CVE-2011-2012 in Forefront Unified Access Gatewayinfo

Summary

Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 does not properly validate session cookies, which allows remote attackers to cause a denial of service (IIS outage) via unspecified network traffic, aka "Null Session Cookie Crash."

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

05/09/2011

Disclosure

10/11/2011

Moderation

VulDB entry created

Entries

1: VDB-59008

CPE

ready

CWE

CWE-20 (Confirmed)

CVSS

5.3

EPSS

0.18248

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-2012
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-2012
CVE Details	https://www.cvedetails.com/cve/CVE-2011-2012/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!