EUVD-2015-2568

Malware in sbrugna...

MS15-087: Description of the security update for UDDI services in Windows: August 11, 2015

MS15-087: Description of the security update for UDDI services in Windows: August 11, 2015 Summary This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker engineered a cross-site scripting XSS scenario by inserting a...

Cross site scripting

Cross-site scripting XSS vulnerability in uddi/search/frames.aspx in the UDDI Services component in Microsoft Windows Server 2008 SP2 and BizTalk Server 2010, 2013 Gold, and 2013 R2 allows remote attackers to inject arbitrary web script or HTML via the search parameter, aka "UDDI Services Elevati...

CVE-2015-2475

CVE-2015-2475 is an XSS vulnerability in the UDDI Services component of Microsoft Windows Server 2008 SP2 and BizTalk Server 2010/2013 (Gold and R2). The flaw arises from improper validation/sanitization of input in the uddi/search/frames.aspx FRAME parameter, enabling remote attackers to inject ...

CVE-2015-2475

Cross-site scripting XSS vulnerability in uddi/search/frames.aspx in the UDDI Services component in Microsoft Windows Server 2008 SP2 and BizTalk Server 2010, 2013 Gold, and 2013 R2 allows remote attackers to inject arbitrary web script or HTML via the search parameter, aka "UDDI Services Elevati...

MS15-087: Vulnerability in UDDI Services Could Allow Elevation of Privilege (3082459)

The remote Windows host is affected by an elevation of privilege vulnerability in the Universal Description, Discovery, and Integration UDDI Services component due to improper validation and sanitization of user-supplied input to the 'searchID' parameter of the 'explorer' frame in frames.aspx. A...

MS15-087: Vulnerability in UDDI Services Could Allow Elevation of Privilege (3082459) (uncredentialed check)

The remote Windows host is affected by an elevation of privilege vulnerability in the Universal Description, Discovery, and Integration UDDI Services component due to improper validation and sanitization of user-supplied input to the 'searchID' parameter of the 'explorer' frame in frames.aspx. A...

Microsoft Windows UDDI Services CVE-2015-2475 Cross Site Scripting Vulnerability

Description Microsoft Windows UDDI Services is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site...

Windows Internal Database Service Pack 3 for x64 Edition (KB955706)

Windows Internal Database Service Pack 3 KB955706 upgrades the Windows Internal Database WYukon used by Windows components namely Windows SharePoint Services, Windows Server Update Services, Active Directory Rights Management Services, Windows System Resource Manager and UDDI Services. After you...