ASP.NET Padding Oracle Fix and Risks

As most SharePoint, security and .NET professionals will know by now, a hotfix for the Padding Oracle vulnerability in ASP.NET was released out-of-band on Tuesday. A live TechNet Webcast with a Q&A was held with Dave Forstrom, Director, Response Communications and Dustin Childs, Senior Security Manager. I’ve put together these rough notes from that webcast, […]

180 days is approaching

It’s now nearly 180 days since the┬áMOSS 2007 SP2 product expiration problem was discovered. Any systems that are running with the original version of SP2 will expire 180 days after it was installed. There are some quite simple solutions to this problem, but it’s worth assessing the state of your systems to make sure they […]