Security Hole Patched

Coordinator
Apr 16, 2008 at 8:41 AM
Edited Apr 17, 2008 at 2:35 PM
Dear ModPack friends,

You're strongly advised to patch your current .DLL with the hotfixed version below:

Download the hotfix directly here:
updated patchhttp://www.codeplex.com/Project/Download/FileDownload.aspx?ProjectName=modpack&DownloadId=32552

Replace your current .DLL with this version in your /bin/ folder.

Since it's a critical security issue, I put the patch online right away without extensive testing.

Share any of your findings with all us in this thread, please!

Thanks,
@MikevZ (message me at Twitter)
@ModPack (updates via Twitter)
Coordinator
Apr 17, 2008 at 2:34 PM
Turned out the security hotfix used BE.NET default blog.aspx virtual rewrite instead of /blog/

Updated the code and added the new patch, you can download here:
http://www.codeplex.com/Project/Download/FileDownload.aspx?ProjectName=modpack&DownloadId=32552