ASP.NET Security Update Shipping Tuesday, Sept 28th
An hour ago Microsoft released an advance notification security bulletin announcing that we are releasing an out-of-band security update to address the ASP.NET Security Vulnerability that Scott has blogged about this past week. The security update is fully tested, and is scheduled for release tomorrow – Tuesday September 28th – at approximately 10:00 AM PDT. The advance notice bulletin is intended to ensure administrators know it is coming, and are better prepared to apply it once the update is available.
We’ll release the update tomorrow via the Microsoft Download Center (He will blog links to the individual downloads for each version of .NET). We will then release the update via Windows Update and the Windows Server Update Service in a few days as we complete final distribution testing via these channels.
Applying the update addresses the ASP.NET Security vulnerability, and once the update is applied to your system the workarounds we have previously blogged about will no longer be required. Until you have installed the update, though, please do make sure to continue using the workarounds.
You can learn more about tomorrow’s security update release from this Microsoft Security Response Center Blog Post as well as the official Advance Notification Bulletin. We will also hold a special webcast for the bulletin release on Tuesday, September 28, 2010 at 1:00 PM PDT, where we will present information on the bulletin and take customer questions. If you are interested in attending the webcast, click here to sign up.
http://blogs.technet.com/b/msrc/archive/2010/09/27/out-of-band-release-to-address-microsoft-security-advisory-2416728.aspx
http://weblogs.asp.net/scottgu/archive/2010/09/27/asp-net-security-update-shipping-tuesday-sept-28th.aspx
Once again great job MS. We have faith in you… 
View full post on MalwareInfo.Org Blog
Related Posts
- Adobe updates Reader and Acrobat
A little earlier as announced, Adobe released updated versions of Adobe Acrobat and Reader. These programs were vulnerable to the Flash Player zero-day-vulnerability as well, which was fixed last week... - Flash Player Update available
Just a short notice on the now available Adobe Flash Player Update: Version 10.2.159.1 has been released which fixes the critical security vulnerability which allow attackers to infect computers with ... - Update: IE vulnerability (Security Advisory 2488013)
The vulnerability in Internet Explorer that was first reported on 23 December 2010, has yet to be patched but Microsoft has updated its advisory which contains workarounds and mitigations for... - Important: ASP.NET Security Vulnerability
This post has been shared by Scott Guthrie Thanks Scott for posting this workaround. Important: ASP.NET Security Vulnerability A few hours ago we released a Microsoft Security Advisory about a s... - Silverlight Update Available, (Thu, Apr 21st)
Microsoft has issued a security patch for Silverlight KB2526954. It fixes several security issues. However, the Microsoft link to KB2526954 is still not live. If you have Microsoft update running, it ... - Improve your Security #4: Update your Software often
Every week or even day we see new vulnerabilities popping up in all software packages which we use daily: In the operating system (Windows, Mac, Linux), PDF Readers, Web browsers, Mail clients, Office... - Windows Phone 7 update bricks some handsets – Microsoft in security middle ground
Microsoft tried to push an update to their newly released Windows Phone 7 this week and accidentally bricked some Samsung-branded handsets.
Microsoft has since pulled the update, but only for the Sams... - Critical Java Update and a new Windows Vulnerability
Multiple security vulnerabilities have been found within the current Java runtime environments, both for client computers and for servers. These allow attackers to infect computers for example with a ... - Update to Windows Home Server Includes Security Fixes
Update Release 2 for WHS v1 has been released to Windows Update by Microsoft. It includes 8 fixes found since the last major update in August of last year.
2 of the fixes relate to security... - RealPlayer Security Update Released [Update]
RealNetworks has announced in their blog that a security update to all versions of Windows RealPlayer has been released.
The vulnerability is of "High" severity and affects only the Windows...
Posted on 29 September 2010. Tags: ASP.NET, OutofBand, Security, Update, Vulnerability
