This security update and the vulnerability that is discussed in the security bulletin only apply to the clients for the products that have server and client components and that are listed in the "Applies to" section.
Microsoft has released security bulletin MS11-040. To view the complete security bulletin, visit one of the following Microsoft websites:
How to obtain help and support for this security update
For home users, no-charge support is available by calling (866) PCSAFETY in the United States and Canada or by contacting your local Microsoft subsidiary. For more information about how to contact your local Microsoft subsidiary for support issues with security updates, visit the Microsoft International Support website:
For enterprise customers, support for security updates is available through your usual support contacts.
More information about this security update
Known issues about this security update
When you install this security update on a computer that is running Microsoft Forefront Threat Management Gateway Client, Microsoft ActiveSync does not work, or an application that calls the NSPLookupServiceNext() function may fail during name resolution.
For more information about this known issue, click the following article number to view the article in the Microsoft Knowledge Base:
2620191 FIX: Security update 2520426 causes a regression on a computer that is running Forefront Threat Management Gateway Client
The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and the times for these files are listed in Coordinated Universal Time (UTC). The dates and the times for these files on your local computer are displayed in your local time and with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE