Vulnerabilities > CVE-2009-0077 - Unspecified vulnerability in Microsoft products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The firewall engine in Microsoft Forefront Threat Management Gateway, Medium Business Edition (TMG MBE); and Internet Security and Acceleration (ISA) Server 2004 SP3, 2006, 2006 Supportability Update, and 2006 SP1; does not properly manage the session state of web listeners, which allows remote attackers to cause a denial of service (many stale sessions) via crafted packets, aka "Web Proxy TCP State Limited Denial of Service Vulnerability."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 5 |
Msbulletin
bulletin_id | MS09-016 |
bulletin_url | |
date | 2009-04-14T00:00:00 |
impact | Denial of Service |
knowledgebase_id | 961759 |
knowledgebase_url | |
severity | Important |
title | Vulnerabilities in Microsoft ISA Server and Forefront Threat Management Gateway (Medium Business Edition) Could Cause Denial of Service |
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS09-016.NASL |
description | The version of Microsoft ISA Server or Forefront Threat Management Gateway installed on the remote host is affected by one or both of the following vulnerabilities : - By sending a series of specially crafted packets, an anonymous remote attacker can create orphaned open sessions in the firewall engine, thereby denying service to legitimate users. (CVE-2009-0077) - A non-persistent cross-site scripting vulnerability exists in the application due to its failure to sanitize input to its |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 36154 |
published | 2009-04-14 |
reporter | This script is Copyright (C) 2009-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/36154 |
title | MS09-016: Vulnerabilities in Microsoft ISA Server and Forefront Threat Management Gateway Could Cause Denial of Service (961759) |
code |
|
Oval
accepted | 2014-06-30T04:11:14.322-04:00 | ||||||||||||||||||||
class | vulnerability | ||||||||||||||||||||
contributors |
| ||||||||||||||||||||
definition_extensions |
| ||||||||||||||||||||
description | The firewall engine in Microsoft Forefront Threat Management Gateway, Medium Business Edition (TMG MBE); and Internet Security and Acceleration (ISA) Server 2004 SP3, 2006, 2006 Supportability Update, and 2006 SP1; does not properly manage the session state of web listeners, which allows remote attackers to cause a denial of service (many stale sessions) via crafted packets, aka "Web Proxy TCP State Limited Denial of Service Vulnerability." | ||||||||||||||||||||
family | windows | ||||||||||||||||||||
id | oval:org.mitre.oval:def:6068 | ||||||||||||||||||||
status | accepted | ||||||||||||||||||||
submitted | 2009-04-14T16:00:00 | ||||||||||||||||||||
title | Web Proxy TCP State Limited Denial of Service Vulnerability | ||||||||||||||||||||
version | 11 |
Seebug
bulletinFamily | exploit |
description | BUGTRAQ ID: 34414 CVE(CAN) ID: CVE-2009-0077 Microsoft ISA Server和Forefront TMG都是微软产品家族中的安全组件,可提供防火墙、安全网关等功能。 防火墙引擎在为Web代理或者Web发布监听器处理TCP状态的方式可能会留下孤儿开放会话,这允许远程用户导致Web监听器停止响应新请求。 Microsoft ISA Server 2006可支持性升级 Microsoft ISA Server 2006 SP1 Microsoft ISA Server 2006 Microsoft ISA Server 2004 SP3 Microsoft Forefront TMG MBE Microsoft --------- Microsoft已经为此发布了一个安全公告(MS09-016)以及相应补丁: MS09-016:Vulnerabilities in Microsoft ISA Server and Forefront Threat Management Gateway (Medium Business Edition) Could Cause Denial of Service (961759) 链接:<a href=http://www.microsoft.com/technet/security/bulletin/MS09-016.mspx?pf=true target=_blank rel=external nofollow>http://www.microsoft.com/technet/security/bulletin/MS09-016.mspx?pf=true</a> |
id | SSV:5057 |
last seen | 2017-11-19 |
modified | 2009-04-16 |
published | 2009-04-16 |
reporter | Root |
title | Microsoft ISA Server和Forefront TMG拒绝服务漏洞(MS09-016) |
References
- http://osvdb.org/53636
- http://secunia.com/advisories/34687
- http://www.securitytracker.com/id?1022045
- http://www.us-cert.gov/cas/techalerts/TA09-104A.html
- http://www.vupen.com/english/advisories/2009/1030
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-016
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6068