Lucene search
K

53 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-4531

Malware in sbrugna...

9.8CVSS9.5AI score0.30274EPSS
Exploits3References6
Microsoft KB
Microsoft KB
added 2019/11/06 2:31 a.m.31 views

MS10-089: Vulnerabilities in Forefront Unified Access Gateway and Microsoft Intelligent Application Gateway could cause elevation of privilege

Resolves vulnerabilities in Forefront Unified Access Gateway UAG that could allow elevation of privilege if a user visits an affected Web site using a specially crafted URL.INTRODUCTIONMicrosoft has released security bulletin MS10-089. To view the complete security bulletin, visit the following...

5.8CVSS0.2AI score0.19111EPSS
Exploits0
NVD
NVD
added 2018/07/05 8:29 p.m.30 views

CVE-2018-12571

uniquesig0/InternalSite/InitParams.aspx in Microsoft Forefront Unified Access Gateway 2010 allows remote attackers to trigger outbound DNS queries for arbitrary hosts via a comma-separated list of URLs in the origurl parameter, possibly causing a traffic amplification and/or SSRF outcome...

9.8CVSS9.4AI score0.30274EPSS
Exploits3References4
Cvelist
Cvelist
added 2018/07/05 8:0 p.m.38 views

CVE-2018-12571

uniquesig0/InternalSite/InitParams.aspx in Microsoft Forefront Unified Access Gateway 2010 allows remote attackers to trigger outbound DNS queries for arbitrary hosts via a comma-separated list of URLs in the origurl parameter, possibly causing a traffic amplification and/or SSRF outcome...

9.4AI score0.30274EPSS
Exploits3References4
CVE
CVE
added 2018/07/05 8:0 p.m.47 views

CVE-2018-12571

CVE-2018-12571 affects Microsoft Forefront Unified Access Gateway 2010. The vulnerability arises in uniquesig0/InternalSite/InitParams.aspx where a comma-separated orig_url list can trigger outbound DNS queries to arbitrary hosts, enabling potential traffic amplification and/or SSRF. POCs and dis...

9.8CVSS9.2AI score0.30274EPSS
Exploits3References4Affected Software1
CNVD
CNVD
added 2018/07/04 12:0 a.m.5 views

Microsoft Forefront Unified Access Gateway 2010 External DNS Interaction Vulnerability

Microsoft Forefront Unified Access Gateway is an SSL VPN gateway server from Microsoft. Microsoft Forefront Unified Access Gateway 2010 external DNS interaction vulnerability allows remote attackers to Trigger URLs in the outbound DNS query origurl parameter from arbitrary hosts via a...

9.8CVSS9.3AI score0.30274EPSS
Exploits3References1
Packet Storm
Packet Storm
added 2018/07/02 12:0 a.m.50 views

Microsoft Forefront Unified Access Gateway 2010 External DNS Interaction

Exploit Title: Microsoft Forefront Unified Access Gateway 2010 External DNS Interaction Vendor Homepage: https://www.microsoft.com/ Version: 2010 CVE : CVE-2018-12571 Proof of Concept 1 Microsoft Forefront Unified Access Gateway 2010 allows remote attackers to trigger outbound DNS queries for...

0.6AI score0.30274EPSS
Exploits3
OpenVAS
OpenVAS
added 2012/10/26 12:0 a.m.71 views

MS Forefront Unified Access Gateway Remote Code Execution Vulnerabilities (2544641)

This host is missing an important security update according to Microsoft Bulletin MS11-079. OpenVAS Vulnerability Test $Id: secpodms11-079.nasl 5958 2017-04-17 09:02:19Z teissa $ MS Forefront Unified Access Gateway Remote Code Execution Vulnerabilities 2544641 Authors: Madhuri D Copyright:...

9.3CVSS0.5AI score0.17309EPSS
Exploits4References6
OpenVAS
OpenVAS
added 2012/10/26 12:0 a.m.17 views

Microsoft Forefront Unified Access Gateway Remote Code Execution Vulnerabilities (2544641)

This host is missing an important security update according to Microsoft Bulletin MS11-079. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS4.9AI score0.17309EPSS
Exploits4References10
Tenable Nessus
Tenable Nessus
added 2012/04/27 12:0 a.m.26 views

MS12-026: Vulnerabilities in Forefront Unified Access Gateway (UAG) Could Allow Information Disclosure (2663860) (uncredentialed check)

Binary data forefrontuagms12-026.nbin...

5.8CVSS6.9AI score0.3562EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2012/04/13 12:0 a.m.24 views

Microsoft Forefront Unified Access Gateway (UAG) Detection

Detects the installed version of Microsoft Forefront Unified Access Gateway. The script logs in via smb, searches for Microsoft Forefront Unified Access Gateway in the registry and gets the version from registry. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted...

