2 matches found
CVE-2009-0077
CVE-2009-0077 affects Microsoft ISA Server and Forefront TMG MBE where the firewall engine mishandles TCP state for Web proxy/listeners, enabling a remote attacker to cause a denial of service by creating orphaned/open sessions. Affected products/versions include ISA Server 2004 SP3, ISA Server 2...
CVE-2009-0237
CVE-2009-0237 is a non-persistent cross-site scripting (XSS) vulnerability in the HTML forms authentication component cookieauth.dll used by ISA Server and Forefront TMG MBE and affected 2006/2006 SP1, as described in the MS09-016 bulletin. The root cause is improper input validation of HTTP form...