ID

VAR-200904-0209


CVE

CVE-2009-0077


TITLE

Microsoft Forefront TMG MBE and ISA Server Service disruption in firewall engines (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2009-001217

DESCRIPTION

The firewall engine in Microsoft Forefront Threat Management Gateway, Medium Business Edition (TMG MBE); and Internet Security and Acceleration (ISA) Server 2004 SP3, 2006, 2006 Supportability Update, and 2006 SP1; does not properly manage the session state of web listeners, which allows remote attackers to cause a denial of service (many stale sessions) via crafted packets, aka "Web Proxy TCP State Limited Denial of Service Vulnerability.". Microsoft ISA Server and Forefront Threat Management Gateway are prone to a remote denial-of-service vulnerability. A remote, anonymous attacker could exploit this issue to cause the Web proxy listener to become unresponsive, denying service legitimate users. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 National Cyber Alert System Technical Cyber Security Alert TA09-104A Microsoft Updates for Multiple Vulnerabilities Original release date: April 14, 2009 Last revised: -- Source: US-CERT Systems Affected * Microsoft Windows * Microsoft Office * Microsoft Windows Server * Microsoft ISA Server Overview Microsoft has released updates that address vulnerabilities in Microsoft Windows, Office, Windows Server, and ISA Server. I. Description As part of the Microsoft Security Bulletin Summary for April 2009, Microsoft released updates to address vulnerabilities that affect Microsoft Windows, Office, Windows Server, and ISA Server. II. Impact A remote, unauthenticated attacker could execute arbitrary code, gain elevated privileges, or cause a vulnerable application to crash. III. Solution Microsoft has provided updates for these vulnerabilities in the Microsoft Security Bulletin Summary for April 2009. The security bulletin describes any known issues related to the updates. Administrators are encouraged to note these issues and test for any potentially adverse effects. Administrators should consider using an automated update distribution system such as Windows Server Update Services (WSUS). IV. References * Microsoft Security Bulletin Summary for April 2009 - <http://www.microsoft.com/technet/security/bulletin/ms09-apr.mspx> * Microsoft Windows Server Update Services - <http://technet.microsoft.com/en-us/wsus/default.aspx> ____________________________________________________________________ The most recent version of this document can be found at: <http://www.us-cert.gov/cas/techalerts/TA09-104A.html> ____________________________________________________________________ Feedback can be directed to US-CERT Technical Staff. Please send email to <cert@cert.org> with "TA09-104A Feedback VU#999892" in the subject. ____________________________________________________________________ For instructions on subscribing to or unsubscribing from this mailing list, visit <http://www.us-cert.gov/cas/signup.html>. ____________________________________________________________________ Produced 2009 by US-CERT, a government organization. Terms of use: <http://www.us-cert.gov/legal.html> ____________________________________________________________________ Revision History April 14, 2009: Initial release -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iQEVAwUBSeTi+XIHljM+H4irAQIIWQf/TWAkmQKay9j5fDLBcyMGJ3icTpG05Zp2 rM8UXMjKohKcDBhY1K9mxKxif5L81+y87PlBz/WTl3icn+57wAGMl/pAAeTz3Hp3 T98eKMXfzvVU57WDGGxy+4Ad57DIIF5hRkiGusDjnNJfd5kdH7q+8rPjPCUvtYAu H+0auzCpmob7NsIv/YuRXIHekkLiX5GPanhecy+mve1cvbSpXGKF9vf7LEGaFEsT 1XOtTeY0r4TjZEk/c5ahKqGehJINujvv4eVdiajqDOCVecaALi+p+XwMSLtlJvgK Vaa/ioPIFq8nNUz7eefVSadsary2RfmKegDwmg8FZX/UOso+tQ21KQ== =q59/ -----END PGP SIGNATURE----- . ---------------------------------------------------------------------- Secunia is pleased to announce the release of the annual Secunia report for 2008. 2) Input passed to the HTML forms authentication component (cookieauth.dll) is not properly sanitised before being returned to users. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. Successful exploitation of this vulnerability requires that Web publishing is enabled and HTML forms authentication is enabled on the default Web listener. SOLUTION: Apply patches. 2) The vendor credits New York State Chief Information Officer / Office for Technology. ORIGINAL ADVISORY: MS09-016 (KB961759, KB968075, KB960995, KB968078): http://www.microsoft.com/technet/security/Bulletin/MS09-016.mspx ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.16

sources: NVD: CVE-2009-0077 // JVNDB: JVNDB-2009-001217 // BID: 34414 // VULHUB: VHN-37523 // PACKETSTORM: 76655 // PACKETSTORM: 76632

