ASP .NET applications can be configured to produce debug binaries. Binaries should not be used in production environment as they may leak debug information to attacker.