Resolves a vulnerability in the Microsoft .NET Framework that could allow identity spoofing on a client system.
Microsoft has released the security bulletin MS13-040. You can view the complete security bulletin by going to one of the following Microsoft websites:
How to obtain help and support for this security updateHelp installing updates: Support for Microsoft Update
Security solutions for IT professionals: TechNet Security Troubleshooting and Support
Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center
Local support according to your country: International Support
PrerequisitesTo install this update, you must have Windows Installer 3.1 or a later version installed on the computer. To obtain the latest version of Windows Installer, go to the following Microsoft website:
Command-line switches for this updateFor information about the various command-line switches that are supported by this update, click the following article number to view the article in the Microsoft Knowledge Base:
2844699 Command-line switches for Microsoft .NET Framework security update packages
Restart informationThis update does not require a system restart after you apply it unless the files that are being updated are locked or are being used.
Update replacement informationThis update replaces the following update for the .NET Framework 2.0 Service Pack 2 on Windows XP and Windows Server 2003:
979909 MS10-041: Description of the security update for the.NET Framework 3.5 Service Pack 1 and for the .NET Framework 2.0 Service Pack 2 for Windows 2000, for Windows Server 2003, and for Windows XP: June 8, 2010
Update removal informationNote We do not recommend that you remove any security update.
To remove this update, use the Add or Remove Programs item in Control Panel.