MS14-026: Description of the security update for the .NET Framework 2.0 Service Pack 2 on Windows XP and Windows Server 2003: May 13, 2014


Introduction


This update resolves a vulnerability in the Microsoft .NET Framework that could allow elevation of privilege if an unauthenticated attacker sends specially crafted data to an affected workstation or server that has the .NET Framework Remoting feature enabled.

Summary


Microsoft has released security bulletin MS14-026. Learn more about how to obtain the fixes that are included in this security bulletin: 

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

More information about this security update

Download information

This update is available for download from the Microsoft Download Center.

Prerequisites

To install this update, you must have Windows Installer 3.1 or a later version installed on the computer.

Command-line switches for this update

Learn about the various command-line switches that are supported by this Microsoft .NET Framework update.

Restart information

This update does not require a system restart after you apply it unless files that are being updated are locked or being used.

Update replacement information

This update does not replace any previously released update.

Update removal information

Note We do not recommend that you remove any security update.

To remove this update, use the Add or Remove Programs item in Control Panel.

Applies to

This article applies to the following:
  • Microsoft .NET Framework 2.0 Service Pack 2 when used with:
    • Windows XP Service Pack 3
    • Windows Server 2003 Service Pack 2