AFFECTED PRODUCTS

vendor:microsoftmodel:forefront threat management gatewayscope:eqversion: -

Trust: 2.4

vendor:microsoftmodel:internet security and acceleration serverscope:eqversion:2004

Trust: 2.4

vendor:microsoftmodel:internet security and acceleration serverscope:eqversion:2006

Trust: 2.4

vendor:microsoftmodel:forefront threat management gatewayscope:eqversion:medium business edition

Trust: 0.8

vendor:microsoftmodel:internet security and acceleration serverscope:eqversion:2006 supportability update

Trust: 0.8

vendor:microsoftmodel:isa server supportability updatescope:eqversion:20060

Trust: 0.3

vendor:microsoftmodel:isa server sp1scope:eqversion:2006

Trust: 0.3

vendor:microsoftmodel:isa serverscope:eqversion:20060

Trust: 0.3

vendor:microsoftmodel:isa server sp3scope:eqversion:2004

Trust: 0.3

vendor:microsoftmodel:forefront threat management gateway medium business editscope: - version: -

Trust: 0.3

sources: BID: 34414 // JVNDB: JVNDB-2009-001217 // CNNVD: CNNVD-200904-273 // NVD: CVE-2009-0077

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2009-0077
value: MEDIUM

Trust: 1.0

NVD: CVE-2009-0077
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-200904-273
value: MEDIUM

Trust: 0.6

VULHUB: VHN-37523
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2009-0077
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-37523
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-37523 // JVNDB: JVNDB-2009-001217 // CNNVD: CNNVD-200904-273 // NVD: CVE-2009-0077

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

problemtype:CWE-Other

Trust: 0.8

sources: JVNDB: JVNDB-2009-001217 // NVD: CVE-2009-0077

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200904-273

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-200904-273

CONFIGURATIONS

sources: JVNDB: JVNDB-2009-001217

PATCH

title:MS09-016url:http://www.microsoft.com/technet/security/bulletin/MS09-016.mspx

Trust: 0.8

title:MS09-016url:http://www.microsoft.com/japan/technet/security/bulletin/MS09-016.mspx

Trust: 0.8

title:MS09-016eurl:http://www.microsoft.com/japan/security/bulletins/MS09-016e.mspx

Trust: 0.8

title:TA09-104Aurl:http://software.fujitsu.com/jp/security/vulnerabilities/ta09-104a.html

Trust: 0.8

sources: JVNDB: JVNDB-2009-001217

EXTERNAL IDS

db:NVDid:CVE-2009-0077

Trust: 2.8

db:USCERTid:TA09-104A

Trust: 2.6

db:SECUNIAid:34687

Trust: 2.6

db:OSVDBid:53636

Trust: 2.5

db:VUPENid:ADV-2009-1030

Trust: 2.5

db:SECTRACKid:1022045

Trust: 2.5

db:USCERTid:SA09-104A

Trust: 0.8

db:JVNDBid:JVNDB-2009-001217

Trust: 0.8

db:CERT/CCid:TA09-104A

Trust: 0.6

db:MSid:MS09-016

Trust: 0.6

db:CNNVDid:CNNVD-200904-273

Trust: 0.6

db:BIDid:34414

Trust: 0.4

db:VULHUBid:VHN-37523

Trust: 0.1

db:PACKETSTORMid:76655

Trust: 0.1

db:PACKETSTORMid:76632

Trust: 0.1

sources: VULHUB: VHN-37523 // BID: 34414 // JVNDB: JVNDB-2009-001217 // PACKETSTORM: 76655 // PACKETSTORM: 76632 // CNNVD: CNNVD-200904-273 // NVD: CVE-2009-0077

