Applies to:
Microsoft .NET Framework 3.5.1
Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.
View products that this article applies to.
This security update resolves a vulnerability in Microsoft .NET Framework that may cause an information disclosure that allows bypassing Cross-origin Resource Sharing (CORS) configurations.
An attacker who successfully exploits this vulnerability could retrieve from a web application content that is usually restricted.
This security update addresses the vulnerability by enforcing CORS configuration to prevent it from being bypassed.
To learn more about this vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2019-0545.
Important
For more information about this security update as it relates to Windows 7 Service Pack 1 (SP1) and Windows Server 2008 R2 SP1, see the following article in the Microsoft Knowledge Base:
4481481 Security Only updates for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 for Windows 7 SP1 and Server 2008 R2 SP1 (KB 4481481)
To get the stand-alone package for this update, go to the Microsoft Update Catalog.
On your WSUS server, follow these steps:
The updates are now available for installation through WSUS.
For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:
20190108 Security update deployment information: January 8, 2019
Note We do not recommend that you remove any security update. To remove this update, use the Programs and Features item in Control Panel.
This update does not require a system restart after you apply it unless files that are being updated are locked or are being used.
This update replaces update 3142024.
File name | SHA1 hash | SHA256 hash |
---|---|---|
Windows6.1-KB4480085-x86.msu | 1E9CA23CD2B1C303B28CE1E89FAC18C0F967A602 | E2687D3DDF1A2375D799DF1B1DECC6CFA034550AF14AEFCF6F8A8608E78626FB |
Windows6.1-KB4480085-x64.msu | DB30A8058583260FEEE8E81059E005935CC8CB12 | 979B7A6390C0C4F5FBFEC6967A63781E451FEE4E15FB4FFAF6251625A87987B7 |
Windows6.1-KB4480085-ia64.msu | 97397BAC253B684212E818C8270EEEAC5D25D861 | 9035B0E9CE1DB13B2014E1991CEBC9B3A989FC2F878866F0314E72BA8F963AE7 |
Keywords: kbsurveynew, kbsecvulnerability, kbsecurity, kbsecreview, kbsecbulletin, kbexpertiseinter, kblangall, kbfix, kb, kbbug, atdownload, kbmustloc