-
Security Advisory 2416728 - Workaround Update
Hi everyone - We've updated Microsoft Security AdvisoryLink Removed due to 404 Error to include a step in the workaround requiring the blocking of requests that specify the application error path on the querystring. This can be done using URLScan, a free tool for Internet Information Services...- News
- Thread
- active attacks advisory block requests email alerts iis microsoft monitoring msrc blog network security request filtering scott guthrie security server 2008 trustworthy computing update urlscan vulnerability windows 7 windows vista workaround
- Replies: 0
- Forum: Security Alerts
-
Microsoft Security Advisory (2416728): Vulnerability in ASP.NET Could Allow Information Disclosure -
Revision Note: V1.2 (September 24, 2010): Added an entry to the FAQ to announce a revision to the workaround, "Enable a UrlScan or Request Filtering rule, enable ASP.NET custom errors, and map all error codes to the same error page." Customers who have already applied the workaround should...- News
- Thread
- active attacks advisory asp.net customerrors encryption errorpage faq information information disclosure microsoft request filtering security security breach server issues tampering urlscan viewstate vulnerability web.config workaround
- Replies: 0
- Forum: Security Alerts