View products that this article applies to.

Introduction

Resolves a vulnerability in the Microsoft .NET Framework that could allow identity spoofing on a client system.

Summary

Microsoft has released security bulletin MS13-040. You can view the complete security bulletin by going to one of the following Microsoft websites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft UpdateSecurity solutions for IT professionals: TechNet Security Troubleshooting and SupportHelp protect your Windows-based computer from viruses and malware: Virus Solution and Security CenterLocal support according to your country: International Support

More Information

More information about this update

The following articles contain additional information about this update as it relates to individual product versions. The articles may contain information that is specific to the individual updates, such as download URL, prerequisites, and command-line switches.

The Microsoft .NET Framework 4.5

  • 2804583 MS13-040: Description of the security update for the .NET Framework 4.5 on Windows 8, Windows RT, and Windows Server 2012: May 14, 2013Known issues in security update 2804583:

    • Windows Update will not offer this security update to Windows RT-based computers until update 2808380 has been installed. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

      2808380 Windows RT-based device cannot download software updates or Windows Store apps

  • 2804582 MS13-040: Description of the security update for the .NET Framework 4.5 on Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1, Windows Vista Service Pack 2, and Windows Server 2008 Service Pack 2: May 14, 2013

The Microsoft .NET Framework 4

  • 2804576 MS13-040: Description of the security update for the .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2: May 14, 2013

The Microsoft .NET Framework 3.5.1

  • 2804579 MS13-040: Description of the security update for the .NET Framework 3.5.1 on Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1: May 14, 2013

The Microsoft .NET Framework 3.5

  • 2804584 MS13-040: Description of the security update for the .NET Framework 3.5 on Windows 8 and Windows Server 2012: May 14, 2013

The Microsoft .NET Framework 2.0

  • 2804580 MS13-040: Description of the security update for the .NET Framework 2.0 Service Pack 2 on Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: May 14, 2013

  • 2804577 MS13-040: Description of the security update for the .NET Framework 2.0 Service Pack 2 on Windows XP and Windows Server 2003: May 14, 2013

Update replacement information

Update replacement information for each specific update can be found in the Knowledge Base articles that correspond to this update.

