MS11-079: Vulnerabilities in Microsoft Forefront Unified Access Gateway Could Cause Remote Code Execution (2544641)

This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.


Synopsis :

A web application on the remote Windows host has multiple
vulnerabilities.

Description :

The version of Forefront Unified Access Gateway (UAG) running on the
remote host has multiple vulnerabilities in the Web Monitor
component :

- An HTTP response splitting vulnerability in
ExcelTable.asp. (CVE-2011-1895)

- A reflected XSS in ExcelTable.asp. (CVE-2011-1896)

- A reflected XSS in Default.asp. (CVE-2011-1897)

- A code execution vulnerability in a signed Java applet.
Users that access the UAG server from a Java-enabled
web browser are affected. (CVE-2011-1969)

- Processing a null session cookie can cause the web
server to become unresponsive. (CVE-2011-2012)

See also :

http://technet.microsoft.com/en-us/security/bulletin/ms11-079

Solution :

Microsoft has released a set of patches for UAG 2010, UAG 2010 Update
1, UAG 2010 Update 2, and UAG 2010 SP1.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 4.1
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows : Microsoft Bulletins

Nessus Plugin ID: 56453 ()

Bugtraq ID: 49972
49974
49979
49980
49983

CVE ID: CVE-2011-1895
CVE-2011-1896
CVE-2011-1897
CVE-2011-1969
CVE-2011-2012