Yes. We are working on an update to ASP.NET that we will
release via Windows Update once it has been thoroughly tested and is ready for
broad distribution.
Until the update is available, we will also publish details
on workarounds (like the one described in this post) that can be applied immediately to help protect against
the vulnerability. Note that the workarounds are temporary - and will not
be required once the update fixes the vulnerability in the underlying
products. They are intended to provide steps that you can take
immediately until the update is available.