MS10-041: Vulnerabilities in the Microsoft .NET Framework that could allow tampering

<html><body><p>Resolves a vulnerability in the Microsoft .NET Framework that could allow tampering in signed XML content without being detected.</p><h2></h2><div><span>Support for Windows Vista Service Pack 1 (SP1) ends on July 12, 2011. To continue receiving security updates for Windows, make sure you’re running Windows Vista with Service Pack 2 (SP2). For more information, refer to this Microsoft web page: <a href=“http://windows.microsoft.com/en-us/windows/help/end-support-windows-xp-sp2-windows-vista-without-service-packs” target=“_self”>Support is ending for some versions of Windows</a></span>.</div><h2>INTRODUCTION</h2><div>Microsoft has released security bulletin MS10-041. To view the complete security bulletin, visit one of the following Microsoft Web sites:<ul><li>Home users:<br /><div><a href=“http://www.microsoft.com/security/updates/bulletins/201006.aspx” target=“_self”>http://www.microsoft.com/security/updates/bulletins/201006.aspx</a></div><span>Skip the details</span>: Download the updates for your home computer or laptop from the Microsoft Update Web site now:<br /><div><a href=“http://update.microsoft.com/microsoftupdate/” target=“_self”>http://update.microsoft.com/microsoftupdate/</a></div></li><li>IT professionals:<br /><div><a href=“http://www.microsoft.com/technet/security/bulletin/ms10-041.mspx” target=“_self”>http://www.microsoft.com/technet/security/bulletin/MS10-041.mspx</a></div></li></ul><span><h3>How to obtain help and support for this security update</h3> <br />Help installing updates: <br /><a href=“https://support.microsoft.com/ph/6527” target=“_self”>Support for Microsoft Update</a><br /><br />Security solutions for IT professionals: <br /><a href=“http://technet.microsoft.com/security/bb980617.aspx” target=“_self”>TechNet Security Troubleshooting and Support</a><br /><br />Help protect your computer that is running Windows from viruses and malware:<br /><a href=“https://support.microsoft.com/contactus/cu_sc_virsec_master” target=“_self”>Virus Solution and Security Center</a><br /><br />Local support according to your country: <br /><a href=“https://support.microsoft.com/common/international.aspx” target=“_self”>International Support</a><br /><br /></span></div><h2>More Information</h2><div><h3>Additional information about this security update</h3>For more information about this security update, click the following article numbers to view the article in the Microsoft Knowledge Base: <br /><br /><br /><span><div><a href=“https://support.microsoft.com/en-us/help/979904”>979904 </a> MS10-041: Description of the security update for the Microsoft .NET Framework 1.0 Service Pack 3 for Windows XP Media Center Edition and for Windows XP Tablet PC Edition: June 8, 2010</div></span><span><div><a href=“https://support.microsoft.com/en-us/help/979906”>979906 </a> MS10-041: Description of the security update for the Microsoft.NET Framework 1.1 Service Pack 1 in Windows 2000, in Windows XP, in Windows Server 2003, in Windows Vista, and in Windows Server 2008: June 8, 2010</div></span><span><div><a href=“https://support.microsoft.com/en-us/help/979907”>979907 </a> MS10-041: Description of the security update for the .NET Framework 1.1 Service Pack 1 for x86-based versions of Windows Server 2003 and of Windows Server 2003 R2: June 8, 2010</div></span><span><div><a href=“https://support.microsoft.com/en-us/help/979909”>979909 </a> MS10-041: Description of the security update for the .NET Framework 3.5 Service Pack 1 and for the .NET Framework 2.0 Service Pack 2 for Windows 2000, for Windows Server 2003, and for Windows XP: June 8, 2010</div></span><span><div><a href=“https://support.microsoft.com/en-us/help/979910”>979910 </a> MS10-041: Description of the security update for the .NET Framework 3.5 Service Pack 1 for Windows Vista Service Pack 2 and for Windows Server 2008 Service Pack 2: June 8, 2010</div></span><span><div><a href=“https://support.microsoft.com/en-us/help/979911”>979911 </a> MS10-041: Description of the security update for the .NET Framework 3.5 Service Pack 1 for Windows Vista Service Pack 1 and for Windows Server 2008: June 8, 2010</div></span><span><div><a href=“https://support.microsoft.com/en-us/help/979913”>979913 </a> MS10-041: Description of the security update for the .NET Framework 3.5 for Windows Vista Service Pack 1 and for Windows Server 2008: June 8, 2010</div></span><span><div><a href=“https://support.microsoft.com/en-us/help/979916”>979916 </a> MS10-041: Description of the security update for the .NET Framework 3.5 Service Pack 1 for Windows 7 and for Windows Server 2008 R2: June 8, 2010 </div></span><span><div><a href=“https://support.microsoft.com/en-us/help/982865”>982865 </a> MS10-041: Description of the security update for the .NET Framework 3.5 for Windows 2000, for Windows XP, and for Windows Server 2003: June 8, 2010 </div></span><h3>Known issues</h3>For more information about known issues with this software, click the following article numbers to view the articles in the Microsoft Knowledge Base: <br /><br /><br /><br /><br /><span><div><a href=“https://support.microsoft.com/en-us/help/2197146”>2197146 </a> Updates for the .NET Framework 3.5 Service Pack 1 and the .NET Framework 2.0 Service Pack 2 may cause the Microsoft Knowledge Base article number to appear instead of the full title of the update in the Add or Remove Programs item in Control Panel</div></span><span><div><a href=“https://support.microsoft.com/en-us/help/2197148”>2197148 </a> A known issue with the Microsoft .NET Framework 2.0 Service Pack 1 updates and the Microsoft .NET Framework 3.5 updates</div></span><span><div><a href=“https://support.microsoft.com/en-us/help/2197103”>2197103 </a> A known issue when you try to install security update 979906 on a computer that does not have the Microsoft .NET Framework 1.1 Service Pack 1 installed</div></span><span><div><a href=“https://support.microsoft.com/en-us/help/2197141”>2197141 </a> A known issue with security update 979906 in which the Microsoft .NET Framework 1.1 Service Pack 1 package is displayed as “1.0 security update”</div></span></div></body></html>