Gaping Security Hole A Pain In The ASP

Thursday, October 7th, 2004
by Lockergnome

A gaping hole has just been discovered in Microsoft’s ASP.NET product,
which allows access to password protected areas of a Web site just by
altering the URL for access. According to an article published by
Netcraft today, the issue involves “a bug in ASP.NET’s handling of
URLs, known as “canonicalization.” If visitors to an ASP.NET site
substitutes ‘\’ or ‘%5C’ for the ‘/’ character in the URL, they may be
able to bypass password login screens. The technique may also work if a
space is substituted for the slash […]

What Do You Think?

Want to Start a Blog Here for Free?

Are you an expert in one subject or another? If your goal is to help others and dispense hard-earned information back to the community, stake a claim on your very own Lockergnome blog today! You can write about anything - no matter the topic. Sign-up to start blogging!

Download, Freeware - Sep 5, 2008

ThunderBrowse v3.2.1.9

Word Can Remember The Shape You Are Drawing
Friday, September 5, 2008
Convert A Table To Text In Word 2007
Friday, September 5, 2008
Righteous Kill
Thursday, September 4, 2008
Stellarium v0.9.1
Thursday, September 4, 2008
Turn Off Scroll Bars In Word
Thursday, September 4, 2008

Diana's Tips - Sep 4, 2008

Easily Manage Security Settings In Vista

Circuit City Laptop Sale (Through September 6th, 2008)
Thursday, September 4, 2008
Tranquility v1.5.136
Wednesday, September 3, 2008
Insert Editing Time Into Your Word 2002 Document
Wednesday, September 3, 2008
Disable User Account Control In Vista Using The Registry
Wednesday, September 3, 2008
Circuit City GPS Sale (Through September 6th, 2008)
Wednesday, September 3, 2008

Download, Freeware - Sep 1, 2008

BitMeter v3.5.7

Update Automatic Links In Word 2002
Monday, September 1, 2008
Save A Web Page In Vista
Monday, September 1, 2008
Circuit City PC Games Sale (Through September 6th, 2008)
Monday, September 1, 2008
Reducing Web Printing Waste
Friday, August 29, 2008
Print A List Of Shortcut Keys In Word
Friday, August 29, 2008

Diana's Tips - Aug 29, 2008

Control User Account Control Through The Local Computer Policy

Get A New Car For 90% Off Retail @ Car-Auction.com
Friday, August 29, 2008
Create And Improve Your Videos With These Downloads
Friday, August 29, 2008
Caps Lock Solution
Thursday, August 28, 2008
Use A Keyboard Shortcut Instead Of The Format Painter In Word 2007
Thursday, August 28, 2008
Using Advanced Privacy Settings In Internet Explorer 7
Thursday, August 28, 2008

M	T	W	T	F	S	S
« Sep				Nov »
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30	31

Gaping Security Hole A Pain In The ASP

Tags

Categories

What Do You Think?

Want to Start a Blog Here for Free?

Download, Freeware - Sep 5, 2008

ThunderBrowse v3.2.1.9

Diana's Tips - Sep 4, 2008

Easily Manage Security Settings In Vista

Download, Freeware - Sep 1, 2008

BitMeter v3.5.7

Diana's Tips - Aug 29, 2008

Control User Account Control Through The Local Computer Policy

Recent Posts

Archives

Categories

Recent Comments

What else is new in Windows Fanatics?

Righteous Kill

Stellarium v0.9.1

Turn Off Scroll Bars In Word

Easily Manage Security Settings In Vista

Circuit City Laptop Sale (Through September 6th, 2008)

Random Posts From the Archives

ThunderBrowse v3.2.1.9

Word Can Remember The Shape You Are Drawing

Convert A Table To Text In Word 2007

Righteous Kill

Stellarium v0.9.1

Further Reading

Tags

Categories

What Do You Think?

Want to Start a Blog Here for Free?

Download, Freeware - Sep 5, 2008

Diana's Tips - Sep 4, 2008

Download, Freeware - Sep 1, 2008

Diana's Tips - Aug 29, 2008

Tags

Recent Posts

Archives

Categories

Recent Comments

What else is new in Windows Fanatics?

Random Posts From the Archives