Re: Massive ASP.Net Forms Authentication vulnerability

From: Prodip Saha (
Date: 10/04/04

Date: Mon, 4 Oct 2004 09:39:16 -0500

I have confirmed this security hole on XP Professional with IE6. This is a
reminder to the companies- never solely rely on microsoft for their
application security.


"Greg Hurlman" <ghurlman*AT*squaretwo*DOT*net> wrote in message
> This is, IMNSHO, the worst thing I've ever heard of.
> Spread the word, test your sites, and send angry emails to Microsoft.
> ---
> Greg Hurlman
> ghurlman*AT*squaretwo*DOT*net