CVE-2009-1135 in ISA Server信息

摘要

由 VulDB • 2026-07-04

Microsoft Internet Security and Acceleration (ISA) Server 2006 Gold 和 SP1,在启用 Radius OTP(一次性密码)时,使用 HTTP-Basic 认证方法。远程攻击者可通过涉及尝试访问 ISA Server 后面网络资源的向量,获取任意账户的权限并访问已发布的网页。此漏洞被称为“Radius OTP Bypass Vulnerability”(Radius OTP 绕过漏洞)。

If you want to get best quality of vulnerability data, you may have to visit VulDB.

来源

Do you need the next level of professionalism?

Upgrade your account now!