Description of the security update for the ASP.NET security feature bypass vulnerability: July 10, 2018

Summary

A security feature bypass vulnerability exists in ASP.NET when the number of incorrect login attempts is not validated.

To learn more about the vulnerability, go to CVE-2018-8171.

How to obtain the update

Method1: Microsoft Download Center

The following files are available for download from the Microsoft Download Center.



For ASP.NET Web Frameworks and Tools (aka WSR). This is for Visual Studio 2013 Update 5. Download the package now.


For ASP.NET Web Tools (aka Web Forms). This is for Visual Studio 2013 Update 5. Download the package now.


For ASP.NET Web Frameworks and Tools (aka WSR). This is for Visual Studio 2015 Update 3. Download the package now.


ASP.NET Web Tools (aka Web Forms). This is for Visual Studio 2015 Update 3. Download the package now.

Release Date: July 10, 2018

For more information about how to download Microsoft support files, click the following article number to go to the article in the Microsoft Knowledge Base:

How to obtain Microsoft support files from online services

Microsoft scanned these files for viruses by using the most current virus-detection software that was available on the date that the files were posted. The files are stored on security-enhanced servers that help prevent any unauthorized changes to the files.


 

More Information

How to obtain help and support for this security update

Help for installing updates: Windows Update: FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

File information

File hash information

File name

SHA1 hash

SHA256 hash

AspNetWebFrameworksToolsVS2013-KB4339279.exe

837F6DB64E64ED3A5EC130A0F2344D0C43EF6218

C5E414F312A13066A7143B9791647C4398CABB0BA8B0F210827E9CABEEDA26AE

AspNetWebFrameworksToolsVS2015-KB4339279.exe

EE9454B4164148F59955CEC4AE962CF002F10067

193E0C6381EA78F92314711B8401E0C58BA8822E4184BF69F5BFE166D2816740

AspNetWebToolsVS2013-KB4339279.exe

DF67A5FF99DC1CB4472952E02D7C6AC6AF24B754

953F4972E1B09702841313D30E4ECDC633834E1E99D00C7EBA2F93435FD8BD2F

AspNetWebToolsVS2015-KB4339279.exe

2D3577DE61F155BC7E14EAD7C264836DB45389C1

533CE9F9CB7798F0220F990D30C8808B94D9404D435EDCF595111579618B496B

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time and with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

File name

File version

File size

Date

Time

Aspnetwebframeworkstoolsvs2013-kb4339279.exe

3.2.60629.0

179,366,200

30-Jun-2018

03:27

Aspnetwebframeworkstoolsvs2015-kb4339279.exe

3.2.60629.0

187,642,976

30-Jun-2018

03:24

Aspnetwebtoolsvs2013-kb4339279.exe

12.5.60624.0

203,792,472

03-Jul-2018

16:59

Aspnetwebtoolsvs2015-kb4339279.exe

1.0.40630.83

697,856

30-Jun-2018

06:36

Need more help?

Expand your skills
Explore Training
Get new features first
Join Microsoft Insiders

Was this information helpful?

Thank you for your feedback!

Thank you for your feedback! It sounds like it might be helpful to connect you to one of our Office support agents.

×