Microsoft security advisory: Vulnerabilities in ASP.NET templates could allow tampering: February 9, 2016

Summary
Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To learn more about the vulnerability, seehttps://technet.microsoft.com/security/advisory/3137909
How to obtain and install the update
This update will become available as update notifications in Visual Studio.
More information

File hash information

Package NamePackage Hash SHA 1Package Hash SHA 2
AspNet5.ENU.RC1_Update1_KB3137909.exeC08671798A6525AA19AC67C59A79CA576486B6B725D9B1F7DCA3B3B172B315DAFA115C2C9A5EEA4B4361B963BCDC7AE893DC6488
AspNetWebFrameworksTools2015_KB3137909.exe2FB995548C27D610A01625F91F687E006BB85F214BEC7CE374C9324871A90E636E219A53221A2658C185E3CA8A0C62E1332220BB

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time and with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.
File nameFile versionFile sizeDateTimePlatform
Aspnet5.enu.rc1_update1_kb3137909.exe1.0.20204.0681,40804-Feb-201615:59x86/x64
Aspnetwebframeworkstools2015_kb3137909.exe3.2.40204.0186,685,93605-Feb-201600:02x86/x64

How to obtain help and support for this security update

Help for installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help for protecting your Windows-based computer from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE
Properties

Article ID: 3137909 - Last Review: 02/09/2016 18:42:00 - Revision: 1.0

Release Management for Visual Studio 2015, Visual Studio 2015 Preview, Visual Studio 2015 Release Candidate, Visual Studio 2015 Software Development Kit, Microsoft Visual Studio 2013 Preview, Microsoft Visual Studio 2013 Release Candidate, Microsoft Visual Studio 2013 Remote Tools, Microsoft Visual Studio 2013 Shell (Integrated), Microsoft Visual Studio 2013 Shell (Isolated), Microsoft Visual Studio 2013 Software Development Kit, Release Management for Visual Studio 2013

  • kbexpertiseinter kbinfo kbsecadvisory kbsecurity kbsecvulnerability KB3137909
Feedback