Microsoft today released a security bulletin and “out of band” update for a vulnerability affecting ASP.NET applications.
The early analysis on this vulnerability has called it extremely serious, but in MS10-070: Vulnerability in ASP.NET Could Allow Information Disclosure Microsoft classifies it as “Important” rather than “Critical.” The vulnerability could allow an attacker to view encrypted state on ASP.NET transactions. Nearly every version of Windows is listed as affected.
Initially the update will be available only through the Microsoft Download Center (click here). This makes it easier for Microsoft to deliver it quickly to those who really want it and will use it to test their installations. After they have some feedback from the real world, Microsoft will release the update through WSUS and Windows Update.
View full post on Security Watch
Related Posts
- Microsoft Releases ASP.NET Update on Automatic Channels
Today Microsoft released the update for a publicly-disclosed vulnerability affecting ASP.NET servers to all their standard distribution channels, including Windows Update and WSUS (Windows Se... - Microsoft Releases “Out of Band” IE Update
Microsoft has released a new patch for Internet Explorer, and no, your calendar isn't off, this is NOT the Second Tuesday of the month. According to the Microsoft Security Advisory, updated today, th... - Microsoft Releases ASP.NET Fix
On Thursday, Microsoft released the update for a publicly-disclosed vulnerability affecting ASP.NET servers to all their standard distribution channels, including Windows Update.
View full ... - Microsoft Fixes ASP.NET Zero-Day Flaw
Microsoft released Security Bulletin MS10-070 out-of-band today--a couple weeks ahead of the regularly scheduled Patch Tuesday for October. The update resolves a zero-day issue with ASP.NET that could... - Microsoft Patches ASP.NET Flaw
Microsoft today released a security bulletin and "out of band" update for a vulnerability affecting ASP.NET applications.
View full post on PCMag.com Security Coverage... - Microsoft to Release Out Of Band Update For .NET Problem
On Tuesday, September 28, approximately at 1PM pacific time, Microsoft will be releasing an "out of band" update for a critical vulnerability in ASP.NET that affects all versions of the .NET ... - Out of Band Microsoft Update for LNK Vulnerability
Microsoft will release an out of band update today to address the LNK Vulnerability (2286198) that is being exploited. The security update will be released at approximately 10:00 Pacific Dayli... - Silverlight Update Available, (Thu, Apr 21st)
Microsoft has issued a security patch for Silverlight KB2526954. It fixes several security issues. However, the Microsoft link to KB2526954 is still not live. If you have Microsoft update running, it ... - Patchday: Fresh releases from Microsoft and Google
As announced last Friday, Microsoft released 3 Security Bulletins which deal with patches for 4 security vulnerabilities. One of them is rated critical and resides within the DirectShow framework for ... - Microsoft update for restricting the USB Autorun
Microsoft has released an "important, non-security update" ( KB971029) that restricts Autorun entries in the AutoPlay dialog to only CD and DVD drives.
This update is apply for Windows XP/Vista/no...
Posted on 29 September 2010. Tags: ASP.NET, Band, flaw, Microsoft, Releases, Update
Microsoft today released a security bulletin and “out of band” update for a vulnerability affecting ASP.NET applications.
