Alert icon
We're changing our privacy policy. This stuff matters.  Learn more  Dismiss

POET vs ASP.NET: don't waste time implementing useless workarounds - you should patch ;-)

Sign in or sign up now!
Alert icon
Upgrade to the latest Flash Player for improved playback performance. Upgrade now or more info.
3,588
Loading...
Alert icon
Sign in or sign up now!
Alert icon

Uploaded by on Sep 27, 2010

We launch POET against the latest version of DotNetNuke which includes all Microsoft's recommended workarounds that supposed to prevent POET. They don't work as expected, and you should patch ;-).

Visit http://netifera.com/research to download the presentation we gave at EKOPARTY.

Category:

Science & Technology

Tags:

License:

Standard YouTube License

  • likes, 1 dislikes

Link to this comment:

Share to:

Uploader Comments (cryptbe)

  • @eduncan911 What's wrong with you? Didn't you see that it's a virtual machine running Windows, and the exploit was launched from a Mac? How can that be "localhost"?

    Please stop complaining, and start patching.

    cryptbe 1 year ago

see all

All Comments (4)

Sign In or Sign Up now to post a comment!

  • When are you going to release the POET with the exploit? :P

    newunderground 1 year ago

  • And what happens when you change your customErrors to mode="On"?

    What you show in the video is to your localhost. And you currently have customErrors="RemoteOnly", which means you are not getting custom errors - the "Microsoft Workaround" recommendation.

    If you want to truly test this, please change mode="On" and re-run - you should not found any key then.

    eduncan911 1 year ago

Loading...
Alert icon
0 / 00Unsaved Playlist Return to active list
    1. Your queue is empty. Add videos to your queue using this button:
      or sign in to load a different list.
    Loading...Loading...Saving...
    • Clear all videos from this list
    • Learn more