MS10-070: Description of the security update for the Microsoft .NET Framework 1.1 Service Pack 1 on 32-bit editions of Windows Server 2003 Service Pack 2 and Windows Server 2003 R2 Service Pack 2

Support for Windows Server 2003 ended on July 14, 2015

Microsoft ended support for Windows Server 2003 on July 14, 2015. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

INTRODUCTION
Microsoft has released security bulletin MS10-070. To view the complete security bulletin, visit one of the following Microsoft websites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware:Virus Solution and Security Center

Local support according to your country: International Support

MORE INFORMATION
For more information about how to configure legacy encryption mode in ASP.NET, click the following article number to view the article in the Microsoft Knowledge Base:
2425938 How to configure legacy encryption mode in ASP.NET

Download information

The following file is available for download from the Microsoft Download Center:
DownloadDownload the package now.
Release Date: September 28, 2010

For more information about how to download Microsoft support files, click the following article number to view the article in the Microsoft Knowledge Base:
119591 How to obtain Microsoft support files from online services
Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help prevent any unauthorized changes to the file.

Known issues and additional information about this security update

For more information about installation issues this security update or with the Microsoft .NET Framework 1.1 Service Pack 1, click the following article number to view the article in the Microsoft Knowledge Base:
2433751 FIX: Forms authentication cookies compatibility issue between .NET Framework 1.1 and .NET Framework 2.0 SP2 ASP.NET applications after you apply the security update from security bulletin MS10-070
2431728 Encrypted content in ASP.NET is not decrypted for a website that is deployed in a web farm
2260913 Files in use or File Locks can Result in Framework Assembly Files being Deleted

Command-line switches for this update

For information about the various command-line switches that are supported by this update, see the Command-line switches for Windows software update packages document.

Restart requirement

You do not have to restart the system after you install this security update unless files that are being updated are locked or in use. However, this security update will cause all Internet Information Services (IIS)-related services to restart. These include the IISADMIN, W3SVC, FTP, and SMTP services. This behavior occurs because a base component for the .NET Framework includes instructions to restart these services. Therefore, every update to the product will execute the same instructions to restart these services.

Update removal information

To remove this security update, use the Add or Remove Programs item in Control Panel.

Update replacement information

This security update does not replace a previously released security update.
FILE INFORMATION
The English (United States) version of this security update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.

GDR release for Microsoft .NET Framework 1.1 Service Pack 1 on 32-bit versions of Windows Server 2003 SP2 and Windows Server 2003 R2 SP2

File nameFile versionFile sizeDateTimeSP requirement
Aspnet_filter.dll1.1.4322.247024,57624-Sep-201011:58SP2
Aspnet_isapi.dll1.1.4322.2470258,04824-Sep-201011:58SP2
Aspnet_wp.exe1.1.4322.247032,76824-Sep-201011:59SP2
Netfxupdate.exe1.0.3705.382,98407-Jul-201017:49SP2
Setregni.exe1.1.4322.203566,60007-Jul-201017:50SP2
System.web.dll1.1.4322.24701,265,66424-Sep-201010:55SP2
Togac.exe1.1.4322.225166,60007-Jul-201017:51SP2

LDR release for Microsoft .NET Framework 1.1 Service Pack 1 on 32-bit versions of Windows Server 2003 SP2 and Windows Server 2003 R2 SP2

File nameFile versionFile sizeDateTimeSP requirement
Aspnet_filter.dll1.1.4322.247024,57624-Sep-201011:58SP2
Aspnet_isapi.dll1.1.4322.2470258,04824-Sep-201011:58SP2
Aspnet_wp.exe1.1.4322.247032,76824-Sep-201011:59SP2
Netfxupdate.exe1.0.3705.382,98408-Jul-201016:54SP2
Setregni.exe1.1.4322.203566,60008-Jul-201016:54SP2
System.web.dll1.1.4322.24701,265,66424-Sep-201010:55SP2
Togac.exe1.1.4322.225166,60008-Jul-201016:55SP2

update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE WinNT Win2000
Properties

Article ID: 2416451 - Last Review: 05/11/2012 22:32:00 - Revision: 4.0

Microsoft .NET Framework 1.1 Service Pack 1, Microsoft Windows Server 2003 Service Pack 2

  • kbsecurity kbsecbulletin kbsecvulnerability kbbug kbfix atdownload kbexpertiseinter kbsurveynew KB2416451
Feedback