Back to Blog
ASP.Net 2.0 Information Disclosure bug…
•1 min read
developmentsecurityexpressdotnetasp-netaspnetdatabase
I was just thinking about one of the bugs listed in the latest hotfix from MS and realized that while aspx and config files are not at risk since they are mapped to aspnet, the express database if stored in App_Data probably is.
We don’t typically use SQL Express, but my bet is that this is the greatest risk factor for this bug. Thoughts?
Related Articles
About the Author
Patrick Hynds
CEO and Tech Leader
Technology executive and thought leader with expertise in scaling businesses, building high-performing teams, and driving innovation in the tech industry.
Learn more about Patrick