Code Work-Around Now Available for Critical ASP.NET Vulnerability

by dboynton 9/20/2010 9:05:00 PM

On Saturday, Microsoft released a security advisory for all versions of ASP.NET. As with all security issues, it is important for system administrators and developers to take the necessary steps to ensure their data remains safe. This particular vulnerability could allow an attacker to request and download files within an ASP.NET application, like the web.config file. Obviously, this is a file often containing sensitive information. A patch for this vulnerability will be available soon, but for now, developers can implement code to ensure that their applications are safe.

For a full description of the vulnerability and what you need to do to protect your application, please check out ScottGu’s blog post on this issue.

Be the first to rate this post

  • Currently 0/5 Stars.
  • 1
  • 2
  • 3
  • 4
  • 5

Tags: ,

Security | ASP.NET

Powered by BlogEngine.NET 1.3.0.0
Theme by Mads Kristensen

About the author

Denny Boynton Denny Boynton
Microsoft Architect Evangelist by day, wannabe rock 'n roll star by night! Want more? Here's my bio.

E-mail me Send mail

    follow me on Twitter


    Calendar

    <<  December 2014  >>
    MoTuWeThFrSaSu
    24252627282930
    1234567
    891011121314
    15161718192021
    22232425262728
    2930311234

    View posts in large calendar

    Recent comments

    Authors

    Disclaimer

    The opinions expressed herein are my own personal opinions and do not represent my employer's view in anyway.

    © Copyright 2014, Denny Boynton

    Sign in