Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Crypto Attack Affects Millions of ASP.NET Apps

Posted by CmdrTaco on from the duck-and-cover dept.

Trailrunner7 writes "A pair of security researchers have implemented an attack that exploits the way that ASP.NET Web applications handle encrypted session cookies, a weakness that could enable an attacker to hijack users' online banking sessions and cause other severe problems in vulnerable applications. Experts say that the bug, which will be discussed in detail at the Ekoparty conference in Argentina this week, affects millions of Web applications."

2 of 156 comments (clear)

  1. Oh come on... by santax · · Score: 2, Funny

    Just give us the exploit!

  2. Re:peopleeeeeee helllooooooo? by John+Hasler · · Score: 2, Funny

    > That person should not be called programmer.

    The title is usually "Web developer", is it not?

    --
    Warning: this article may contain humor, sarcasm, parody, and perhaps even irony. Read at your own risk.