Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS) - Microsoft

Microsoft Security Advisory (2416728): Vulnerability in ASP.NET Could Allow Information Disclosure -

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Windows & DOS: Issues & Discussions Security Advisories (RSS) - Microsoft Microsoft Security Advisory (2416728): Vulnerability in ASP.NET Could Allow Information Disclosure -
# 1  
Old 09-21-2010
Microsoft Security Advisory (2416728): Vulnerability in ASP.NET Could Allow Information Disclosure -
Revision Note: V1.1 (September 20, 2010): Revised Executive Summary to communicate that Microsoft is aware of limited, active attacks. Also added additional entries to the Frequently Asked Questions section and additional clarification to the workaround. Advisory Summary:Microsoft is investigating a new public report of a vulnerability in ASP.NET. An attacker who exploited this vulnerability could view data, such as the View State, which was encrypted by the target server, or read data from files on the target server, such as web.config. This would allow the attacker to tamper with the contents of the data. By sending back the altered contents to an affected server, the attacker could observe the error codes returned by the server. Microsoft is aware of limited, active attacks at this time.

More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT FREEBSD

hv_ata_pci_disengage

HYPER-V(4)						   BSD Kernel Interfaces Manual 						HYPER-V(4)

NAME

     hv_ata_pci_disengage -- Hyper-V ATA PCI Disengage driver

SYNOPSIS

     To compile this driver into the kernel, place the following lines in the system kernel configuration file:

	   device hyperv

DESCRIPTION

     The hv_ata_pci_disengage driver prevents the native FreeBSD ATA driver from loading in the presence of Hyper-V.  FreeBSD guests running on
     Hyper-V can take advantage of the Hyper-V Storage Virtual Consumer (hv_storvsc(4)) for using their IDE devices.  Since the ATA driver serves
     IDE devices as well, there is a chance that the ATA driver may interfere with the operations of hv_storvsc(4).  The hv_ata_pci_disengage
     driver avoids conflicts between the ATA driver and hv_storvsc(4) by disabling the ATA driver when the FreeBSD guest is booting.

     A side effect of disabling the ATA driver is that CDROM may become inoperational on FreeBSD guest partitions.  If CDROM access is a must then
     users may use "set hw.ata.disk_enable=1" at boot time to prevent the ATA driver from being disabled.

SEE ALSO

     hv_netvsc(4), hv_storvsc(4), hv_utils(4), hv_vmbus(4)

HISTORY

     Support for hv_ata_pci_disengage first appeared in FreeBSD 10.0.  The driver was developed through a joint effort between Citrix Incorpo-
     rated, Microsoft Corporation, and Network Appliance Incorporated.

AUTHORS

     FreeBSD support for hv_ata_pci_disengage was first added by Microsoft BSD Integration Services Team <bsdic@microsoft.com>.

BSD
								September 10, 2013							       BSD