The Hacker News

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

Research shows a .NET proxy design flaw enables file writes and RCE through attacker-supplied WSDL in multiple products.

Research claims legacy .NET proxy behavior creates fresh path to remote system compromise

In the Barracuda Networks Inc. case, a single unauthenticated SOAP request was sufficient to force the application to import ...

Microsoft won't fix .NET RCE bug affecting slew of enterprise apps, researchers say

Updated Security researchers have revealed a .NET security flaw thought to affect a host of enterprise-grade products that ...
TheServerSide

An Approach to Web Services Non-Functional Requirements Using WSDL Annotations

Web Services play a key role in implementing Service Oriented Architecture (SOA). The notion of describing the service independent of the technology in which it has been implemented has been robustly ...
CSO Online

Hidden .NET HTTP proxy behavior can open RCE flaws in apps — a security issue Microsoft won’t fix

Researcher warns that many .NET applications might be vulnerable to arbitrary file writes because .NET’s HTTP client proxy ...
InfoWorld

Client-side WSDL processing with Groovy and Gant

Like it or not, service-oriented architecture (SOA) is a hot topic, and SOAP-based Web services have emerged as the most common implementation of SOA. But, as James Governor put it, “SOA reality ...
Ars Technica

ASP.Net JIT compiling and .wsdl files changing... will it crash?

Forgive me if this is a stupid question, I'm not a WS expert. I've got an ASP.Net app. We're working with another company for which we need to call a web service of theirs. They suck and keep breaking ...
InfoWorld

Is WSDL the indispensable API?

Web services combine the best aspects of component-based development with the Web’s ubiquity and easy access. Think of Web services as black-box functionality you can reuse without worrying about how ...