The Hacker News

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

Research shows a .NET proxy design flaw enables file writes and RCE through attacker-supplied WSDL in multiple products.

Research claims legacy .NET proxy behavior creates fresh path to remote system compromise

In the Barracuda Networks Inc. case, a single unauthenticated SOAP request was sufficient to force the application to import ...
CSO Online

Hidden .NET HTTP proxy behavior can open RCE flaws in apps — a security issue Microsoft ...

Researcher warns that many .NET applications might be vulnerable to arbitrary file writes because .NET’s HTTP client proxy ...
TheServerSide

An Approach to Web Services Non-Functional Requirements Using WSDL Annotations

Web Services play a key role in implementing Service Oriented Architecture (SOA). The notion of describing the service independent of the technology in which it has been implemented has been robustly ...

Microsoft won't fix .NET RCE bug affecting slew of enterprise apps, researchers say

Updated Security researchers have revealed a .NET security flaw thought to affect a host of enterprise-grade products that ...
InfoWorld

Client-side WSDL processing with Groovy and Gant

Like it or not, service-oriented architecture (SOA) is a hot topic, and SOAP-based Web services have emerged as the most common implementation of SOA. But, as James Governor put it, “SOA reality ...
Ars Technica

ASP.Net JIT compiling and .wsdl files changing... will it crash?

Forgive me if this is a stupid question, I'm not a WS expert. I've got an ASP.Net app. We're working with another company for which we need to call a web service of theirs. They suck and keep breaking ...
InfoWorld

Is WSDL the indispensable API?

While Microsoft’s .Net does not directly embrace the WSDL design view, that view is integral to the .Net framework. A WSDL file describing a service can still serve as a starting point to generate ...
TheServerSide

Developing my first Web Service in 30 minutes

Editor's Note: This web services development tutorial was published in 2001, and remains a very popular article on TheServerSide. This article still provides great value, but significant changes have ...