Reported February 8, 2005 by Microsoft
A vulnerability exists in ASP.NET that could allow an attacker to gain unauthorized access to an ASP.NET-based Web site.
Microsoft has released
Security Bulletin MS05-004, "ASP.NET
Path Validation Vulnerability (887219),"
and a patch to correct the problem.