Microsoft Security Advisory (2905247): Insecure ASP.NET Site Configuration Could Allow...

Discussion in 'Security Alerts' started by News, Apr 16, 2014.

  1. News

    News Extraordinary Robot
    News Feed

    Jun 27, 2006
    Likes Received:
    Severity Rating:
    Revision Note: V1.0 (December, 10, 2013): Advisory published.
    Summary: Microsoft is announcing the availability of an update for Microsoft ASP.NET to address a vulnerability in ASP.NET view state that exists when Machine Authentication Code (MAC) validation is disabled through configuration settings. The vulnerability could allow elevation of privilege and affects all supported versions of Microsoft .NET Framework except .NET Framework 3.0 Service Pack 2 and Microsoft .NET Framework 3.5 Service Pack 1.

    Continue reading...

Share This Page