REFERENCES

url:http://www.us-cert.gov/cas/techalerts/ta09-104a.html

Trust: 2.5

url:http://osvdb.org/53636

Trust: 2.5

url:http://www.securitytracker.com/id?1022045

Trust: 2.5

url:http://secunia.com/advisories/34687

Trust: 2.5

url:http://www.vupen.com/english/advisories/2009/1030

Trust: 2.5

url:https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-016

Trust: 1.1

url:https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a6068

Trust: 1.1

url:http://www.microsoft.com/technet/security/bulletin/ms09-016.mspx

Trust: 1.0

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-0077

Trust: 0.8

url:http://www.jpcert.or.jp/at/2009/at090007.txt

Trust: 0.8

url:http://jvn.jp/cert/jvnta09-104a/index.html

Trust: 0.8

url:http://jvn.jp/tr/jvntr-2009-10/index.html

Trust: 0.8

url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2009-0077

Trust: 0.8

url:http://www.us-cert.gov/cas/alerts/sa09-104a.html

Trust: 0.8

url:http://www.cyberpolice.go.jp/#topics

Trust: 0.8

url:http://www.microsoft.com

Trust: 0.3

url:http://www.us-cert.gov/cas/techalerts/ta09-104a.html>

Trust: 0.1

url:http://www.microsoft.com/technet/security/bulletin/ms09-apr.mspx>

Trust: 0.1

url:http://www.us-cert.gov/cas/signup.html>.

Trust: 0.1

url:http://www.us-cert.gov/legal.html>

Trust: 0.1

url:http://technet.microsoft.com/en-us/wsus/default.aspx>

Trust: 0.1

url:http://www.microsoft.com/downloads/details.aspx?familyid=6abf9fb4-42d0-4c67-935f-8dc67850148b

Trust: 0.1

url:http://secunia.com/advisories/about_secunia_advisories/

Trust: 0.1

url:http://secunia.com/advisories/secunia_security_advisories/

Trust: 0.1

url:http://www.microsoft.com/downloads/details.aspx?familyid=adf623fa-2d74-4f2a-9835-4b8debdb0e1b

Trust: 0.1

url:http://secunia.com/advisories/34687/

Trust: 0.1

url:http://www.microsoft.com/downloads/details.aspx?familyid=eda30bcc-0582-4f60-a4c5-ea5000b7c770

Trust: 0.1

url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Trust: 0.1

url:http://www.microsoft.com/downloads/details.aspx?familyid=d1d55ab6-3de5-4811-9693-8d43f49f5fe8

Trust: 0.1

url:http://secunia.com/advisories/try_vi/request_2008_report/

Trust: 0.1

sources: VULHUB: VHN-37523 // BID: 34414 // JVNDB: JVNDB-2009-001217 // PACKETSTORM: 76655 // PACKETSTORM: 76632 // CNNVD: CNNVD-200904-273 // NVD: CVE-2009-0077

CREDITS

Microsoft

Trust: 0.6

sources: CNNVD: CNNVD-200904-273

SOURCES

db:VULHUBid:VHN-37523
db:BIDid:34414
db:JVNDBid:JVNDB-2009-001217
db:PACKETSTORMid:76655
db:PACKETSTORMid:76632
db:CNNVDid:CNNVD-200904-273
db:NVDid:CVE-2009-0077

LAST UPDATE DATE

2024-11-23T19:43:28.214000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-37523date:2018-10-12T00:00:00
db:BIDid:34414date:2009-04-14T23:06:00
db:JVNDBid:JVNDB-2009-001217date:2009-05-15T00:00:00
db:CNNVDid:CNNVD-200904-273date:2021-07-14T00:00:00
db:NVDid:CVE-2009-0077date:2024-11-21T00:59:00.293

SOURCES RELEASE DATE

db:VULHUBid:VHN-37523date:2009-04-15T00:00:00
db:BIDid:34414date:2009-04-14T00:00:00
db:JVNDBid:JVNDB-2009-001217date:2009-05-15T00:00:00
db:PACKETSTORMid:76655date:2009-04-15T00:10:24
db:PACKETSTORMid:76632date:2009-04-14T15:11:48
db:CNNVDid:CNNVD-200904-273date:2009-04-15T00:00:00
db:NVDid:CVE-2009-0077date:2009-04-15T08:00:00.267