virus logo Intrusion Prevention

MS.ISA.Server.Forefront.TMG.Cookieauth.Dll.XSS

description-logoDescription

This indicates an attack attempt to exploit a Cross-site scripting (XSS) vulnerability in Microsoft ISA Server and Forefront TMG.
The vulnerability exists due to unsanitized user input in the HTML forms authentication component of the affected software. Successful exploitation could allow malicious script code to run on the affected machine.

affected-products-logoAffected Products

Microsoft Forefront Threat Management Gateway, Medium Business Edition
Microsoft Internet Security and Acceleration Server 2004 Service Pack 3
Microsoft Internet Security and Acceleration Server 2006
Internet Security and Acceleration Server 2006 Supportability Update
Microsoft Internet Security and Acceleration Server 2006 Service Pack 1

Impact logoImpact

Information Spoofing: Remote attackers can spoof datas of vulnerable systems.
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Apply patch, available from the website:
http://www.microsoft.com/technet/security/Bulletin/ms09-016.mspx

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 17395
Created Apr 17, 2009
Updated Feb 24, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2009-0237
Exploit Prediction Score 91.54%
Default Action drop
Active
Affected OS Windows
Affected App Other