Executive Summary
Summary | |
---|---|
Title | Vulnerabilities in Microsoft ISA Server and Forefront Threat Management Gateway (Medium Business Edition) Could Cause Denial of Service (961759) |
Informations | |||
---|---|---|---|
Name | MS09-016 | First vendor Publication | 2009-04-14 |
Vendor | Microsoft | Last vendor Modification | 2009-07-23 |
Severity (Vendor) | Important | Revision | 1.2 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P) | |||
---|---|---|---|
Cvss Base Score | 5 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Revision Note: V1.2 (July 23, 2009): Added a link to Microsoft Knowledge Base Article 961759 under Known Issues in the Executive Summary.Summary: This security update resolves a privately reported vulnerability and a publicly disclosed vulnerability in Microsoft Internet Security and Acceleration (ISA) Server and Microsoft Forefront Threat Management Gateway (TMG), Medium Business Edition (MBE). These vulnerabilities could allow denial of service if an attacker sends specially crafted network packets to the affected system, or information disclosure or spoofing if a user clicks on a malicious URL or visits a Web site that contains content controlled by the attacker. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/MS09-016.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25) |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:5771 | |||
Oval ID: | oval:org.mitre.oval:def:5771 | ||
Title: | Cross-Site Scripting Vulnerability | ||
Description: | Cross-site scripting (XSS) vulnerability in cookieauth.dll in the HTML forms authentication component in Microsoft Forefront Threat Management Gateway, Medium Business Edition (TMG MBE); and Internet Security and Acceleration (ISA) Server 2006, 2006 Supportability Update, and 2006 SP1; allows remote attackers to inject arbitrary web script or HTML via "authentication input" to this component, aka "Cross-Site Scripting Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2009-0237 | Version: | 6 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows Server 2003 | Product(s): | Microsoft Forefront Threat Management Gateway Microsoft Internet Security and Acceleration Server 2006 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6068 | |||
Oval ID: | oval:org.mitre.oval:def:6068 | ||
Title: | Web Proxy TCP State Limited Denial of Service Vulnerability | ||
Description: | The firewall engine in Microsoft Forefront Threat Management Gateway, Medium Business Edition (TMG MBE); and Internet Security and Acceleration (ISA) Server 2004 SP3, 2006, 2006 Supportability Update, and 2006 SP1; does not properly manage the session state of web listeners, which allows remote attackers to cause a denial of service (many stale sessions) via crafted packets, aka "Web Proxy TCP State Limited Denial of Service Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2009-0077 | Version: | 6 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Forefront Threat Management Gateway Microsoft Internet Security and Acceleration Server 2004 Microsoft Internet Security and Acceleration Server 2006 |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2009-04-23 | Name : Microsoft ISA Server and Forefront Threat Management Gateway DoS Vulnerabilit... File : nvt/secpod_ms09-016.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
53637 | Microsoft ISA Server / Forefront Threat Management Gateway (TMG) Forms Authen... |
53636 | Microsoft ISA Server / Forefront Threat Management Gateway (TMG) Web Proxy TC... |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2009-04-16 | IAVM : 2009-T-0022 - Multiple Vulnerabilities in Microsoft ISA Server and Microsoft Forefront Thre... Severity : Category II - VMSKEY : V0018781 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft ISA and Forefront Threat Management Web Proxy TCP Listener denial o... RuleID : 16221 - Revision : 12 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Windows ISA Server cross-site scripting attempt RuleID : 15475 - Revision : 10 - Type : OS-WINDOWS |
2014-01-10 | Microsoft ISA Server and Forefront Threat Management Gateway invalid RST deni... RuleID : 15474 - Revision : 8 - Type : SERVER-OTHER |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2009-04-14 | Name : The remote host contains an application that is affected by multiple vulnerab... File : smb_nt_ms09-016.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:46:13 |
|
2014-01-19 21:30:18 |
|
2013-11-11 12:41:11 |
|