Microsoft releases Security Advisory 2659883, offers workaround for industry-wide issue

News

Extraordinary Robot
Robot
Joined
Jun 27, 2006
Location
Chicago, IL
Hello,
Today we published Security Advisory 2659883 to provide a workaround to help protect ASP.NET customers from a publicly disclosed vulnerability that affects various Web platforms industry-wide. We are not aware of any attacks using this vulnerability, which affects all supported versions of .NET Framework, however we recommend customers use the mitigation and workaround described in the Advisory to help protect sites against this new method to exploit hash tables.
Our teams are working around the clock worldwide to develop a security update of appropriate quality to address this issue. Meanwhile, our Security Research & Defense team has written a blog post to explain how to know if you are vulnerable and detect exploitation, as well as background on the workaround. We are also working closely with our Link Removed due to 404 Error to help our partners build protections when and where possible. We will continue to update customers with new information as it becomes available.
For all the latest information, you can also follow the MSRC team on Twitter at @MSFTSecResponse.
Thanks,
Dave Forstrom
Director
Microsoft Trustworthy Computing

Link Removed due to 404 Error

More...
 
Back
Top Bottom