Open Redirect Vulnerability in Microsoft Forefront Unified Access Gateway 2010
CVE-2012-0146

Currently unrated

Key Information:

Vendor: Microsoft
Status: Forefront Unified Access Gateway
Vendor: CVE Published:; 10 April 2012

Summary

An open redirect vulnerability exists in Microsoft Forefront Unified Access Gateway 2010 SP1 and SP1 Update 1, allowing remote attackers to utilize specially crafted URLs to redirect users to arbitrary websites. This flaw can facilitate phishing attacks, undermining user trust and security. Proper measures should be implemented to prevent exploitation of this vulnerability.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

https://exchange.xforce.ibmcloud.com/vulnerabilities/74367

vdb-entryx_refsource_XF

http://www.securitytracker.com/id?1026909

vdb-entryx_refsource_SECTRACK

EPSS Score

25% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 10, 2012
Vulnerability Reserved
Dec 13, 2011