Lucene search
K

6 matches found

Prion
Prion
added 2012/04/10 9:55 p.m.19 views

Open redirect

Open redirect vulnerability in Microsoft Forefront Unified Access Gateway UAG 2010 SP1 and SP1 Update 1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL, aka "UAG Blind HTTP Redirect Vulnerability."...

5.8CVSS6.8AI score0.10996EPSS
Exploits1References7Affected Software1
NVD
NVD
added 2011/10/12 2:52 a.m.13 views

CVE-2011-1969

Microsoft Forefront Unified Access Gateway UAG 2010 Gold, Update 1, Update 2, and SP1 provides the MicrosoftClient.jar file containing a signed Java applet, which allows remote attackers to execute arbitrary code on client machines via unspecified vectors, aka "Poisoned Cup of Code Execution...

9.3CVSS7.8AI score0.17309EPSS
Exploits4References3
Cvelist
Cvelist
added 2011/10/12 1:0 a.m.16 views

CVE-2011-2012

Microsoft Forefront Unified Access Gateway UAG 2010 Gold, Update 1, Update 2, and SP1 does not properly validate session cookies, which allows remote attackers to cause a denial of service IIS outage via unspecified network traffic, aka "Null Session Cookie Crash."...

6.6AI score0.16588EPSS
Exploits0References3
Prion
Prion
added 2010/11/10 3:0 a.m.14 views

Open redirect

Open redirect vulnerability in the web interface in Microsoft Forefront Unified Access Gateway UAG 2010 Gold, 2010 Update 1, and 2010 Update 2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka "UAG Redirection Spoofing...

5.8CVSS7.1AI score0.13668EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2010/11/10 1:0 a.m.21 views

CVE-2010-2734

Cross-site scripting XSS vulnerability in the mobile portal in Microsoft Forefront Unified Access Gateway UAG 2010 Gold, 2010 Update 1, and 2010 Update 2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "XSS Issue on UAG Mobile Portal Website in Forefron...

5.6AI score0.14498EPSS
Exploits0References3
CVE
CVE
added 2010/11/10 1:0 a.m.91 views

CVE-2010-2733

This CVE-2010-2733 entry concerns a non-persistent cross-site scripting (XSS) vulnerability in Forefront UAG Web Monitor across 2010 Gold, Update 1, and Update 2. The issue is documented under Microsoft MS10-089, which addresses multiple UAG vulnerabilities (CVE-2010-2732, CVE-2010-2733, CVE-2010...

4.3CVSS5.2AI score0.14498EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder