Update on ASP.NET Vulnerability