SiliconANGLE

Research claims legacy .NET proxy behavior creates fresh path to remote system compromise

New research out today from cybersecurity company watchTowr Pte. Ltd. details a new class of vulnerabilities in the .NET Framework that can allow attackers to weaponize standard SOAP client proxies ...
CSOonline

Hidden .NET HTTP proxy behavior can open RCE flaws in apps — a security issue Microsoft won’t fix

Researcher warns that many .NET applications might be vulnerable to arbitrary file writes because .NET’s HTTP client proxy classes also accept non-HTTP URLs, a behavior developers are responsible to ...