pages on the vendors websites. You can get more information by clicking the links to visit the relevant pages on the vendors website.