Denial of service vulnerability in Microsoft Forefront Unified Access GatewayID: oval:org.secpod.oval:def:2554 | Date: (C)2011-10-12 (M)2022-10-10 |
Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft Forefront Unified Access Gateway 2010 or Microsoft Forefront Unified Access Gateway 2010 update 1 or Microsoft Forefront Unified Access Gateway 2010 update 2 or Microsoft Forefront Unified Access Gateway 2010 service pack 1 and is prone to denial of service vulnerability. A flaw is present in the application which is caused by improper validation of a NULL value contained within the session cookie. Successful exploitation allows remote attackers to crash the web server on the affected UAG machine.
Platform: |
Microsoft Windows Server 2008 R2 |
Product: |
Microsoft Forefront Unified Access Gateway 2010 |