KB917283:
Microsoft Security Bulletin MS06-033
Vulnerability in ASP.NET Could Allow Information Disclosure (917283)
Published: July 11, 2006

Version: 1.1

Summary
Who Should Read this Document: Customers who use Microsoft Windows NET Framework 2.0

Impact of Vulnerability: Information Disclosure

Maximum Severity Rating: Important

Recommendation: Customers should apply the update at the earliest opportunity.

Security Update Replacement: None

Caveats: Microsoft Knowledge Base Article 917283 documents the currently known issues that customers may experience when they install this security update. The article also documents recommended solutions for these issues. For more information, see Microsoft Knowledge Base Article 917283.

Tested Software and Security Update Download Locations:

Affected Software:

.NET Framework 2.0 for the following operating system versions: –Download the update (KB922481)

• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 1 or Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows XP Tablet PC Edition
• Microsoft Windows XP Media Center Edition
• Microsoft Windows Server 2003 or Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 for Itanium-based systems and Microsoft Windows Server with SP1 for Itanium-based Systems

• Microsoft Windows Server 2003 x64 Edition

Non-Affected Software:

• Microsoft .NET Framework 1.0
• Microsoft .NET Framework 1.1
• Microsoft Windows 98, Microsoft Windows 98 Second Edition (SE), and Microsoft Windows Millennium Edition (Me)

Tested Microsoft Windows Components:

Affected Components:
• ASP.NET
-------------------------
SOURCE:»www.microsoft.com/technet/securi···033.mspx

REVISIONS:
• V1.0 (July 11, 2006): Bulletin published.
• V1.1 (July 11, 2006): Bulletin updated “Caveats” Section.