Microsoft patches .Net Passport

By on July 2, 2003, 2:27 AM
Microsoft patched a hole in it's .Net Passport identity management service last night after a security researcher disclosed a potentially serious flaw that could enable attackers to hijack Passport accounts.

The vulnerability was in the code for a "Secret Question" feature that helped users who had forgotten their Passport password, according to a message posted by Victor Manuel Alvarez Castro, who identified himself as a security consultant.

Read more: [URL=http://www.pcworld.com/news/article/0,aid,111424,00.asp]PC World[/URL].

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.