[Owasp-o2-platform] ASP.NET POET Vulnerability

• Previous message: [Owasp-o2-platform] Help with setting up XSS Tests
• Next message: [Owasp-o2-platform] ASP.NET POET Vulnerability
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi, are you guys following the ASP.NET POET Vulnerability?

There seems to be quite a lot of information out there, but I have not seen
a consolidated and objective analysis of the problem, its scope and
effective remeditations.

This could be a good oportunity for the OWASP-Dotnet project to add value to
the .NET world by creating a consolidated and un-bias information page(s)
about this issue.

Namely I'm thinking of a page in our www.owasp.org wiki.

I've started the process by creating a WIKI page with the info I could find:
http://www.owasp.org/index.php/ASP.NET POET Vulnerability

I would like this page to look like one of the really good Wikipedia
articles (with good/objective description of the problem, good technical
desciption of the problem and tons of references)

Btw, anybody has gotten a working PoC for the ASP.NET POET Vulnerability? I
want to create an O2 module/script that detects (and exploits) this issue

Dinis Cruz

Blog: http://diniscruz.blogspot.com
Twitter: http://twitter.com/DinisCruz
Web: http://www.owasp.org/index.php/O2
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-o2-platform/attachments/20100920/3fbe7206/attachment.html 

• Previous message: [Owasp-o2-platform] Help with setting up XSS Tests
• Next message: [Owasp-o2-platform] ASP.NET POET Vulnerability
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]