MS12-025: Vulnerabilities in the .NET Framework could allow remote code execution: April 10, 2012

<html><body><p>Resolves a vulnerability in the .NET Framework that could allow remote code execution on a client system if a user views a specially crafted webpage by using a web browser that can run XAML Browser Applications (XBAPs).</p><h2></h2><div><span>Important</span> In response to customer feedback that we received after the original release of this update on April 10, 2012, this update was revised and re-released on June 12, 2012. If you installed the original update, you should install this revised update.</div><h2>Introduction</h2><div>Microsoft has released the security bulletin MS12-025. You can view the complete security bulletin by visiting one of the following Microsoft websites: <ul><li>Home users:<br /><a href=“http://www.microsoft.com/security/pc-security/bulletins/201204.aspx” target=“_self”>http://www.microsoft.com/security/pc-security/bulletins/201204.aspx</a></li><li>IT professionals:<br /><a href=“http://technet.microsoft.com/security/bulletin/ms12-025” target=“_self”>http://technet.microsoft.com/security/bulletin/MS12-025</a></li></ul></div><h2></h2><div><h3>How to obtain help and support for this security update</h3>Help installing updates: <a href=“https://support.microsoft.com/ph/6527” target=“_self”>Support for Microsoft Update</a><br /><br />Security solutions for IT professionals: <a href=“http://technet.microsoft.com/security/bb980617.aspx” target=“_self”>TechNet Security Troubleshooting and Support</a><br /><br />Help protect your computer that is running Windows from viruses and malware: <a href=“https://support.microsoft.com/contactus/cu_sc_virsec_master” target=“_self”>Virus Solution and Security Center</a><br /><br />Local support according to your country: <a href=“https://support.microsoft.com/common/international.aspx” target=“_self”>International Support</a></div><h2>More Information</h2><div><h4>Additional information about this update</h4>The following articles contain additional information about this update as it relates to individual product versions. The articles may contain specific information to the individual updates such as download URL, prerequisites and command line switches. <br /><ul><li><a href=“https://support.microsoft.com/en-us/help/2656381”>2656381 </a> MS12-025: Description of the security update for the .NET Framework 4.5 Developer Preview on Windows 7, Windows 7 Service Pack 1, Windows Server 2008 R2, Windows Server 2008 R2 Service Pack 1, and Windows Server 2008 Service Pack 2: April 10, 2012</li><li><a href=“https://support.microsoft.com/en-us/help/2656371”>2656371 </a> MS12-025: Description of the security update for the .NET Framework 4.5 on Windows Developer Preview and Windows Server Developer Preview: April 10, 2012</li><li><a href=“https://support.microsoft.com/en-us/help/2656368”>2656368 </a> MS12-025: Description of the security update for the .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2: April 10, 2012</li><li><a href=“https://support.microsoft.com/en-us/help/2656373”>2656373 </a> MS12-025: Description of the security update for the .NET Framework 3.5.1 on Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1: April 10, 2012</li><li><a href=“https://support.microsoft.com/en-us/help/2656372”>2656372 </a> MS12-025: Description of the security update for the .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2: April 10, 2012</li><li><a href=“https://support.microsoft.com/en-us/help/2656380”>2656380 </a> MS12-025: Description of the security update for the .NET Framework 3.5 on Windows Developer Preview and Windows Server Developer Preview: April 10, 2012</li><li><a href=“https://support.microsoft.com/en-us/help/2656374”>2656374 </a> MS12-025: Description of the security update for the .NET Framework 2.0 Service Pack 2 on Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: April 10, 2012</li><li><a href=“https://support.microsoft.com/en-us/help/2656369”>2656369 </a> MS12-025: Description of the security update for the .NET Framework 2.0 Service Pack 2 on Windows XP and Windows Server 2003: April 10, 2012</li><li><a href=“https://support.microsoft.com/en-us/help/2656376”>2656376 </a> MS12-025: Description of the security update for the .NET Framework 1.1 Service Pack 1 on Windows Server 2003 Service Pack 2 32-bit Edition: April 10, 2012</li><li><a href=“https://support.microsoft.com/en-us/help/2656370”>2656370 </a> MS12-025: Description of the security update for the .NET Framework 1.1 Service Pack 1 on Windows XP, Windows Server 2003 64-bit Edition, Windows Server 2003 Itanium Edition, Windows Vista, Windows Server 2008: April 10, 2012</li><li><a href=“https://support.microsoft.com/en-us/help/2656378”>2656378 </a> MS12-025: Description of the security update for the .NET Framework 1.0 Service Pack 3 on Windows XP Service Pack 3 Tablet PC Edition and Windows XP Service Pack 3 Media Center Edition: April 10, 2012</li></ul></div><h2></h2><div><h4>Update replacement information</h4>Update replacement information for each specific update can be found in the Knowledge Base articles that correspond to this update.</div><h2></h2><div><h3>Applies to</h3>This article applies to the following:<ul><li>Microsoft .NET Framework 4.5 when used with:<ul><li>Windows Developer Preview</li><li>Windows Server Developer Preview</li></ul></li><li>Microsoft .NET Framework 4.5 Developer Preview when used with:<ul><li>Windows 7</li><li>Windows 7 Service Pack 1</li><li>Windows Server 2008 R2</li><li>Windows Server 2008 R2 Service Pack 1</li><li>Windows Server 2008 Service Pack 2</li></ul></li><li>Microsoft .NET Framework 4 when used with:<ul><li>Windows 7</li><li>Windows 7 Service Pack 1</li><li>Windows Server 2008 R2</li><li>Windows Server 2008 R2 Service Pack 1</li><li>Windows Vista Service Pack 2</li><li>Windows Server 2008 Service Pack 2</li><li>Microsoft Windows XP Service Pack 3</li><li>Microsoft Windows Server 2003 Service Pack 2</li></ul></li><li>Microsoft .NET Framework 3.5.1 when used with:<ul><li>Windows 7</li><li>Windows 7 Service Pack 1</li><li>Windows Server 2008 R2</li><li>Windows Server 2008 R2 Service Pack 1</li></ul></li><li>Microsoft .NET Framework 3.5 when used with:<ul><li>Windows Developer Preview</li><li>Windows Server Developer Preview</li></ul></li><li>Microsoft .NET Framework 2.0 Service Pack 2 when used with:<ul><li>Windows Vista Service Pack 2</li><li>Windows Server 2008 Service Pack 2</li><li>Microsoft Windows XP Service Pack 3</li><li>Microsoft Windows Server 2003 Service Pack 2</li></ul></li><li>Microsoft .NET Framework 1.1 Service Pack 1 when used with:<ul><li>Windows XP Service Pack 3</li><li>Windows Server 2003 Service Pack 2</li><li>Windows Vista Service Pack 2</li><li>Windows Server 2008 Service Pack 2</li></ul></li><li>Microsoft .NET Framework 1.0 Service Pack 3 when used with:<ul><li>Windows XP Service Pack 3 Tablet PC Edition </li><li>Windows XP Service Pack 3 Media Center Edition</li></ul></li></ul></div></body></html>