Difference between revisions of "Microsoft Security Bulletin July 2006-Vulnerabilities in IIS and ASP.Net"

From OWASP
Jump to: navigation, search
 
Line 7: Line 7:
  
 
Dinis Cruz
 
Dinis Cruz
 +
 +
[[Category:OWASP .NET Project]]

Revision as of 18:18, 11 July 2006

Published on 11th July 2006

  • Microsoft Security Bulletin MS06-034 - Vulnerability in Microsoft Internet Information Services using Active Server Pages Could Allow Remote Code Execution (917537)
  • Microsoft Security Bulletin MS06-033 - Vulnerability in ASP.NET Could Allow Information Disclosure (917283)

I am a bit confused why MS06-034 is marked with 'Remote Code Execution' since if we follow the same logic, then MS should also release an advisory called "Asp.Net allows Remote Code Execution"

Dinis Cruz