Vulnerability In .NET AES Implementation Puts ASP.NET Web Sites at Risk

ASP.NET web applications that leverage Forms Authentication, ASP.NET Membership Providers, ASP.NET Role Providers, and/or ViewState encryption are vulnerable to data exposure and potentially tampering. Details to be given this Friday, Sept. 17th at the ‘ekoparty Security Conference’ in Buenos Aires. 'Padding Oracle' Crypto Attack Affects Millions of ASP.NET Applications"It's worth noting that the