The vulnerability does not exist in OWA. The vulnerability requires that the web.config file in a subfolder enforces different permissions than those in a root folder.
Oh really, what other security exploits have been discovered in ASP.NET? It's been a few years now, there must be dozens right? Go educate yourself and get back to us.
Take care,
-e.
Slashdot Mirror
The vulnerability does not exist in OWA. The vulnerability requires that the web.config file in a subfolder enforces different permissions than those in a root folder.
Oh really, what other security exploits have been discovered in ASP.NET? It's been a few years now, there must be dozens right? Go educate yourself and get back to us. Take care, -e.