Microsoft Active Directory Federation Services XSS Elevation Of Privilege Vulnerability (CVE-2015-1757)
Schweregrad:: Hoch
CVE Kennungen:: 2015-1757,MS15-062
Beschreibung
Cross-site scripting (XSS) vulnerability in Microsoft Active Directory Federation Services allows remote attackers to inject arbitrary web script or HTML via a crafted request.
Trend Micro Lösungen
Apply associated Trend Micro DPI Rules.
Lösungen
Trend Micro Deep Security DPI Rule Number: 1000552
Trend Micro Deep Security DPI Rule Name: 1000552 - Generic Cross Site Scripting(XSS) Prevention
Betroffene Software und Version:
- Active Directory Federation Services