windows updates revisited

  • Thread starter Thread starter D.
  • Start date Start date
D

D.

Today I received two new updates
notifications .
KB2418241 will not install .
Why will it not install ?
Should I care ?
TIA ,
D.
 
Today I received two new updates
notifications .
KB2418241 will not install .
Why will it not install ?
Should I care ?
TIA ,
D.
Click to expand...

Did you disable your anti virus real time scanner before installing the
update?
 
D. said:
Today I received two new updates
notifications .
KB2418241 will not install .
Why will it not install ?
Should I care ?
TIA ,
D.
Click to expand...

If your not running a web server then no, you needn't care. The
vulnerability is irrelevant on an XP desktop that's not running a server.

From - Microsoft Security Bulletin MS10-070 - Important
Vulnerability in ASP.NET Could Allow Information Disclosure (2418042)
http://www.microsoft.com/technet/security/bulletin/MS10-070.mspx

" This security update resolves a publicly disclosed vulnerability in
ASP.NET. The vulnerability could allow information disclosure. An
attacker who successfully exploited this vulnerability could read data,
such as the view state, which was encrypted by the server. This
vulnerability can also be used for data tampering, which, if
successfully exploited, could be used to decrypt and tamper with the
data encrypted by the server. "

I haven't installed KB2418241 yet but there is a log file created when
it attempts to install that should give you a clue as to why it's
installation failed.
The log will be located in
Documents and Settings\<YourUserAccount>\Local\Temp

Look for a .NET Framework log created on the date that KB2418241
attempted to install.


MowGreen
================
*-343-* FDNY
Never Forgotten
================

"Security updates should *never* have *non-security content* prechecked
 
Today I received two new updates
notifications .
KB2418241 will not install .
Why will it not install ?
Should I care ?
Click to expand...

It's supposed to fix this:

http://www.microsoft.com/technet/security/bulletin/MS10-070.mspx

This security update resolves a publicly disclosed vulnerability
in ASP.NET. The vulnerability could allow information
disclosure. An attacker who successfully exploited this
vulnerability could read data, such as the view state, which was
encrypted by the server. This vulnerability can also be used for
data tampering, which, if successfully exploited, could be used
to decrypt and tamper with the data encrypted by the server.
Microsoft .NET Framework versions prior to Microsoft .NET
Framework 3.5 Service Pack 1 are not affected by the file
content disclosure portion of this vulnerability.
 
D. said:
Today I received two new updates
notifications .
KB2418241 will not install .
Why will it not install ?
Should I care ?
TIA ,
D.
Click to expand...

When the updates dialog is shown, it has links on which you can click to
read up on the update. Did you read the description so you know what
the update is for?
 
Yes I did ,
Thanks

VanguardLH said:
When the updates dialog is shown, it has links on which you can click to
read up on the update. Did you read the description so you know what
the update is for?
Click to expand...
 
Back
Top