Learn more on how to stay protected from the latest Ransomware Pandemic
Check Point Advisories

Preemptive Protection against Microsoft Forefront UAG ExcelTable Reflected XSS Information Disclosure (MS11-079; CVE-2011-1896)

Check Point Reference: CPAI-2011-472
Date Published: 11 Oct 2011
Severity: Critical
Last Updated: 1 Jan 2011
Source: Microsoft Security Bulletin MS11-079
Industry Reference:CVE-2011-1896
Protection Provided by:
Who is Vulnerable? Microsoft Forefront Unified Access Gateway 2010
Microsoft Forefront Unified Access Gateway 2010 Service Pack 1
Microsoft Forefront Unified Access Gateway 2010 Update 1
Microsoft Forefront Unified Access Gateway 2010 Update 2
Vulnerability Description An information disclosure vulnerability has been reported in Microsoft Forefront Unified Access Gateway (UAG) server.
Update/Patch AvaliableApply patches from:
MS11-079
Vulnerability DetailsThe vulnerability is due to a defect in Forefront Unified Access Gateway (UAG) that allows content to be reflected back to the user. A remote attacker may exploit this vulnerability by enticing a target UAG user to click on a link containing a malicious script. Successful exploitation may result in potentially sensitive information being disclosed to an unprivileged user.

Protection Overview

×
  Feedback
This website uses cookies to ensure you get the best experience. Got it, Thanks! MORE INFO