If you are relying on <authorization> sections in subdirectories (or via <location> in your web.config files), you should be aware of a canonicalization bug in ASP.NET that can allow an attacker to slip past the UrlAuthorizationModule by using a backslash instead of a forward slash. For more details, look
here at Keith Brown's Security Briefs Blog article.