Serious ASP.NET Security Flaw
Looks like a serious ASP.NET security flaw was published yesterday (Friday Sept 17 2010).
Check Steve Smith’s blog for more details and how to apply a workaround.
http://stevesmithblog.com/blog/asp-net-custom-errors-security-flaw/
[EDIT: ScottGu just published a blog post about the flaw]
