MS11-028: Vulnerability in the .NET Framework could allow remote code execution: April 12, 2011

Microsoft has released security bulletin MS11-028. To view the complete security bulletin, visit one of the following Microsoft websites:

• Home users:
  http://www.microsoft.com/security/pc-security/bulletins/201104.aspx
  Skip the details: Download the updates for your home computer or laptop from the Microsoft Update website now:
  http://update.microsoft.com/microsoftupdate/
• IT professionals:
  http://www.microsoft.com/technet/security/bulletin/MS11-028.mspx

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

Known issues and additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed below each article link.

• 2446710 MS11-028: Description of the security update for the .NET Framework 3.5.1 on Windows 7 Service Pack 1 and on Windows Server 2008 R2 Service Pack 1: April 12, 2011
• 2446708 MS11-028: Description of the security update for the .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2: April 12, 2011
• 2446709 MS11-028: Description of the security update for the .NET Framework 3.5.1 on Windows 7 and on Windows Server 2008 R2: April 12, 2011
  Known issues in security update 2446709:
  
  After you install security update 2446709 on a Windows Server 2008-based system that is running certain versions of Exchange Server or SQL Server, you may experience any of the following issues:
  • On a SQL server, you cannot launch Powershell or Event Viewer, and the SQL Reporting Service will not start.
  • On an Exchange server, you cannot start launch Powershell or Event Viewer.
  • The Exchange Mailbox Replication Service terminates unexpectedly.
  For more information about this problem, please click the following article number to view the article in the Microsoft Knowledge Base:
  
  2540222 Exchange Server, SQL Server, or PowerShell crashes after you install security update 2449742 or 2446709
• 2449742 MS11-028: Description of the security update for the .NET Framework 3.5 Service Pack 1 and the .NET Framework 2.0 Service Pack 2 on Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: April 12, 2011
  Known issues in security update 2449742:
  
  After you install security update 2449742 on a Windows Server 2008-based system that is running certain versions of Exchange Server or SQL Server, you may experience any of the following issues:
  • On a SQL server, you cannot launch Powershell or Event Viewer, and the SQL Reporting Service will not start.
  • On an Exchange server, you cannot start launch Powershell or Event Viewer.
  • The Exchange Mailbox Replication Service terminates unexpectedly.
  For more information about this problem, please click the following article number to view the article in the Microsoft Knowledge Base:
  
  2540222 Exchange Server, SQL Server, or PowerShell crashes after you install security update 2449742 or 2446709
• 2449741 MS11-028: Description of the security update for the .NET Framework 3.5 Service Pack 1 and the .NET Framework 2.0 Service Pack 2 on Windows Vista Service Pack 1 and Windows Server 2008: April 12, 2011
• 2446704 MS11-028: Description of the security update for the .NET Framework 3.5 Service Pack 1 and the .NET Framework 2.0 Service Pack 2 on Windows Server 2003 and Windows XP: April 12, 2011