Solved

Vulnerable Microsoft.NET Framework version: 1.1.4322

Posted on 2011-03-09
2
2,571 Views
Last Modified: 2012-05-11
Description: vulnerable Microsoft.NET Framework version: 1.1.4322 [site & ip address}Windows Server 2003 SP1Mar 08 21:40:25 2011newSeverity: Area of Concern CVE: CVE-2007-0041 CVE-2007-0042 CVE-2007-0043 9.32352new11Impact: On a workstation, a remote attacker could execute arbitrary commands when a user opens a specially crafted web page. On a server, a remote attacker could gain unauthorized access to configuration files. Background: The .NET Framework is a programming model for building Windows applications. Resolution Install the patch referenced in Microsoft Security Bulletins [http://www.microsoft.com/technet/securi ty/bulletin/ms10-041.mspx] 10-041 and [http://www.microsoft.com/technet/securi ty/bulletin/ms10-060.mspx] 10-060. Vulnerability Details: Service: http Received: X-AspNet-Version: 1.1.4322

any idea how to fix this?

I have installed ALL windows updates, and rebooted several times

The server is a windows server 2003, running IIS 6
0
Comment
Question by:l8rgdkd
  • 2
2 Comments
 

Accepted Solution

by:
l8rgdkd earned 0 total points
ID: 35083989
According to Security metrics scan experts, this is the KB to fix the problem:

http://support.microsoft.com/kb/979907

and here is the download to the KB

http://www.microsoft.com/downloads/en/confirmation.aspx?FamilyID=f82e1b73-7f8b-4f4c-8187-4050a11db44c


Im running a scan now to see if this worked or not
0
 

Author Comment

by:l8rgdkd
ID: 35094327
installed this update... it still didnt make the error go away. so i sent them a screenshot where i installed it and they removed the message from my reports.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
.Net Web Site IIS Web.Config Content-Security-Policy 1 75
Web site error 3 41
Problems with Microsoft.DHCP.PowerShell.Admin Module 4 58
ticket bloat 3 33
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
A phishing scam that claims a recipient’s credit card details have been “suspended” is the latest trend in spoof emails.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

825 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question