{"id":4671,"date":"2010-09-29T07:14:57","date_gmt":"2010-09-29T07:14:57","guid":{"rendered":"https:\/\/blogs.msdn.microsoft.com\/bharry\/2010\/09\/29\/security-vulnerability-patch-available\/"},"modified":"2018-08-13T22:44:27","modified_gmt":"2018-08-13T22:44:27","slug":"security-vulnerability-patch-available","status":"publish","type":"post","link":"https:\/\/devblogs.microsoft.com\/bharry\/security-vulnerability-patch-available\/","title":{"rendered":"Security Vulnerability Patch Available"},"content":{"rendered":"<p>Last week, I blogged about an ASP.NET security vulnerability that affected TFS: <a href=\"http:\/\/blogs.msdn.com\/b\/bharry\/archive\/2010\/09\/23\/security-vulnerability.aspx\">http:\/\/blogs.msdn.com\/b\/bharry\/archive\/2010\/09\/23\/security-vulnerability.aspx<\/a>\nYesterday, the ASP.NET team released a patch to fix the vulnerability: <a href=\"http:\/\/weblogs.asp.net\/scottgu\/archive\/2010\/09\/28\/asp-net-security-update-now-available.aspx\">http:\/\/weblogs.asp.net\/scottgu\/archive\/2010\/09\/28\/asp-net-security-update-now-available.aspx<\/a>\nYou can install the patch and remove the work arounds that I described in my previous post.&nbsp; As you can see from Scott&#8217;s post, they released updates for every version of the Framework since 1.1.&nbsp; You will need to install the appropriate patch on any server that has any version of TFS or the TFS proxy, Sharepoint or Reporting Services.&nbsp; You will need to look in Add\/Remove Programs to see which versions of the Framework you have installed and install all the appropriate patches.\nWe&#8217;re very sorry for the invonvenience this has caused.&nbsp; The ASP.NET team worked very hard to release a wide range of patches in record time.&nbsp; This whole issue started less than 2 weeks ago.<\/p>\n<p>Brian<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Last week, I blogged about an ASP.NET security vulnerability that affected TFS: http:\/\/blogs.msdn.com\/b\/bharry\/archive\/2010\/09\/23\/security-vulnerability.aspx Yesterday, the ASP.NET team released a patch to fix the vulnerability: http:\/\/weblogs.asp.net\/scottgu\/archive\/2010\/09\/28\/asp-net-security-update-now-available.aspx You can install the patch and remove the work arounds that I described in my previous post.&nbsp; As you can see from Scott&#8217;s post, they released updates for every version [&hellip;]<\/p>\n","protected":false},"author":244,"featured_media":14617,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[5],"class_list":["post-4671","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-tfs"],"acf":[],"blog_post_summary":"<p>Last week, I blogged about an ASP.NET security vulnerability that affected TFS: http:\/\/blogs.msdn.com\/b\/bharry\/archive\/2010\/09\/23\/security-vulnerability.aspx Yesterday, the ASP.NET team released a patch to fix the vulnerability: http:\/\/weblogs.asp.net\/scottgu\/archive\/2010\/09\/28\/asp-net-security-update-now-available.aspx You can install the patch and remove the work arounds that I described in my previous post.&nbsp; As you can see from Scott&#8217;s post, they released updates for every version [&hellip;]<\/p>\n","_links":{"self":[{"href":"https:\/\/devblogs.microsoft.com\/bharry\/wp-json\/wp\/v2\/posts\/4671","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/devblogs.microsoft.com\/bharry\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devblogs.microsoft.com\/bharry\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/bharry\/wp-json\/wp\/v2\/users\/244"}],"replies":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/bharry\/wp-json\/wp\/v2\/comments?post=4671"}],"version-history":[{"count":0,"href":"https:\/\/devblogs.microsoft.com\/bharry\/wp-json\/wp\/v2\/posts\/4671\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/bharry\/wp-json\/wp\/v2\/media\/14617"}],"wp:attachment":[{"href":"https:\/\/devblogs.microsoft.com\/bharry\/wp-json\/wp\/v2\/media?parent=4671"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/bharry\/wp-json\/wp\/v2\/categories?post=4671"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/bharry\/wp-json\/wp\/v2\/tags?post=4671"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}