You are currently offline, waiting for your internet to reconnect

MS14-026: Vulnerability in the .NET Framework could allow elevation of privilege: May 13, 2014

Introduction
This update resolves a vulnerability in the Microsoft .NET Framework that could allow elevation of privilege if an unauthenticated attacker sends specially crafted data to an affected workstation or server that has the .NET Framework Remoting feature enabled.
Summary
Microsoft has released security bulletin MS14-026. Learn more about how to obtain the fixes that are included in this security bulletin: 

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support
More information

Additional information about this update

The following articles contain additional information about this update as it relates to individual product versions. The articles may contain specific information to the individual updates such as the download URL, prerequisites, and command-line switches.
Microsoft .NET Framework 4.5.1
  • 2931366 MS14-026: Description of the security update for the .NET Framework 4.5.1 on Windows 8.1, Windows RT 8.1 and Windows Server 2012 R2: May 13, 2014
  • 2931367 MS14-026: Description of the security update for the .NET Framework 4.5.1 on Windows 8, Windows RT, and Windows Server 2012: May13, 2014
  • 2931368 MS14-026: Description of the security update for the .NET Framework 4.5.1 on Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1, Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: May 13, 2014
Microsoft .NET Framework 4
  • 2931365 MS14-026: Description of the security update for the .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7 and Windows Server 2008 R2: May 13, 2014
Microsoft .NET Framework 3.5.1
  • 2931356 MS14-026: Description of the security update for the .NET Framework 3.5.1 on Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1: May 13, 2014
Microsoft .NET Framework 3.5
  • 2931358 MS14-026: Description of the security update for the .NET Framework 3.5 on Windows 8.1 and Windows Server 2012 R2: May 13, 2014
  • 2931357 MS14-026: Description of the security update for the .NET Framework 3.5 on Windows 8 and Windows Server 2012: May 13, 2014
Microsoft .NET Framework 2.0
  • 2931354 MS14-026: Description of the security update for the .NET Framework 2.0 Service Pack 2 on Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: May 13, 2014
  • 2932079 MS14-026: Description of the security update for the .NET Framework 2.0 Service Pack 2 on Windows XP and Windows Server 2003: May 13, 2014
Microsoft .NET Framework 1.1
  • 2931352 MS14-026: Description of the security update for the .NET Framework 1.1 Service Pack 1 on Windows Server 2003 Service Pack 2 32-bit Edition: May 13, 2014

Update replacement information

Update replacement information for each specific update can be found in the Knowledge Base articles that correspond to this update.

