MS10-070: Description of the security update for the Microsoft .NET Framework 3.5 on Windows Server 2003 and on Windows XP

Article translations Article translations
Article ID: 2416468 - View products that this article applies to.
Expand all | Collapse all

On This Page

INTRODUCTION

Microsoft has released security bulletin MS10-070. To view the complete security bulletin, visit one of the following Microsoft websites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

MORE INFORMATION

For more information about how to configure legacy encryption mode in ASP.NET, click the following article number to view the article in the Microsoft Knowledge Base:
2425938 How to configure legacy encryption mode in ASP.NET

Download Information

The following file is available for download from the Microsoft Download Center:


Collapse this imageExpand this image
Download
Download the package now.

Release Date: September 28, 2010

For more information about how to download Microsoft support files, click the following article number to view the article in the Microsoft Knowledge Base:
119591 How to obtain Microsoft support files from online services
Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help prevent any unauthorized changes to the file.

Prerequisites

To install this update, you must have Windows Installer 3.1 or a later version installed on the computer. To obtain the latest version of Windows Installer, visit the following Microsoft website:
Windows Installer 4.5 Redistributable

Known issues and additional information about this security update

For more information about installation issues this security update or with the Microsoft .NET Framework 3.5, click the following article numbers to view the articles in the Microsoft Knowledge Base:
2431728 Encrypted content in ASP.NET is not decrypted for a website that is deployed in a web farm
2431208 An update for the Microsoft .NET Framework may fail to install when the Microsoft .NET Framework 4 is installed and a restart is pending
923100 When you try to install an update for the .NET Framework 1.0, 1.1, 2.0, 3.0, or 3.5, you may receive Windows Update error code "0x643" or Windows Installer error code "1603"
923101 Error message when you try to install a security update for the .NET Framework 2.0 on a computer that is running Windows Server 2003 x64 Edition: "Error 1324. The folder 'Program Files' contains an invalid character"
2197148 A known issue with the Microsoft .NET Framework 2.0 Service Pack 1 updates and the Microsoft .NET Framework 3.5 updates
2260913 Files in use or File Locks can Result in Framework Assembly Files being Deleted
2263996 Patching of Microsoft Framework can fail with Access is denied or File in Use error

Command-line switches for this update

For information about the various command-line switches that are supported by this update, see the Windows Installer command-line switches document.

For more information about Windows Installer, visit the Windows Installer MSDN website.

Restart requirement

You do not have to restart the system after you install this security update unless files that are being updated are locked or in use. However, this security update will cause all Internet Information Services (IIS)-related services to restart. These include the IISADMIN, W3SVC, FTP, and SMTP services. This behavior occurs because a base component for the .NET Framework includes instructions to restart these services. Therefore, every update to the product will execute the same instructions to restart these services.

Update removal information

To remove this security update, use the Add or Remove Programs item in Control Panel.

Update replacement information

This security update does not replace a previously released security update.

FILE INFORMATION

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time and with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

For all supported x86-based versions

Collapse this tableExpand this table
File name File version File size Date Time
Aspnet_perf.dll2.0.50727.188730,04022-Sep-201021:40
aspnet_perf.h6,53722-Sep-201021:40
aspnet_perf.ini897,67622-Sep-201021:40
aspnet_perf2.ini895,67822-Sep-201021:40
aspnet_state_perf.h31822-Sep-201021:40
aspnet_wp.exe2.0.50727.188730,03222-Sep-201021:40
webengine.dll2.0.50727.1887430,41622-Sep-201021:40
System.Web.dll2.0.50727.18875,189,63222-Sep-201021:40

For all supported x64-based versions

Collapse this tableExpand this table
File name File version File size Date Time
Aspnet_perf.dll2.0.50727.188737,72022-Sep-201018:17
Aspnet_perf.dll2.0.50727.188730,04022-Sep-201021:40
aspnet_perf.h6,53722-Sep-201015:28
aspnet_perf.h6,53722-Sep-201021:40
aspnet_perf.ini897,68222-Sep-201015:32
aspnet_perf.ini897,67622-Sep-201021:40
aspnet_perf2.ini895,68422-Sep-201015:32
aspnet_perf2.ini895,67822-Sep-201021:40
aspnet_state_perf.h31822-Sep-201015:28
aspnet_state_perf.h31822-Sep-201021:40
aspnet_wp.exe2.0.50727.188741,80822-Sep-201018:17
aspnet_wp.exe2.0.50727.188730,03222-Sep-201021:40
webengine.dll2.0.50727.1887734,54422-Sep-201018:17
webengine.dll2.0.50727.1887430,41622-Sep-201021:40
System.Web.dll2.0.50727.18875,271,55222-Sep-201018:21
System.Web.dll2.0.50727.18875,189,63222-Sep-201021:40

For all supported IA-64-based versions

Collapse this tableExpand this table
File name File version File size Date Time
Aspnet_perf.dll2.0.50727.188779,70422-Sep-201018:42
Aspnet_perf.dll2.0.50727.188730,04022-Sep-201021:40
aspnet_perf.h6,53722-Sep-201015:38
aspnet_perf.h6,53722-Sep-201021:40
aspnet_perf.ini897,68222-Sep-201015:43
aspnet_perf.ini897,67622-Sep-201021:40
aspnet_perf2.ini895,68422-Sep-201015:43
aspnet_perf2.ini895,67822-Sep-201021:40
aspnet_state_perf.h31822-Sep-201015:38
aspnet_state_perf.h31822-Sep-201021:40
aspnet_wp.exe2.0.50727.188780,72022-Sep-201018:41
aspnet_wp.exe2.0.50727.188730,03222-Sep-201021:40
webengine.dll2.0.50727.18871,210,70422-Sep-201018:42
webengine.dll2.0.50727.1887430,41622-Sep-201021:40
System.Web.dll2.0.50727.18874,747,26422-Sep-201018:43
System.Web.dll2.0.50727.18875,189,63222-Sep-201021:40

Properties

Article ID: 2416468 - Last Review: May 11, 2012 - Revision: 3.0
APPLIES TO
  • Microsoft .NET Framework 3.5
  • Microsoft Windows Server 2003 Service Pack 2, when used with:
    • Microsoft Windows Server 2003, Standard Edition (32-bit x86)
    • Microsoft Windows Server 2003, Enterprise Edition (32-bit x86)
    • Microsoft Windows Server 2003, Datacenter Edition (32-bit x86)
    • Microsoft Windows Server 2003, Web Edition
    • Microsoft Windows Server 2003, Datacenter x64 Edition
    • Microsoft Windows Server 2003, Enterprise x64 Edition
    • Microsoft Windows Server 2003, Standard x64 Edition
    • Microsoft Windows XP Professional x64 Edition
    • Microsoft Windows Server 2003, Datacenter Edition for Itanium-Based Systems
    • Microsoft Windows Server 2003, Enterprise Edition for Itanium-based Systems
  • Microsoft Windows XP Service Pack 3, when used with:
    • Microsoft Windows XP Home Edition
    • Microsoft Windows XP Professional
Keywords: 
atdownload kbbug kbexpertiseinter kbfix kbsecbulletin kbsecurity kbsecvulnerability KB2416468

Give Feedback

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com