Vole moves on ASP.net bug

Must be scared of something

By Nick Farrell

Tue Oct 12 2004, 11:36

WHILE Microsoft can take up to six months to sew a patch on other parts of Windows XP, it seems to have moved faster than SpaceShip One when it came to fixing the ASP.net bug.

The announcement of the two patches caught many Vole watchers by surprise as the flaw had only been revealed a couple of weeks ago and indeed many of us thought it was probably not that important.

However Vole's surprising haste in fixing the problem has lead IT journalists to look at the figures to see how many would be affected.

Security outfit Netcraft says that there are 2.9 million active ASP.Net sites on the Internet. This would imply that there are a lot of servers out there which could be affected.

However, most of them do not have authenticated pages and are therefore not vulnerable to the bug. What are left would be developer systems, perhaps a smattering of test sites. Nothing to see here move along please.

But what is left must be companies who have critical e-commerce and other such sites, and their privileged pages are vulnerable to unauthorized access. In other words serious money is involved here. Perhaps this was why Vole bent over backwards to fix the bug?

Answers on the back of a postcard please to Confused@Inq. Vole, it's a marchitectural thing.

The INQUIRER review of the year A look back at the big news stories of 2011 Friday, 23 December 2011, 08:00 AM Read more	Microsoft will patch critical IE and .NET bugs next week Eight bulletins cover two dozen flaws Friday, 7 October 2011, 16:27 PM Read more
Sony wins Most Epic FAIL Pwnie award As successful as the Minidisc Friday, 5 August 2011, 12:52 PM Read more	First impressions of Mageia Linux We take a fork of Mandriva out for a spin Friday, 10 June 2011, 16:00 PM Read more
SCO's nemesis announces her retirement Groklaw's Pamela Jones explains Wednesday, 20 April 2011, 11:01 AM Read more	Apple updates Itunes for IOS 4.3, fixes security bugs Likely to still run horribly on Windows Thursday, 3 March 2011, 12:47 PM Read more

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

INQ White papers

Databases

Network management

Security

Service oriented architecture

Storage

INQ Jobs

PHP Web Developer - html,

The Company: My client b...

INQ Poll

Authorities in several countries raided Megaupload recently, shut down all of its services, seized hundreds of servers and arrested several of its executives on criminal charges.

Do you think the move was justified?

Yes, companies should suffer an immediate death penalty upon being accused of copyright infringement.

Yes, the coppers said the company was breaking the law so it must be guilty.

No, the company and the people accused are innocent until proven guilty.

No, the company had millions of customers who have been harmed by having access to their data files cut off.

I don't care, I never used Megaupload anyway.

View other polls

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Salary Calculator

Search for a job:

Recruitment Agency A-Z Directory

Accreditations:

Digital Publisher of the Year 2010

Vole moves on ASP.net bug

Share this:

RIM Playbook OS 2.0 and Blackberry 7.1 video demo

Nokia Lumia 710 video review