File hash information

File nameSHA1 hashSHA256 hash
MSIPatchRegFix-AMD64.exe5011CB29B096FB674A4795EE8FC2F7FDAD33863ABA62C33DD90ECC3C945AE4F52EEEB2FA07D2C53FB975263B483D09D80F02230D
MSIPatchRegFix-IA64.exeCB861EAF1F4CDFFAD5F83604C7250CD9EDD9643361867793FC7556B79E5833CC18F493A5611EDE94E0D944575E89BAA76B223A0D
MSIPatchRegFix-X86.exe94A84B80B8B45A1AC53A0E5D085513DA0F099655C83C5EE1D4FBFF5260A7D984471EAF4C6004431C21B4F661018BDB92CC124290
NDP20SP2-KB2932079-IA64.exeDE13A43C8D287AADEC0667648D195D7B744A4E53F12A1488D353232948FFD988CD6354034151EDD902EDDB8A322796CBFDE48831
NDP20SP2-KB2932079-x64.exe63C71D72B00130F231B3F6CFF172A48C274B0B6E35C99F63B8EDC985D893005216D690E53858C450B5B131E404E0B6D6B270CBC6
NDP20SP2-KB2932079-x86.exe62D2A448718D1A1343055D53EB722E8C72AAFAEBAC380F0F740F60FF7F6DDC061686ADB7ED1D4135BBDF219785A3B3D546276051
NDP40-KB2931365-IA64.exe61A95BD8A850AAA99F42AF443C1D3AF13CDE44D82970C99CF2AF361E48378523F2B5578ABC9AD862854DF7436DA1C67E8757F799
NDP40-KB2931365-x64.exe55935131495A53550A7C73313F72D390D1649EB2248ACD54905A1DF8414676D4C82F938F2156F551780DC244ECB7AE700E2C0A1B
NDP40-KB2931365-x86.exe99D59CFC6E59F2C5D406B61F06172DCA0A89286DDA9095E359DC431E8556F36B72B3043EA597A67337376891C7A03A66016E3662
NDP45-KB2931368-x64.exeD31C1D741290E739E80935DDED951D5114A578349E012A20B272F6721D28E27CDAD6C2DED1F9AEB1BB6952F01578744C3CE4107D
NDP45-KB2931368-x86.exe9CD071274568556D4D6B03BD524C132FB445BE7D6C80702F0313B83267CD0A88CD34F865F6D901A90C82385F978CC5B0568423F3
Windows6.0-KB2931354-ia64.msu2ABB94798F479BACEF7D253A07C2A961F773DD0228D24738E31C20D0C8680D3BB916CFE41B007BB9E7E70042C9D767EC4888FF18
Windows6.0-KB2931354-x64.msuC3647BC4D977FBD46B6A84771DA5629FB1785412B160CCA079C2443FD8AE28D434CD48911BD5934BD85E5B00D01AB9C181427D85
Windows6.0-KB2931354-x86.msu33CE425CCC2DFBC6628213845EA92E1C43FE1BADD01F544F475D63941141C87CC058A0851C40647458BC6CE506E1298B0DB0A012
Windows6.0-KB980842-ia64.msu2A2A67B37490C495E23B1EC709BACA49D06F02729494EDBFFE5DF90060C253C6E185DC2EE9739C144BCF1B25C2F42914078752EC
Windows6.0-KB980842-x64.msu56CCB4131E94F0E4740AC65D54603AD9A2F32FDECC84E048D5B9A0F35F9FE981C1F0FCA67261D0C07B026B18B5626DE9ED97C6F1
Windows6.0-KB980842-x86.msuA6FC223B39B42789FF7A319AFEFF86DF2913D187C41C2294AC8CEDE7308711183F8E0FA5BE9208ACBEEF5DB347BE6E0C8AF2E4AA
Windows6.1-KB2931356-ia64.msuEC1D0AA88EAE50192526B8A930E5B914C1A3B1BD88C4BBD11638C231E3F9AF24E18B94A09588EAFC2890B083EF004C9E6773CC91
Windows6.1-KB2931356-x64.msu653280975C830364B9EF78DB4140AD08CE551C4BB1D4E3C26A6566CF2B4230D09A6C58CE8214E1DA09EFA8C60366B11E45494B4E
Windows6.1-KB2931356-x86.msu63227724E483CCF74C3758070282F5506176E9376F1DBC16AA119B460A00128166F5E7497F26FF8F9A1F304E7C18623413F08A31
Windows8-RT-KB2931357-x64.msu5ADB977EC58E79EFC4C9454E309D9825D1D067D3A8AF536CA9BEE9A0A6E83DE76E6F645EFE6C7B6894087F562DAB97C7D766F26B
Windows8-RT-KB2931357-x86.msu3E3512E979F19630C97A6F0073326D83F5B2791D674033B5A696A722C094951C6A6EB22AF7F5C8A773D0BE446CFDA1C739E1B7C7
Windows8-RT-KB2931367-x64.msu3BF8F48AC3FC04189D5B917A8366D5A1C5A3BDB81839A541373317D8E5953886A908DD30F3A461BEE70C7C424C62D6744E08B614
Windows8-RT-KB2931367-x86.msu9CC2450F601E0642EE2700744EF186514764D21A9AE644E468DD3601A53F511FF69A130D0638A16F667D11F88CED2ECB8905E43B
Windows8.1-KB2931358-x64.msuDF3D6DE1A965959749812A0FD99DBB72395436F13F0496CD1E0F0A64EE5052A4C89653FD169E991837B7986D5AF792BEE4ECB9C6
Windows8.1-KB2931358-x86.msu52F84EAC6153DDAB557AB852DE6DDCF2B3777186BC598BB127D3B045657F42E883D145FEE5C86BC8813AA02BAB5FA7BAA4D0BA96
Windows8.1-KB2931366-x64.msu237DC72F2EA349B9B666D84F1B4AB8AC94BE206B2FBEBEC8AB01A53C14F7D39EB16BCADDBB3D4596B1ED50A63F5F963A9381E2FC
Windows8.1-KB2931366-x86.msu17142E8CC567BF54932085F31491783BCD7F21BF1C014A846C226B04EC1EE0C07882FBDD6D8FC71456870F66ADBA436189F82CDD
WindowsServer2003-KB2931352-x86-CHS.exe50316913FA961C35DB113E9DDA73762D2CB15DB489746AA42EB1959EA57DD490C5F0A3C191C2A900E752C313A43E22FBD153075F
WindowsServer2003-KB2931352-x86-CHT.exeF3A6C60317C4959C755C84E929D2634D1A3A6BADCC70A6F9C8736E360BE7D48B13B7CCE30F27A6C2FE4A41EBE5BCD88C22B7A2BD
WindowsServer2003-KB2931352-x86-CSY.exeDB3E79C01B8611548691C7D64426196F06EB2C82BB557697C34532F6F1273A48EC147C99F1159EFABB58214DED182B833312AF29
WindowsServer2003-KB2931352-x86-DEU.exe91DC458C93B36F5560A2532F1B589E18E6502843337841DBBAFAF788FBEFED491FA8C2935F913CBC6B185879A12231914A3669DE
WindowsServer2003-KB2931352-x86-ENU.exe9969E5AD4E5E1D6D31BE0B01C24BFB0E9BDCA7E5CD11A50FBAD32FF2C8E438FE6E5731FE75E8A70ECB9D953756FB3F2AC8322148
WindowsServer2003-KB2931352-x86-ESN.exe6897FF33B7A87E6B0ECD07DB74B394CB62372D2CFCA04C3DDD4DE2F51D5AAE71DB554E7DE098E39D70AA64CCFAEC24D9136C8EF1
WindowsServer2003-KB2931352-x86-FRA.exe044D00EA4A677DC7D9B2061AC98718EF749E9A038827CB25364B3395DAD6330511204B2C3094AA62B3469807AA141A7FEEC06E9C
WindowsServer2003-KB2931352-x86-HUN.exe86FF4F4AFB94EB92B67DE13E67B2E9C02A4B91CDCAFC602471F9ACB3ECB8A35ED0288F3439C4E612DBB36DC515E1264B1A79F3C5
WindowsServer2003-KB2931352-x86-ITA.exe33A7DF448697CFB1C561B876DA209A2E17C19AA2976C9C565DEC4A755E87255754C20ADB454B088565874A9488B0AC3C7933E427
WindowsServer2003-KB2931352-x86-JPN.exeCEADD820FD71674AF0F0300959CEDE6F405F705D4FF42E31D9A6F608874676843EE969B33A78333754BBB2CEEE9B673EC40BC747
WindowsServer2003-KB2931352-x86-KOR.exeF2EB3F125E897D691DC720CE04E98FD033189BC3727B3FF6C2FFFCA3B62786DFB674CBE2D17FAEC2C705B32E21518C7C4937D180
WindowsServer2003-KB2931352-x86-NLD.exe9C497FF70844FC4B23F58A7A620880E12460A829831F41F0863642AEA38C2EDF0013129963BCE211F6138F2FF0DB97388B8B9FFB
WindowsServer2003-KB2931352-x86-PLK.exe5BA1250073581E3582DAEE61867BC6A055963B92A13EEF093E77633B16FC4FB50884B22DE688CB13AFD9BC4A07988291C7CF2658
WindowsServer2003-KB2931352-x86-PTB.exeF710B583D7A099F7B4EA10E2F4FCB010011636C2BBF257A8C4B4F248743CE788D310FEED204822FF785956F87AF919D13A969873
WindowsServer2003-KB2931352-x86-PTG.exeD63754EE86F1A7C03F02A0A89474E225AEA7E9DEE5F29B23BBF511D2145161653201408AF310D56DF2ECF384939EC90FEC6D46CA
WindowsServer2003-KB2931352-x86-RUS.exe5B6C71A22BF8AC4F12B79A59E1666A36299BCEE6AE766C188299247581AA27D753150AA05C5772180AD4CA374A57BA5A15B635BE
WindowsServer2003-KB2931352-x86-SVE.exeEEEC9CAFF7D1FF8D1695D641075DF53529E1FE3F656DB9A33B6978D9E66FA48755CE9799696CB5A4A28C78E2CAC69FC679A360A9
WindowsServer2003-KB2931352-x86-TRK.exe01987AFD0922684AE8C7749C6FEF680C5E9FF6A3DBF280866DCDFD02A370B813333052DA0D2179BEEFF8D9964FAFD1BFAF45AE01

