"One day after disclosing the flaw, which affects ASP.NET versions 1.1 and later on all supported versions of the .NET Framework, Microsoft released an emergency patch, which also addresses three other bugs, all of which were privately reported," writes SC Magazine's Dan Kaplan.
"The out-of-band patch from Microsoft comes roughly two weeks prior to its regularly scheduled security update," Kaplan writes.
Go to "Microsoft delivers rare out-of-band patch for ASP.NET issue" to read the details.https://o1.qnsr.com/log/p.gif?;n=203;c=204660766;s=9477;x=7936;f=201812281312070;u=j;z=TIMESTAMP;a=20392931;e=i
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.