MS12-040: Vulnerability in Dynamics AX Enterprise Portal could allow elevation of privilege: June 12, 2012

Microsoft has released security bulletin MS12-040 view the complete security bulletin, visit one of the following Microsoft websites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware:Virus Solution and Security Center

Local support according to your country: International Support

More information about this security update

Known issues and additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed below each article link.
  • 2711239 MS12-040: Description of the security update for Dynamics AX 2012 Enterprise Portal: June 12, 2012

    Known issues in security update 2711239:
    • After you install this security update, you may receive a message that resembles the following when you navigate in the Enterprise Portal:

      Collection is read-only

      To resolve this issue, install hotfix 2719051. To obtain the hotfix, visit the following Microsoft webpage: Note There are no security-related issues regarding this issue. The security-related aspects of this security update are not affected by this issue.
  • 2710639 MS12-040: Description of the security update for Dynamics AX 2012 Enterprise Portal: June 12, 2012
  • 2706738 MS12-040: Description of the security update for Dynamics AX 2012 Enterprise Portal: June 12, 2012
File hash table
The following table lists the thumbprints of the certificates that are used to sign the security updates. Verify the certificate thumbprint in this Knowledge Base article against the certificate thumbprint that is indicated on the security update that you download.
Publisher file nameSha1SHA2
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service dos

Article ID: 2709100 - Last Review: 06/13/2012 15:27:00 - Revision: 1.3

Microsoft Dynamics AX 2012

  • kbexpertiseinter kbsecurity kbsecbulletin kbsecvulnerability kbqfe kbbug kbfix kbsurveynew KB2709100