CSOonline

Hidden .NET HTTP proxy behavior can open RCE flaws in apps — a security issue Microsoft won’t fix

Researcher warns that many .NET applications might be vulnerable to arbitrary file writes because .NET’s HTTP client proxy classes also accept non-HTTP URLs, a behavior developers are responsible to ...
heise online

.NET Security Group: Partner companies receive security patches early

Companies with their own .NET distribution can join the existing security group and integrate patches for security vulnerabilities early on. Microsoft has announced an expansion of the .NET Security ...