ASP.NET Flaw Finally Fixed
For a while there was a flaw that impacted ASP.NET apps, letting hackers convince the apps to give up information that is not in its best interest -- kinda like an Andy Sipowicz interrogation.
The good news is there is a fix that should solve the problem right away, a fix so important Microsoft couldn't wait two weeks for Patch Tuesday.
Still, Microsoft has had workarounds for some time, and, in fact, keeping these workarounds in place might be good practice for safety's sake.
Posted by Doug Barney on 09/29/2010 at 1:18 PM