Microsoft Delivers Out-of-Band ASP.NET Patch

Wednesday Sep 29th 2010 by Staff

Update fixes a bug which could be exploited to break the encryption on Web servers.

eSecurity Planet: Even though it wasn't an official "Patch Tuesday," yesterday Microsoft released an update that fixes an ASP.NET vulnerability that could be used to break the encryption on Web servers. "The update addresses a vulnerability in the ASP.NET framework on Windows XP, Windows Vista, Windows 7, Windows Server 2003 and 2008 and Windows Server 2008 R2," Microsoft explained. In a blog post, the company clarified, "While desktop systems are listed as affected, consumers are not vulnerable unless they are running a Web server from their computer."

The company is encouraging enterprise security administrators to test and install the patch as soon as possible.

Mobile Site | Full Site
Copyright 2017 © QuinStreet Inc. All Rights Reserved