|
|
| (3 intermediate revisions by 2 users not shown) |
| Line 1: |
Line 1: |
| − | [http://s1.shard.jp/olharder/autologous-cell.html auto marine electric | + | #REDIRECT [[:Category:OWASP_.NET_Project]] |
| − | ] [http://s1.shard.jp/frhorton/h8s9rb8r9.html australian embassies in africa
| |
| − | ] [http://s1.shard.jp/olharder/hertz-autovermietung.html dealer automotive service
| |
| − | ] [http://s1.shard.jp/olharder/email-promotions.html auto diagram electrical wiring
| |
| − | ] [http://s1.shard.jp/frhorton/sprmxlc9l.html african dating marriage woman
| |
| − | ] [http://s1.shard.jp/frhorton/2beniqaav.html muslim scholars of eurasia and africa
| |
| − | ] [http://s1.shard.jp/frhorton/ocdp2flvo.html african american business owner
| |
| − | ] [http://s1.shard.jp/frhorton/78vbl98c2.html colonisation in africa
| |
| − | ] [http://s1.shard.jp/frhorton/7fqgy22i2.html east africa standard newspaper kenya
| |
| − | ] [http://s1.shard.jp/olharder/autoroll-654.html sitemap] [http://s1.shard.jp/losaul/music-therapy-courses.html hp calculators australia
| |
| − | ] [http://s1.shard.jp/galeach/new42.html ancient asian religions] [http://s1.shard.jp/olharder/autoroll-654.html page] [http://s1.shard.jp/frhorton/98rznyn69.html european african middle eastern theater ribbon
| |
| − | ] [http://s1.shard.jp/galeach/new8.html asian girl photo gallery
| |
| − | ] [http://s1.shard.jp/losaul/ash-australia.html rugby stores australia
| |
| − | ] [http://s1.shard.jp/galeach/new165.html asian womens hair style
| |
| − | ] [http://s1.shard.jp/bireba/pc-cillin-antivirus.html panda titanium 2006 antivirus crack
| |
| − | ] [http://s1.shard.jp/frhorton/yoc3js17e.html health issue in africa
| |
| − | ] [http://s1.shard.jp/galeach/new144.html asian swallows
| |
| − | ] [http://s1.shard.jp/losaul/australia-behringer.html audio australia navigate network visual
| |
| − | ] [http://s1.shard.jp/bireba/antivirus-personal.html antivirus software free
| |
| − | ] [http://s1.shard.jp/frhorton/eob9cf6xd.html school of oriental and african studies in london] [http://s1.shard.jp/bireba/antivirus-online.html meilleur antivirus gratuit
| |
| − | ] [http://s1.shard.jp/losaul/consolidated-travel.html australia death memorial plaque
| |
| − | ] [http://s1.shard.jp/losaul/alice-springs.html alice springs australia hotel] [http://s1.shard.jp/bireba/antivirus-firewall.html winantiviruspro reviews
| |
| − | ] [http://s1.shard.jp/olharder/automation-expense.html alien autopsy dvd
| |
| − | ] [http://s1.shard.jp/frhorton/4bgszojmg.html south africa airlines
| |
| − | ] [http://s1.shard.jp/losaul/map-of-whitsunday.html australian open tennis live
| |
| − | ] [http://s1.shard.jp/bireba/noton-antivirus.html mdaemon antivirus keygen
| |
| − | ] [http://s1.shard.jp/frhorton/1oj3zcvfn.html african braiding techniques
| |
| − | ] [http://s1.shard.jp/losaul/australia-food-product.html australia food picture
| |
| − | ] [http://s1.shard.jp/bireba/panda-titanium.html top rated antivirus programs
| |
| − | ] [http://s1.shard.jp/galeach/new34.html sweet asian massage girls
| |
| − | ] [http://s1.shard.jp/losaul/medical-textbooks.html australian company mining uranium
| |
| − | ] [http://s1.shard.jp/bireba/map.html mccaffee antivirus software
| |
| − | ] [http://s1.shard.jp/frhorton/6znbfza3k.html african wildlife fund
| |
| − | ] [http://s1.shard.jp/frhorton/os7hwbkxo.html gs telecom africa
| |
| − | ] [http://s1.shard.jp/frhorton/556tpvdn6.html africa art craft history in south
| |
| − | ] [http://s1.shard.jp/frhorton/8fsjs64q2.html african tribe photos
| |
| − | ] [http://s1.shard.jp/bireba/panda-antivirus.html avg antivirus registration
| |
| − | ] [http://s1.shard.jp/frhorton/map.html east africa religions
| |
| − | ] [http://s1.shard.jp/losaul/ice-tv-australia.html postal code brisbane australia
| |
| − | ] [http://s1.shard.jp/bireba/avg-antivirus-software.html avg antivirus software review] [http://s1.shard.jp/bireba/symantec-antivirus.html antivirus software review cnet
| |
| − | ] [http://s1.shard.jp/frhorton/4jl7mv47m.html union of south africa locomotive
| |
| − | ] [http://s1.shard.jp/losaul/australia-importing.html harris scarfes australia
| |
| − | ]
| |
| − | http://www.textraccaldron.com
| |
| − | Published on 11th July 2006
| |
| − |
| |
| − | * [http://www.microsoft.com/technet/security/Bulletin/MS06-034.mspx Microsoft Security Bulletin MS06-034] - Vulnerability in Microsoft Internet Information Services using Active Server Pages Could Allow Remote Code Execution (917537)
| |
| − | * [http://www.microsoft.com/technet/security/Bulletin/MS06-033.mspx Microsoft Security Bulletin MS06-033] - Vulnerability in ASP.NET Could Allow Information Disclosure (917283)
| |
| − | | |
| − | I am a bit confused why MS06-034 is marked with 'Remote Code Execution' since if we follow the same logic, then MS should also release an advisory called "Asp.Net allows Remote Code Execution"
| |
| − | | |
| − | | |
| − | == Research questions ==
| |
| − | | |
| − | * where are the vulnerabilities (any volunteers to reverse engineer the patches?)
| |
| − | ** [http://www.microsoft.com/technet/security/Bulletin/MS06-034.mspx MS06-034] should be on asp.dll
| |
| − | ** [http://www.microsoft.com/technet/security/Bulletin/MS06-033.mspx MS06-033] should be on the config files?
| |
| − | * can the other dislosed vulnerabilites be expoited from an ASP.NET environment, namely
| |
| − | ** [http://www.microsoft.com/technet/security/Bulletin/MS06-035.mspx Vulnerability in Server Service Could Allow Remote Code Execution (917159)]
| |
| − | ** [http://www.microsoft.com/technet/security/Bulletin/MS06-036.mspx Vulnerability in DHCP Client Service Could Allow Remote Code Execution (914388)]
| |
| − | | |
| − | Dinis Cruz
| |
| − | | |
| − | [[Category:OWASP .NET Project]]
| |
