MS06-033: A vulnerability in ASP.NET could allow information disclosure (917283)

Microsoft has released security bulletin MS06-033. The security bulletin contains all the relevant information about the security update. This includes file manifest information and deployment options. To view the complete security bulletin, visit the following Microsoft Web sites.

Home users:
http://www.microsoft.com/athome/security/update/bulletins/200607.mspx
IT professionals:
http://www.microsoft.com/technet/security/bulletin/ms06-033.mspx

MORE INFORMATION

Known issues

To install this security update, you must have Microsoft Windows Installer 3.1 installed on your computer. To obtain the latest Windows Installer for your computer, visit the following Microsoft Web site:
http://www.microsoft.com/downloads/details.aspx?FamilyID=889482fc-5f56-4a38-b838-de776fd4138c
For more information about installation issues with Microsoft .NET Framework 2.0, click the following article number to view the article in the Microsoft Knowledge Base:
923100 When you try to install the security update 917283, the computer stops responding, or you receive a "0x643" error code on a computer that is running the .NET Framework 2.0
For more information about installation issues with x64-based versions of Microsoft Windows Server 2003, click the following article number to view the article in the Microsoft Knowledge Base:
923101 Error message when you try to install security update 917283 on a computer that is running Windows Server 2003: "Error 1324. The folder 'Program Files' contains an invalid character"

For more information about the security update for the ASP.NET development platform, click the following article number to view the article in the Microsoft Knowledge Base:

922481 Description of the security update for the ASP.NET development platform