Eyal Gruner

**Name of the Vulnerable Software and Affected Versions** Microsoft Remote Desktop Connection versions 5.2 through 7.0 **Description** The issue allows local users to gain privileges via a Trojan horse DLL in the current working directory. This can be demonstrated by a directory that contains a .rdp file. The vulnerability is related to an untrusted search path in the client. **Recommendations** For Microsoft Remote Desktop Connection versions 5.2 through 7.0, consider restricting the use of the current working directory to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using directories that contain .rdp files.

**Name of the Vulnerable Software and Affected Versions** Microsoft Forefront Unified Access Gateway (UAG) versions 2010 Gold through 2010 Update 2 **Description** The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks. **Recommendations** For Microsoft Forefront Unified Access Gateway (UAG) versions 2010 Gold through 2010 Update 2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Forefront Unified Access Gateway (UAG) versions 2010 Gold through 2010 Update 2 **Description** A cross-site scripting (XSS) issue in the Web Monitor component allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. This could potentially lead to unauthorized actions on the affected system. **Recommendations** For Microsoft Forefront Unified Access Gateway (UAG) versions 2010 Gold through 2010 Update 2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Forefront Unified Access Gateway versions 2010 Gold, 2010 Update 1, and 2010 Update 2 **Description** The issue is related to a lack of protection for the web page structure in the Signurl.asp component. This allows a remote attacker to perform cross-site scripting (XSS) attacks, which can enable the injection of arbitrary web scripts or HTML. **Recommendations** For Microsoft Forefront Unified Access Gateway versions 2010 Gold, 2010 Update 1, and 2010 Update 2, consider restricting access to the Signurl.asp component until a patch is available. As a temporary workaround, avoid using the Signurl.asp component in sensitive operations to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.