File name

SHA1 hash

SHA256 hash

NDP20SP2-KB2804577-IA64.exe

174E187FF539ABE5B3AB2DDB39EE7AA6FB142C6C

6E84CBA03A9BD63D77EE4154AC6D6F47AB18C3F7B0829CB27BFE7BD5D990E268

NDP20SP2-KB2804577-x64.exe

9BB4FD56FEA70521D44D62B00CB7453C42B0E396

D8BDE3EE372E83DF7F1F3C9C1E0EBDCF9FA7CA48CA50E510A26B23BED3906693

NDP20SP2-KB2804577-x86.exe

7481153EA9BF91D69FDA639C3CA405C42E628944

0445594606A758932FB114A14C20C7F945934660EF99279F3A7834A61E65E70E

NDP40-KB2804576-IA64.exe

959C56ED06795FCA3C868A26146A1F764DA7505F

32BA0F05972484AECB281898F527BDD7A1F6077045E202A966DBE597790CBF7F

NDP40-KB2804576-x64.exe

1901EB4A352DECF21A602F8CD154FD8A69956496

A17628BF3875A88D922255B0CC9956E1220F414807C36E4A71B81234C6142BE3

NDP40-KB2804576-x86.exe

F7BF2D65C7F8E8697BE1ABA26D4E2BFFBC649630

86CA4C2EDDAC1487031D7B1FC11C6F21BF70952E1D2D164C18F86345A8C36A3A

NDP45-KB2804582-x64.exe

3608D9E33DB1E1E3E5943DE4435A2D9134F2D236

004BB76DE47956AE03D678A738977EF5AB920F8CCC096347ACD1BD491B10A177

NDP45-KB2804582-x86.exe

FC8F1055D87F2D82653F2D6D844719F2C5AE9013

C37FFB075D3B36FC0B0CDE896F140012427B0F4158D37BDCC577643DB5A946DD

Windows6.0-KB2804580-ia64.msu

020A82545485B1D7B9A2F7E09FB30D2B0842A467

5FF9DD1B502F45F5DA8DDD22BFB59F73F061DABFE1C7C8155C6A6E885BAF46B9

Windows6.0-KB2804580-x64.msu

A40CF4C214B9CA18BCA9194D670EB39EB42F546A

30E1316B518EA803258F9E92BE4A1F375F27AE69B63846BAF6ECD12FEF3F5B63

Windows6.0-KB2804580-x86.msu

8EE8DC962892E3C00E187EF2FC2403D55629FF15

8075C44E1A436469C97333EA1DB02B6D926BFBE42C570CDEB7F46115BE0342C5

Windows6.1-KB2804578-ia64.msu

12F704714C288B63DBA3A8FE22F4CD3586F12CB4

E5957AB3B848A2D2A091111E99A9B995B13FFB20A0E64236AA6B6E303B9FCAF7

Windows6.1-KB2804578-x64.msu

B916FD0817573A4E93494C3A74AA7F54B5208F74

C7969159397914DD2DFC4FEAF5BEE7927DA23F735FFBCD1577ECA6F20EAB2C35

Windows6.1-KB2804578-x86.msu

7DFAA7061A566D6993C910421D9512EB2F0D2597

16BB8F6980760E5795FD5B88FCF275579FFA6A28EFA6142240E0C3356961D29C

Windows6.1-KB2804579-ia64.msu

F6E7A64E3D62FAC26642F428D8101876E8F71EED

D21DA0F813C97FBEB7160EBF95EC79083B1B2A160E6511897BADA0E0AB3C012F

Windows6.1-KB2804579-x64.msu

873C8F2323B9B13C05F4E35457CE48069999E151

6590B39875957CDF7B469401872A95F4F82B32F54373DE6545B399801C383D7B

Windows6.1-KB2804579-x86.msu

31733C953388603BF0355BC7312E7A0E78780926

330EF99E98DBC9D21E712F95D9784E02E5152A344DA5545AB874B7CE321DF0A4

Windows8-RT-KB2804583-arm.msu

E3D4F3D3391744A0F7D15DEAF5A31767816C307E

5B92CC62ED9CE511B6395C0EC9D62192256CFE88216241056975615DD386CECE

Windows8-RT-KB2804583-x64.msu

21799165AD92B33F07404D903D3F02D0701DC081

1D01A49DE4B04ECE9F24838E895254B01C75411006A355F2D1D170DF7A4C3B83

Windows8-RT-KB2804583-x86.msu

A628A18DCA4F23829E7907B3BF39416858C165BF

D0205F6743FEF886D0C3F1AEE3D16005EB6C35A1E9DD84219EE690C96A1D5EF5

Windows8-RT-KB2804584-x64.msu

30FDD1E939F082E462FA2287B71DDD6D01BE7DB6

7C5670956B350CEE78DCA3823F328C5AADDE11934931D00EA49BDC3F348061EC

Windows8-RT-KB2804584-x86.msu

BA88932F83E1EAD03BFA1AD1F9DEC6FA55D01CC0

20F4BFA6E4BDB94F9DE6B699FBC9D803D4B2BFD693D5393FA080B6F87C68F95E

Applies toThis article applies to the following:

  • Microsoft .NET Framework 4.5 when used with:

    • Windows 8

    • Windows RT

    • Windows Server 2012

    • Windows 7 Service Pack 1

    • Windows Server 2008 R2 Service Pack 1

    • Windows Vista Service Pack 2

    • Windows Server 2008 Service Pack 2

  • Microsoft .NET Framework 4 when used with:

    • Windows 7 Service Pack 1

    • Windows Server 2008 R2 Service Pack 1

    • Windows Vista Service Pack 2

    • Windows Server 2008 Service Pack 2

    • Windows XP Service Pack 3

    • Windows Server 2003 Service Pack 2

  • Microsoft .NET Framework 3.5.1 when used with:

    • Windows 7 Service Pack 1

    • Windows Server 2008 R2 Service Pack 1

  • Microsoft .NET Framework 3.5 when used with:

    • Windows 8

    • Windows Server 2012

  • Microsoft .NET Framework 2.0 Service Pack 2 when used with:

    • Windows Vista Service Pack 2

    • Windows Server 2008 Service Pack 2

    • Windows XP Service Pack 3

    • Windows Server 2003 Service Pack 2

Facebook LinkedIn Email

Need more help?

Want more options?

Discover Community

Explore subscription benefits, browse training courses, learn how to secure your device, and more.

Microsoft 365 subscription benefits

Microsoft 365 training

Microsoft security

Accessibility center

Communities help you ask and answer questions, give feedback, and hear from experts with rich knowledge.

Ask the Microsoft Community

Microsoft Tech Community

Windows Insiders

Microsoft 365 Insiders