ASP.NET Security Update

                Print      Add To Favorite     Add To Watch List     Contact Author

Creator: host   2/5/2012 12:07:17 AM    Author: cathal connolly   Source: http://www.dotnetnuke.com/Resources/Blogs/EntryId/3260/ASP-NET-Security-Update.aspx   Views: 836    0    0  
Tags:
Asp.net dnn 6 dnn bug


Posted by: cathal connolly
Friday, December 30, 2011 8:10:47 PM  

On Thursday 29th December 2011 Microsoft released an out-of-band security update to address an issue with asp.net . This is a relatively rare thing as Microsoft typically only releases security updates every 2nd Tuesday of the month (known as “Patch Tuesday”) so it indicates that this is a serious issue that Microsoft does not want to leave available for exploitation for another few weeks. The advisory can be read here and there is additional detail on Scott Guthrie's blog here . Due to the nature of this patch we would recommend DotNetNuke hosts and users consider applying the patch as soon as possible (it was made available via Windows Update last night). Whilst the asp.net patch itself does not appear to require a reboot, the other security patches contained with the release do prompt for a reboot so you may wish to apply the patch at a time that does not inconvenience your users.


Rating People: 76   Average Rating:     
Comment List:


  No Record 


Post your comment

Your Name: Required
Your Mail: Email is used only to display Gravatar
Your Site:
CAPTCHA image
Enter the code shown above in the box below
Comment Info:         


     DnnModule.com is built to provide DNN quality modules and DNN skins, some of them are free, some not. We wish these stuffs (free or not ) can be useful to you.

     Besides that, we also provide a full range of professional services, ranging from web site build, seo, system management, administration, support, senior consultancy and security services. We act as if your development project or network was ours, with care and respect. We are not satisfied until it works the way you want it to, and we don't silently ignore found issues as somebody else's problem.