This update resolves a vulnerability in the Microsoft .NET Framework that could allow remote code execution on a client system if a user views a specially crafted webpage by using a web browser that can run XAML Browser Applications (XBAPs).
Microsoft has released the security bulletin MS13-052. You can view the complete security bulletin by going to one of the following Microsoft websites:
How to obtain help and support for this security updateHelp installing updates: Support for Microsoft Update
Security solutions for IT professionals: TechNet Security Troubleshooting and Support
Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center
Local support according to your country: International Support
PrerequisitesTo install this update, you must have Windows Installer 3.1 or a later version installed on the computer. To obtain the latest version of Windows Installer, go to the following Microsoft website:
Command-line switches for this updateFor information about the various command-line switches that are supported by this update, click the following article number to view the article in the Microsoft Knowledge Base:
2844699 Command-line switches for Microsoft .NET Framework security update packages
Restart informationThis update does not require a system restart after you apply it unless the files that are being updated are locked or in use.
Update replacement informationThis update replaces the following update:
2742597 MS13-004: Description of the security update for the .NET Framework 1.1 Service Pack 1 on Windows XP, Windows Server 2003 x64 Edition, Windows Server 2003 for Itanium Systems, Windows Vista, and Windows Server 2008: January 8, 2013
Update removal informationNote We do not recommend that you remove any security update.
To remove this update, use the Add or Remove Programs item or the Programs and Features item in Control Panel.