MS.Forefront.UAG.Mobile.Portal.Website.XSS
Description
This indicates a possible attack against a cross-site-scripting vulnerability in Microsoft's Forefront UAG (Unified Access Gateway) server.
This vulnerability is due to an error when the vulnerable software handles a malicious HTTP request. An attacker can exploit this to execute arbitrary code.
Affected Products
Forefront Unified Access Gateway 2010
Forefront Unified Access Gateway 2010 Update 1
Forefront Unified Access Gateway 2010 Update 2
Impact
System compromise
Recommended Actions
Apply the patch supplied by the vendor:
http://www.microsoft.com/technet/security/Bulletin/ms10-089.mspx
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2021-01-11 | 16.995 |