Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

MS10-070: Description of the security update for the Microsoft .NET Framework 1.1 Service Pack 1 on Windows XP, Windows Server 2003 (64-bit), Windows Vista, and Windows Server 2008

View products that this article applies to.


Microsoft has released security bulletin MS10-070. To view the complete security bulletin, visit one of the following Microsoft websites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

↑ Back to the top

More information

For more information about how to configure legacy encryption mode in ASP.NET, click the following article number to view the article in the Microsoft Knowledge Base:
2425938 How to configure legacy encryption mode in ASP.NET

Download information

The following file is available for download from the Microsoft Download Center:

Download the update package now. For more information about how to download Microsoft support files, click the following article number to view the article in the Microsoft Knowledge Base:
119591 How to obtain Microsoft support files from online services
Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help prevent any unauthorized changes to the file.


To install this update, you must have Windows Installer 3.1 or a later version installed on the computer. To obtain the latest version of Windows Installer, visit the following Microsoft website:

Known issues and additional information about this security update

For more information about installation issues this security update or with the Microsoft .NET Framework 1.1 Service Pack 1, click the following article number to view the article in the Microsoft Knowledge Base:
2433751 FIX: Forms authentication cookies compatibility issue between .NET Framework 1.1 and .NET Framework 2.0 SP2 ASP.NET applications after you apply the security update from security bulletin MS10-070
2431728 Encrypted content in ASP.NET is not decrypted for a website that is deployed in a web farm
2431208 An update for the Microsoft .NET Framework may fail to install when the Microsoft .NET Framework 4 is installed and a restart is pending
923100 When you try to install an update for the .NET Framework 1.0, 1.1, 2.0, 3.0, or 3.5, you may receive Windows Update error code "0x643" or Windows Installer error code "1603"
938244 The file version is rolled back to the version that was installed by the last service pack when you remove an update for the .NET Framework 1.0, the .NET Framework 1.1, Visual Studio .NET 2002 or Visual Studio .NET 2003
2197103 A known issue when you try to install an update on a computer that does not have the Microsoft .NET Framework 1.1 Service Pack 1 installed
923101 Error message when you try to install a security update for the .NET Framework 2.0 on a computer that is running Windows Server 2003 x64 Edition: "Error 1324. The folder 'Program Files' contains an invalid character"
2260913 Files in use or File Locks can Result in Framework Assembly Files being Deleted
2263996 Patching of Microsoft Framework can fail with Access is denied or File in Use error

Command-line switches for this update

For information about the various command-line switches that are supported by this update, see the Windows Installer command-line switches document.

For more information about Windows Installer, visit the Windows Installer MSDN website.

Restart requirement

This update does not require a system restart after you apply it unless files being updated are locked or in use. However, installing this update will trigger a restart of all Internet Information Services (IIS)-related services, including the IISADMIN, W3SVC, FTP, and SMTP services. This behavior occurs because a base component for the .NET Framework includes instructions for restarting these services. Therefore, every update to the product will execute the same restarting instructions.

Update removal information

To remove this update, use the Add or Remove Programs item in Control Panel.

Update replacement information

This security update replaces the following security update:
979906 MS10-041: Description of the security update for the Microsoft .NET Framework 1.1 Service Pack 1 in Windows 2000, in Windows XP, in Windows Server 2003, in Windows Vista, and in Windows Server 2008: June 8, 2010

↑ Back to the top

File information

The English (United States) version of this security update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.

For Microsoft .NET Framework 1.1 Service Pack 1 on x86-based versions of Windows XP SP3 and Windows Server 2003 SP2

File nameFile versionFile sizeDateTime

↑ Back to the top

Keywords: atdownload, kbexpertiseinter, kbfix, kbsecurity, kbsecvulnerability, kbsecbulletin, kbsurveynew, kbbug, KB2416447

↑ Back to the top

Article Info
Article ID : 2416447
Revision : 5
Created on : 6/15/2012
Published on : 6/15/2012
Exists online : False
Views : 549