6.9AI score
Exploits0
OpenVAS
OpenVAS
added 2012/04/12 12:0 a.m.22 views

MS Forefront Unified Access Gateway Information Disclosure Vulnerability (2663860)

This host is missing an important security update according to Microsoft Bulletin MS12-026. OpenVAS Vulnerability Test $Id: secpodms12-026.nasl 6018 2017-04-24 09:02:24Z teissa $ MS Forefront Unified Access Gateway Information Disclosure Vulnerability 2663860 Authors: Madhuri D Copyright: Copyrig...

5.8CVSS6.4AI score0.3562EPSS
Exploits2References6
seebug.org
seebug.org
added 2012/04/12 12:0 a.m.23 views

Microsoft Forefront Unified Access Gateway URI公开重定向漏洞(MS12-026)

BUGTRAQ ID: 52903 CVE ID: CVE-2012-0146 Forefront Unified Access Gateway(UAG)是一款远程访问和协作软件。 Microsoft Forefront Unified Access Gateway UAG中存在可导致信息泄露的欺骗漏洞, 攻击者重定向UAG服务器的网络流量,发送恶意链接并诱使用户单击,利用此漏洞获取敏感信息。 0 Microsoft Forefront UAG 2010 厂商补丁: Microsoft --------- Microsoft已经为此发布了一个安全公告(MS12-026)以及相应补丁:...

5.8CVSS6.2AI score0.10996EPSS
Exploits1
seebug.org
seebug.org
added 2012/04/12 12:0 a.m.34 views

Microsoft Forefront Unified Access Gateway信息泄露漏洞(MS12-026)

BUGTRAQ ID: 52909 CVE ID: CVE-2012-0147 Forefront Unified Access Gateway(UAG)是一款远程访问和协作软件。 Microsoft Forefront Unified Access Gateway UAG中存在漏洞,未验证用户可访问UAG服务器的默认网站,获取敏感信息。 0 Microsoft Forefront UAG 2010 厂商补丁: Microsoft --------- Microsoft已经为此发布了一个安全公告(MS12-026)以及相应补丁: MS12-026:Vulnerabilities in...

5CVSS6.2AI score0.3562EPSS
Exploits1
OpenVAS
OpenVAS
added 2012/04/12 12:0 a.m.21 views

Microsoft Forefront Unified Access Gateway Information Disclosure Vulnerability (2663860)

This host is missing an important security update according to Microsoft Bulletin MS12-026. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

5.8CVSS5AI score0.3562EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2012/04/11 12:0 a.m.33 views

MS12-026: Vulnerabilities in Forefront Unified Access Gateway (UAG) Could Allow Information Disclosure (2663860)

The version of Forefront Unified Access Gateway UAG running on the remote host has multiple vulnerabilities : - A spoofing vulnerability that could allow an attacker to redirect a victim to a malicious website. An attacker would have to trick the victim into clicking a specially crafted link in...

5.8CVSS5.7AI score0.3562EPSS
Exploits2References3
NVD
NVD
added 2012/04/10 9:55 p.m.25 views

CVE-2012-0146

Open redirect vulnerability in Microsoft Forefront Unified Access Gateway UAG 2010 SP1 and SP1 Update 1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL, aka "UAG Blind HTTP Redirect Vulnerability."...

5.8CVSS6.4AI score0.10996EPSS
Exploits1References7
NVD
NVD
added 2012/04/10 9:55 p.m.28 views

CVE-2012-0147

Microsoft Forefront Unified Access Gateway UAG 2010 SP1 and SP1 Update 1 does not properly configure the default web site, which allows remote attackers to obtain sensitive information via a crafted HTTPS request, aka "Unfiltered Access to UAG Default Website Vulnerability."...

5CVSS5.9AI score0.3562EPSS
Exploits1References8
Prion
Prion
added 2012/04/10 9:55 p.m.19 views

Open redirect

Open redirect vulnerability in Microsoft Forefront Unified Access Gateway UAG 2010 SP1 and SP1 Update 1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL, aka "UAG Blind HTTP Redirect Vulnerability."...

5.8CVSS6.8AI score0.10996EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2012/04/10 9:0 p.m.27 views

CVE-2012-0146

Open redirect vulnerability in Microsoft Forefront Unified Access Gateway UAG 2010 SP1 and SP1 Update 1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL, aka "UAG Blind HTTP Redirect Vulnerability."...

6.4AI score0.10996EPSS
Exploits1References7
Rows per page
Query Builder