The NSPLookupServiceNext function in the client in Microsoft Forefront Threat Management Gateway (TMG) 2010 allows remote attackers to execute arbitrary code via vectors involving unspecified requests, aka "TMG Firewall Client Memory Corruption Vulnerability."
References
Link | Resource |
---|---|
http://secunia.com/advisories/44857 | Broken Link |
http://www.securityfocus.com/bid/48181 | Broken Link Third Party Advisory VDB Entry |
http://www.securitytracker.com/id?1025637 | Broken Link Third Party Advisory VDB Entry |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-040 | Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/67736 | Third Party Advisory VDB Entry |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12642 | Broken Link |
Configurations
History
24 Jul 2024, 14:30
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 10.0
v3 : 9.8 |
References | () http://secunia.com/advisories/44857 - Broken Link | |
References | () http://www.securityfocus.com/bid/48181 - Broken Link, Third Party Advisory, VDB Entry | |
References | () http://www.securitytracker.com/id?1025637 - Broken Link, Third Party Advisory, VDB Entry | |
References | () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-040 - Patch, Vendor Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/67736 - Third Party Advisory, VDB Entry | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12642 - Broken Link |
Information
Published : 2011-06-16 20:55
Updated : 2024-07-24 14:30
NVD link : CVE-2011-1889
Mitre link : CVE-2011-1889
CVE.ORG link : CVE-2011-1889
JSON object : View
Products Affected
microsoft
- forefront_threat_management_gateway
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer