Vulnerability Details CVE-2011-1969
Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 provides the MicrosoftClient.jar file containing a signed Java applet, which allows remote attackers to execute arbitrary code on client machines via unspecified vectors, aka "Poisoned Cup of Code Execution Vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.135
EPSS Ranking 93.9%
CVSS Severity
CVSS v2 Score 9.3
References
- http://www.securityfocus.com/bid/49983
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-079
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13032
- http://www.securityfocus.com/bid/49983
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-079
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13032
Products affected by CVE-2011-1969
-
cpe:2.3:a:microsoft:forefront_unified_access_gateway:2010