Let's say I have a login page that asks for a username and password. On the server side if these two match I mark something in the session variable (server side) to know that the session is logged in. From a different page, let's say in Page_Load, I check if the current session is logged in and if not redirect to the first page. Given the current exploit, how would it work to break in? Would they still be able to retrieve web.config? Actually, let's say we have a plain default web application, with nothing but the default.aspx page, can this site be broken into as well?Thanks.
View Complete Post