Microsoft fixes ASP.Net hole used in attacks


Recommended Posts

September 28, 2010 11:04 AM PDT

Microsoft fixes ASP.Net hole used in attacks

by Elinor Mills

Microsoft today issued an emergency patch for a vulnerability in its ASP.Net framework that could be used to read or tamper with data on a Web site. The hole, rated "important," affects all versions of the .Net framework when used on Windows Server operating systems, but Windows desktop systems are not vulnerable unless they are being used to run a Web server, according to the advisory.

The vulnerability was disclosed by Microsoft just over a week ago and later found to be used in limited attacks. The update is available initially only on the Microsoft Download Center and through Windows Update and Windows Server Update Services in coming days. More details about the vulnerability are in this security advisory.

More details here: http://news.cnet.com/security/

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...