urlscan

  1. Security Advisory 2416728 - Workaround Update

    Hi everyone - We've updated Microsoft Security AdvisoryLink Removed due to 404 Error to include a step in the workaround requiring the blocking of requests that specify the application error path on the querystring. This can be done using URLScan, a free tool for Internet Information Services...
    • News
    • Thread
    • active attacks advisory block requests email alerts iis microsoft monitoring msrc blog network security request filtering scott guthrie security server 2008 trustworthy computing update urlscan vulnerability windows 7 windows vista workaround
    • Replies: 0
    • Forum: Security Alerts

  2. Microsoft Security Advisory (2416728): Vulnerability in ASP.NET Could Allow Information Disclosure -

    Revision Note: V1.2 (September 24, 2010): Added an entry to the FAQ to announce a revision to the workaround, "Enable a UrlScan or Request Filtering rule, enable ASP.NET custom errors, and map all error codes to the same error page." Customers who have already applied the workaround should...
    • News
    • Thread
    • activeattacks advisory asp.net customerrors datatampering disclosure encryption errorpage faq information microsoft requestfiltering security securitybreach servererrors urlscan viewstate vulnerability webconfig workaround
    • Replies: 0
    • Forum: Security Alerts