Reply to topic
fyi~ wow imagine this!
loftboy
Forum Regular

Joined: 24 Jun 2004
Posts: 1129
Location: Colorado
Post Posted: Sat Oct 09, 2004 10:11 pm Reply with quote
Microsoft Probes Flaw in ASP.NET
By Simone Kaplan
October 8, 2004

Updated: A glitch in the platform's processing of URLs could allow intruders to access password-protected sections of a Web site simply by altering a URL.



Microsoft Corp. is investigating a reported security flaw in its ASP.NET technology that could allow intruders to access password-protected sections of a Web site simply by altering a URL.

The hole involves a glitch in ASP.NET's processing of URLs, a process known as canonicalization. According to an advisory posted Tuesday on Microsoft's Web site, "an attacker can send specially crafted requests to the server and view secured content without providing the proper credentials."
loftboy
Forum Regular

Joined: 24 Jun 2004
Posts: 1129
Location: Colorado
Post Posted: Tue Oct 12, 2004 8:35 pm Reply with quote
Opinion: Is the ASP.Net Bug a Big Deal? MS Thinks So
You might have to wait six months or more to get your "highly critical" browser bugs patched
fyi~ wow imagine this!
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
 		All times are GMT  
Page 1 of 1  
  
  
 Reply to topic