Action required: Serious ASP.NET security weakness impacts SharePoint also

Vanessa Williams

Community Topic(s):

Keywords: Security

By Vanessa Williams, Solutions Architect

September 26, 2010 - 5:43 PM

Current Rating:
(0 ratings)

Microsoft reported a security vulnerability last week in ASP.NET, which is the platform that SharePoint runs on. If you have SharePoint 2007, WSS 3.0, or SharePoint 2010 server running on the Internet, then your server is exposed to this weakness.

According to Microsoft, an attacker could access files and information that are normally encrypted or should be otherwise inaccessible. The attacker could then send information back to your server in an attempt to further compromise it.

You can find a workaround to protect your servers from this attack on the Microsoft SharePoint Team Blog.

Report

Rate Post

You need to log in to rate blog posts. Click here to login.

Add a Comment

You need to log in to post messages. Click here to login.

Comments

Vanessa Williams

Submitted by Vanessa Williams October 02, 2010 - 12:18 PM

Microsoft has released a security update to address this vulnerability. Please read Scott Gu's post for more details on how to apply the update and where to get it:

http://weblogs.asp.net/scottgu/archive/2010/09/28/asp-net-security-update-now-available.aspx
Report
Was this helpful? Yes No
Reply

This post and comment(s) reflect the personal perspectives of community members, and not necessarily those of their employers or of AIIM International

Blog email facebook linkedin Rss Twitter Youtube

Copyright © AIIM 2013 Privacy Policy