Geeks With Blogs
No Fun Intended Shoo! You are debugging the crap outta me!

Here is a great article concerning the recently discovered ASP.NET authentication vulnerability and how to fix it. Everyone should check this out if you code ASP.NET apps.

http://weblogs.asp.net/rmclaws/archive/2004/10/06/238557.aspx

Posted on Wednesday, October 6, 2004 9:03 AM .NET | Back to top


Comments on this post: Fixing the ASP.NET Authentication Vulnerability

# MS KB 887459 : Work Around for the IIS5/ASP.NET Authentication Vulnerability
Requesting Gravatar...
The hills are alive with the sound of music KB links echoed through blogosphere. As reported here here here here here here here here here here (and too many other places to mention), MS has released a bulletin regarding this vulnerability. If you want to correct the problem, you should add the code from KB article 887459 to your Global.asax (or Global.asax.cs or Global.asax.vb, as the case may be). I still recommend using more fine-grained security checks on each page like I mentioned earlier and that you run URLScan and IISLockdown (if you can). Or upgrade to IIS 6. Better yet, do all of the above.
Left by Sirsha Development Resources Blo on Oct 06, 2004 12:35 PM

# re: Fixing the ASP.NET Authentication Vulnerability

# MS KB 887459 : Work Around for the IIS5/ASP.NET Authentication Vulnerability
Requesting Gravatar...
The hills are alive with the sound of music KB links echoed through blogosphere. As reported here here here here here here here here here here (and too many other places to mention), MS has released a bulletin regarding this vulnerability. If you want to correct the problem, you should add the code from KB article 887459 to your Global.asax (or Global.asax.cs or Global.asax.vb, as the case may be). I still recommend using more fine-grained security checks on each page like I mentioned earlier
Left by Sirsha Development Resources Blo on Mar 12, 2005 5:40 PM

Your comment:
 (will show your gravatar)


Copyright © Jason Bentley | Powered by: GeeksWithBlogs.net