The host is installed with Microsoft Forefront Unified Access Gateway 2010 or Microsoft Forefront Unified Access Gateway 2010 update 1 or Microsoft Forefront Unified Access Gateway 2010 update 2 or Microsoft Forefront Unified Access Gateway 2010 service pack 1 and is prone to ExcelTable response splitting cross-site scripting vulnerability. A flaw is present in the applications which fails to properly handle script contained in a specially crafted request. Successful exploitation allows remote attackers to gain privileges and disclose information.