Microsoft security advisory 2659883 announces DoS vulnerability in ASP.NET

Microsoft released Security Advisory 2659883 today which outlines a vulnerability in ASP.NET which could permit a Denial of Service. More information is available here: http://technet.microsoft.com/security/advisory/2659883 Two notes from that page listed as “Mitigating Factors”: By default, IIS is not enabled on any supported Windows operating system Sites that disallow application/x-www-form-urlencoded or multipart/form-data HTTP content types are not vulnerable Please visit the …

SECURE IT ALERT: A Plethora of Microsoft Vulnerabilities Patched! #MS #IIS #Windows #Office #Microsoft

Homeland Secure IT Alert for Wednesday, September 15, 2010 Yesterday’s “Patch Tuesday” was an exciting one… It included patches across the board for all Microsoft Windows operating systems, Microsoft Office and IIS (web server). The most critical in my opinion is IIS as it often sits on your server, providing Outlook Web Access, or other data, and is accessible to …