(MS12-040) Vulnerability in Microsoft Dynamics AX Enterprise Portal Could Allow Elevation of Privilege (2709100)
Data de publicação: 13 junho 2012
Schweregrad: : Alto
Identificador(es) CVE: : CVE-2012-1857
Data do informe: 13 junho 2012
Descrição
A cross-site scripting vulnerability in Microsoft Dynamics AX Enterprise Portal exists that may allow an attacker to gain an elevation of privilege on a vulnerable system. The attacker must lure a potential victim to click on a specially crafted URL that hosts an exploit to the said vulnerability.
Solução
Software infectado e versão:
- Microsoft Dynamics AX 2012