Research claims legacy .NET proxy behavior creates fresh path to remote system compromise

In the Barracuda Networks Inc. case, a single unauthenticated SOAP request was sufficient to force the application to import ...

Microsoft won't fix .NET RCE bug affecting slew of enterprise apps, researchers say

Updated Security researchers have revealed a .NET security flaw thought to affect a host of enterprise-grade products that ...
CSO Online

Hidden .NET HTTP proxy behavior can open RCE flaws in apps — a security issue Microsoft won’t fix

Researcher warns that many .NET applications might be vulnerable to arbitrary file writes because .NET’s HTTP client proxy classes also accept non-HTTP URLs, a behavior developers are responsible to ...