[Owasp-o2-platform] ASP.NET POET Vulnerability

dinis cruz dinis.cruz at owasp.org
Mon Sep 20 10:14:53 EDT 2010


Hi, are you guys following the ASP.NET POET Vulnerability?

There seems to be quite a lot of information out there, but I have not seen
a consolidated and objective analysis of the problem, its scope and
effective remeditations.

This could be a good oportunity for the OWASP-Dotnet project to add value to
the .NET world by creating a consolidated and un-bias information page(s)
about this issue.

Namely I'm thinking of a page in our www.owasp.org wiki.

I've started the process by creating a WIKI page with the info I could find:
http://www.owasp.org/index.php/ASP.NET POET Vulnerability

I would like this page to look like one of the really good Wikipedia
articles (with good/objective description of the problem, good technical
desciption of the problem and tons of references)

Btw, anybody has gotten a working PoC for the ASP.NET POET Vulnerability? I
want to create an O2 module/script that detects (and exploits) this issue

Dinis Cruz

Blog: http://diniscruz.blogspot.com
Twitter: http://twitter.com/DinisCruz
Web: http://www.owasp.org/index.php/O2
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-o2-platform/attachments/20100920/3fbe7206/attachment.html 


More information about the Owasp-o2-platform mailing list