Lucene search
K

6 matches found

Prion
Prion
added 2012/04/10 9:55 p.m.19 views

Open redirect

Open redirect vulnerability in Microsoft Forefront Unified Access Gateway UAG 2010 SP1 and SP1 Update 1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL, aka "UAG Blind HTTP Redirect Vulnerability."...

5.8CVSS6.8AI score0.10996EPSS
Exploits1References7Affected Software1
NVD
NVD
added 2011/10/12 2:52 a.m.13 views

CVE-2011-1969

Microsoft Forefront Unified Access Gateway UAG 2010 Gold, Update 1, Update 2, and SP1 provides the MicrosoftClient.jar file containing a signed Java applet, which allows remote attackers to execute arbitrary code on client machines via unspecified vectors, aka "Poisoned Cup of Code Execution...

9.3CVSS7.8AI score0.17309EPSS
Exploits4References3
Cvelist
Cvelist
added 2011/10/12 1:0 a.m.16 views

CVE-2011-2012

Microsoft Forefront Unified Access Gateway UAG 2010 Gold, Update 1, Update 2, and SP1 does not properly validate session cookies, which allows remote attackers to cause a denial of service IIS outage via unspecified network traffic, aka "Null Session Cookie Crash."...

6.6AI score0.16588EPSS
Exploits0References3
Prion
Prion
added 2010/11/10 3:0 a.m.14 views

Open redirect

Open redirect vulnerability in the web interface in Microsoft Forefront Unified Access Gateway UAG 2010 Gold, 2010 Update 1, and 2010 Update 2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka "UAG Redirection Spoofing...

5.8CVSS7.1AI score0.13668EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2010/11/10 1:0 a.m.91 views

CVE-2010-2733

This CVE-2010-2733 entry concerns a non-persistent cross-site scripting (XSS) vulnerability in Forefront UAG Web Monitor across 2010 Gold, Update 1, and Update 2. The issue is documented under Microsoft MS10-089, which addresses multiple UAG vulnerabilities (CVE-2010-2732, CVE-2010-2733, CVE-2010...

4.3CVSS5.2AI score0.14498EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2010/11/10 1:0 a.m.22 views

CVE-2010-2734

Cross-site scripting XSS vulnerability in the mobile portal in Microsoft Forefront Unified Access Gateway UAG 2010 Gold, 2010 Update 1, and 2010 Update 2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "XSS Issue on UAG Mobile Portal Website in Forefron...

5.6AI score0.14498EPSS
Exploits0References3
Rows per page
Query Builder