Microsofts ASP.Net framework flaw leaves banking vulnerable

by -

A cryptographic weakness in ASP.net develop apps leaves cookies open to exploit

Cryptographic researchers Thai Duong and Juliano Rizzo were able to develop a Padding Oracle Exploit Tool that demonstrate the ability to exploit the US government-approved AES encryption algorithm used by up to 25% of all online banking sessions used today.
This article was originally published on Monday Sep 13th 2010
Mobile Site | Full Site