Download
| Alert*
oval:org.mitre.oval:def:5771
Cross-site scripting (XSS) vulnerability in cookieauth.dll in the HTML forms authentication component in Microsoft Forefront Threat Management Gateway, Medium Business Edition (TMG MBE); and Internet Security and Acceleration (ISA) Server 2006, 2006 Supportability Update, and 2006 SP1; allows remote ... oval:org.mitre.oval:def:5809 The Microsoft Office Web Components Spreadsheet ActiveX control (aka OWC10 or OWC11), as distributed in Office XP SP3 and Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet Security and Accelera ... oval:org.mitre.oval:def:6068 The firewall engine in Microsoft Forefront Threat Management Gateway, Medium Business Edition (TMG MBE); and Internet Security and Acceleration (ISA) Server 2004 SP3, 2006, 2006 Supportability Update, and 2006 SP1; does not properly manage the session state of web listeners, which allows remote atta ... oval:org.secpod.oval:def:2373 The host is missing an important security update according to Microsoft security bulletin, MS09-016. The update is required to fix denial of service vulnerabilities. The flaws are present in the Microsoft Internet Security and Acceleration (ISA) Server and Microsoft Forefront Threat Management Gatew ... oval:org.mitre.oval:def:6052 Microsoft Internet Security and Acceleration Server 2006 is installed. oval:org.secpod.oval:def:2998 The host is missing an important security update according to Microsoft security bulletin, MS09-031. The update is required to fix privilege escalation vulnerability. A flaw is present in the Microsoft ISA Server 2006, which fails to handle an administrative user account for an ISA server that is co ... oval:org.mitre.oval:def:5649 Microsoft Internet Security and Acceleration (ISA) Server 2006 Gold and SP1, when Radius OTP is enabled, uses the HTTP-Basic authentication method, which allows remote attackers to gain the privileges of an arbitrary account, and access published web pages, via vectors involving attempted access to ... oval:org.mitre.oval:def:6337 The Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet Security and Acceleration (ISA) Server 2004 SP3 and 2006 SP1, and Office ... oval:org.mitre.oval:def:5645 Heap-based buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet Security and Acceleration (ISA) Server 2004 ... oval:org.secpod.oval:def:2374 The host is missing a critical security update according to Microsoft security bulletin, MS09-043. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Web Components, which fails to handle a specially crafted Web page. Successful exploit ... |