Applies to

This article applies to the following:
  • Microsoft .NET Framework 4.5.1 when used with:
    • Windows 8.1
    • Windows RT 8.1
    • Windows Server 2012 R2
    • Windows 8
    • Windows RT
    • Windows Server 2012
    • Windows 7 Service Pack 1
    • Windows Server 2008 R2 Service Pack 1
    • Windows Vista Service Pack 2
    • Windows Server 2008 Service Pack 2
  • Microsoft .NET Framework 4.5 when used with:
    • Windows 8.1
    • Windows RT 8.1
    • Windows Server 2012 R2
    • Windows 8
    • Windows RT
    • Windows Server 2012
    • Windows 7 Service Pack 1
    • Windows Server 2008 R2 Service Pack 1
    • Windows Vista Service Pack 2
    • Windows Server 2008 Service Pack 2
  • Microsoft .NET Framework 4 when used with:
    • Windows 7 Service Pack 1
    • Windows Server 2008 R2 Service Pack 1
    • Windows Vista Service Pack 2
    • Windows Server 2008 Service Pack 2
    • Windows XP Service Pack 3
    • Windows Server 2003 Service Pack 2
  • Microsoft .NET Framework 3.5.1 when used with:
    • Windows 7 Service Pack 1
    • Windows Server 2008 R2 Service Pack 1
  • Microsoft .NET Framework 3.5 when used with:
    • Windows 8.1
    • Windows Server 2012 R2
    • Windows 8
    • Windows Server 2012
  • Microsoft .NET Framework 2.0 Service Pack 2 when used with:
    • Windows Vista Service Pack 2
    • Windows Server 2008 Service Pack 2
    • Windows XP Service Pack 3
    • Windows Server 2003 Service Pack 2
  • Microsoft .NET Framework 1.1 Service Pack 1 when used with:
    • Windows Server 2003 Service Pack 2
Properties

Article ID: 2958732 - Last Review: 05/13/2014 17:11:00 - Revision: 1.0

  • kbsecvulnerability kbsecurity kbsecbulletin kbfix kbexpertiseinter kbbug atdownload KB2958732
Feedback