Virtual Business Card


A Jack of all trades is a master of integration, as such an individual who knows enough from many learned trades and skills to be able to bring their disciplines together in a practical manner, and is not a specialist but can be an expert in many fields. Such a person is known as a polymath or a renaissance man; a typical example is someone like Leonardo da Vinci.

Tuesday, September 21, 2010

Serious ASP.NET exploit

A serious ASP.NET exploit has been discovered. It can be used to decrypt viewstate, remotely log in as any user and potentially gain control over a server.

 http://www.youtube.com/watch?v=yghiC_U2RaM


The exploit works by firing thousands of requests at a website, examining the returned error messages for information and eventually collecting enough information to derive the server's encryption key. Any ASP.NET website that doesn't return a static error page can be hacked using this method.

 http://weblogs.asp.net/scottgu/archive/2010/09/18/important-asp-net-security-vulnerability.aspx
Posted by at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)