Summary: Microsoft has issued a warning about malware deployment through ViewState code injection attacks, exploiting static ASP.NET machine keys that are publicly available. Attackers utilize these keys to create malicious ViewStates that can lead to remote code execution on IIS servers. The company advises developers to adopt better security practices to mitigate these risks.
Affected: ASP.NET applications and Internet Information Services (IIS) servers
Keypoints :
- Attackers are exploiting publicly disclosed ASP.NET machine keys to perform ViewState code injection attacks.
- These attacks allow for remote code execution on targeted IIS web servers, posing significant security risks.
- Microsoft recommends secure key generation, avoiding default keys, and implementing hardening measures for affected systems.