Articles »
So what about WSUS?
Sat, 16/01/10 – 23:24 | No Comment

Say you use some other patching engine than WSUS and you want to shut it off on your SBS 2008.

Read the full story »
Articles

Patch management and related articles.

Bulletins

Microsoft’s monthly security bulletins.

Downloads

Security-related downloads from Microsoft download center.

Exploits

Various exploits seen in the wild.

KB Articles

Microsoft knowledge base articles.

Home » Archive by Tags

Articles tagged with: asp

Exploiting Microsoft IIS with Metasploit / Best of Security
Tuesday, 29 Dec, 2009 – 6:03 | No Comment

As of this afternoon, the msfencode command has the ability to emit ASP scripts that execute Metasploit payloads. This can be used to exploit the currently-unpatched file name parsing bug in Microsoft IIS. This flaw allows a user who …

MS09-061 – Critical: Vulnerabilities in the Microsoft .NET Common Language Runtime Could Allow Remote Code Execution (974378) – Version:1.2
Wednesday, 4 Nov, 2009 – 0:00 | No Comment

Severity Rating: Critical – Revision Note: V1.2 (November 4, 2009): Added an entry to the Frequently Asked Questions (FAQ) Related to This Security Update section to explain this revision.

SharePoint 2007 ASP.NET Source Code Disclosure
Tuesday, 3 Nov, 2009 – 11:18 | No Comment

Topic : SharePoint 2007 ASP.NET Source Code Disclosure CVE : CVE-2009-3830 CWE : CWE-Other SecurityRisk : Low ….

MS09-061 – Critical: Vulnerabilities in the Microsoft .NET Common Language Runtime Could Allow Remote Code Execution (974378) – Version:1.0
Tuesday, 13 Oct, 2009 – 1:00 | No Comment

Severity Rating: Critical – Revision Note: Bulletin published.Summary: This security update resolves three privately reported vulnerabilities in Microsoft .NET Framework and Microsoft Silverlight.

MS09-036 – Important: Vulnerability in ASP.NET in Microsoft Windows Could Allow Denial of Service (970957) – Version:1.0
Tuesday, 11 Aug, 2009 – 1:00 | No Comment

Severity Rating: Important – Revision Note: Bulletin published.Summary: This security update addresses a privately reported Denial of Service vulnerability in the Microsoft .NET Framework component of Microsoft Windows. This vulnerability can be exploited only when Internet Information Services (IIS) 7.0 is installed and ASP.