Critical ASP.NET Security Vulnerability Announced September 18 - General Support

Welcome Guest! To enable all features please Login or Register.

Notification

Error

BV Commerce Forum » BV Commerce Support » General Support » Critical ASP.NET Security Vulnerability Announced September 18

Critical ASP.NET Security Vulnerability Announced September 18

Options

Previous Topic Next Topic

Outdoor Ed		#1 Posted : Saturday, September 18, 2010 10:47:23 PM(UTC)
Rank: Member Joined: 3/4/2006(UTC) Posts: 121		Microsoft has just announced a critical ASP.NET Security vulnerability that could allow and attacker to download your web.config. Scott Guthrie details the workaround on his Microsoft Blog at http://weblogs.asp.net/scottgu/...rity-vulnerability.aspx . Microsoft is advising that all .NET sites apply the workaround until a patch is developed. Rick


User Profile View All Posts by User View Thanks

Aaron		#2 Posted : Sunday, September 19, 2010 1:06:34 PM(UTC)
Rank: Administration Joined: 4/2/2004(UTC) Posts: 2,393 Location: Hummelstown, PA Thanks: 6 times Was thanked: 163 time(s) in 158 post(s)		Lovely. Thanks for the heads up, Rick!
		Aaron Sherrick BV Commerce Toll-free 888-665-8637 - Int'l +1 717-220-0012
		WWW

User Profile View All Posts by User View Thanks

Marcus		#3 Posted : Monday, September 20, 2010 11:23:33 AM(UTC)
Rank: Member Joined: 11/5/2003(UTC) Posts: 1,786		Every BV Merchant should review this article. The URL rewriter settings turn on custom errors mode and this goes part of the way towards protecting your store but there are additional steps you should consider.


User Profile View All Posts by User View Thanks

Forum Jump

You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.