Code Work-Around Now Available for Critical ASP.NET Vulnerability

by dboynton 9/20/2010 9:05:00 PM

On Saturday, Microsoft released a security advisory for all versions of ASP.NET. As with all security issues, it is important for system administrators and developers to take the necessary steps to ensure their data remains safe. This particular vulnerability could allow an attacker to request and download files within an ASP.NET application, like the web.config file. Obviously, this is a file often containing sensitive information. A patch for this vulnerability will be available soon, but for now, developers can implement code to ensure that their applications are safe.

For a full description of the vulnerability and what you need to do to protect your application, please check out ScottGu’s blog post on this issue.

Be the first to rate this post

  • Currently 0/5 Stars.
  • 1
  • 2
  • 3
  • 4
  • 5

Tags: ,

Security | ASP.NET

Powered by BlogEngine.NET 1.3.0.0
Theme by Mads Kristensen

About the author

Denny Boynton Denny Boynton
Microsoft Architect Evangelist by day, wannabe rock 'n roll star by night! Want more? Here's my bio.

E-mail me Send mail

    follow me on Twitter


    Calendar

    <<  November 2014  >>
    MoTuWeThFrSaSu
    272829303112
    3456789
    10111213141516
    17181920212223
    24252627282930
    1234567

    View posts in large calendar

    Recent comments

    Authors

    Disclaimer

    The opinions expressed herein are my own personal opinions and do not represent my employer's view in anyway.

    © Copyright 2014, Denny Boynton

    Sign in