[thelist] [ASP security] source code, Indexserver

RedStar redstar at clix.pt
Tue Apr 4 21:00:43 2000

Previous message: [thelist] [ASP security] source code, Indexserver
Next message: [thelist] [ASP security] source code, Indexserver
Return to the message index sorted by: [ date ] [ thread ] [ subject ] [ author ]

Wolfgang,

It's no April joke. It's a very serious security bug. You can even try
it on most asp based sites and you'll find that only a very small
percentage don't suffer from it.
I have a strange feeling that people that use IIS don't really care
about these kind of things, at least it's not too hard to still find asp
based sites that suffer from the older ::$DATA bug and that one was
publicly revealed over 2 years ago.
The one you refer to already has a patch on the MS site.

.redstar.

Previous message: [thelist] [ASP security] source code, Indexserver
Next message: [thelist] [ASP security] source code, Indexserver
Return to the message index sorted by: [ date ] [ thread ] [ subject ] [ author ]