---------------------------------------------------------------------- Secunia is pleased to announce the release of the annual Secunia report for 2008. Highlights from the 2008 report: * Vulnerability Research * Software Inspection Results * Secunia Research Highlights * Secunia Advisory Statistics Request the full 2008 Report here: http://secunia.com/advisories/try_vi/request_2008_report/ Stay Secure, Secunia ---------------------------------------------------------------------- TITLE: Microsoft ISA Server / Forefront Threat Management Gateway Two Vulnerabilities SECUNIA ADVISORY ID: SA34687 VERIFY ADVISORY: http://secunia.com/advisories/34687/ DESCRIPTION: Two vulnerabilities have been reported in Microsoft ISA Server / Forefront Threat Management Gateway MBE, which can be exploited by malicious people to cause a DoS (Denial of Service) or conduct cross-site scripting attacks. 1) An error in the firewall engine when handling the TCP session state for Web proxy and Web publishing listeners can be exploited to cause a Web listener to stop responding to new requests via a specially crafted TCP packet. 2) Input passed to the HTML forms authentication component (cookieauth.dll) is not properly sanitised before being returned to users. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. Successful exploitation of this vulnerability requires that Web publishing is enabled and HTML forms authentication is enabled on the default Web listener. SOLUTION: Apply patches. Microsoft Forefront Threat Management Gateway, Medium Business Edition: http://www.microsoft.com/downloads/details.aspx?familyid=6abf9fb4-42d0-4c67-935f-8dc67850148b Microsoft Internet Security and Acceleration Server 2004 Standard Edition SP3: http://www.microsoft.com/downloads/details.aspx?familyid=adf623fa-2d74-4f2a-9835-4b8debdb0e1b Microsoft Internet Security and Acceleration Server 2004 Enterprise Edition SP3: http://www.microsoft.com/downloads/details.aspx?familyid=d1d55ab6-3de5-4811-9693-8d43f49f5fe8 Microsoft Internet Security and Acceleration Server 2006: http://www.microsoft.com/downloads/details.aspx?familyid=eda30bcc-0582-4f60-a4c5-ea5000b7c770 Microsoft Internet Security and Acceleration Server 2006 Supportability Update: http://www.microsoft.com/downloads/details.aspx?familyid=eda30bcc-0582-4f60-a4c5-ea5000b7c770 Microsoft Internet Security and Acceleration Server 2006 SP1: http://www.microsoft.com/downloads/details.aspx?familyid=eda30bcc-0582-4f60-a4c5-ea5000b7c770 PROVIDED AND/OR DISCOVERED BY: 1) Reported by the vendor. 2) The vendor credits New York State Chief Information Officer / Office for Technology. ORIGINAL ADVISORY: MS09-016 (KB961759, KB968075, KB960995, KB968078): http://www.microsoft.com/technet/security/Bulletin/MS09-016.mspx ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------