posted on Monday, October 18, 2004 6:52 AM
by
DougSeven
ASP.NET ValidatePath Module Scanner Released
On Friday, Microsoft released additional information related to the reported ASP.NET vulnerability. This guidance includes a new ASP.NET ValidatePath Module Scanner, which will make it easy for Web Site administrators to determine which machines have or have not installed the previously released ValidatePath HTTP Module. In addition, Microsoft released specific steps on how to use either SMS or Group Policy to easily and automatically deploy the ValidatePath HTTP Module to multiple machines. This update was released to further help simplify the deployment process for Web site administrators.
Information on the ASP.NET ValidatePath Module Scanner is available in Microsoft Knowledge Base article 887290, which is available here: http://support.microsoft.com/kb/887290
For information on deploying the ASP.NET ValidatePath Module Scanner please see Microsoft Knowledge Base article 887405, "How to use Windows Installer and Group Policy to deploy the VPModule.msi in an Active Directory domain" available here: http://support.microsoft.com/kb/887405
and Microsoft Knowledge Base article 887404, "How to use Systems Management Server 2003 to deploy the ValidatePath module" available here: http://support.microsoft.com/kb/887404
Information on the ASP.NET ValidatePath Module itself is available in Microsoft Knowledge Base article 887289 available here: http://support.microsoft.com/?kbid=887289