Lucene search

[email protected]CVE-2011-1263

HistoryAug 10, 2011 - 9:55 p.m.

CVE-2011-1263

2011-08-1021:55:01

CWE-79

[email protected]

web.nvd.nist.gov

cve

2011

1263

cross-site scripting

xss

rd web access

microsoft

windows server 2008 r2

sp1

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.817 High

EPSS

Percentile

98.4%

JSON

Cross-site scripting (XSS) vulnerability in the logon page in Remote Desktop Web Access (RD Web Access) in Microsoft Windows Server 2008 R2 and R2 SP1 allows remote attackers to inject arbitrary web script or HTML via the URI, aka “Remote Desktop Web Access Vulnerability.”

Affected configurations

NVD

Node

microsoftwindows_server_2008Matchr2x64

CPENameOperatorVersion
microsoft:windows_server_2008microsoft windows server 2008eqr2

CPE	Name	Operator	Version
microsoft:windows_server_2008	microsoft windows server 2008	eq	r2

References

www.us-cert.gov/cas/techalerts/TA11-221A.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-061

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12792

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.817 High

EPSS

Percentile

98.4%

JSON

Related for CVE-2011-1263

seebug1 checkpoint_advisories1 securityvulns1 nessus2 prion1 nvd1 symantec1 cvelist1