Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 HTTP:STC:DL:VS-XML-INFO

Severity

 Minor

Recommended

 No

Category

 HTTP

Keywords

 Microsoft Visual Studio XML Information Disclosure

Release Date

 2011/06/13

Update Number

 1937

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Microsoft Visual Studio XML Information Disclosure


This signature detects attempts to exploit a known vulnerability against Microsoft Visual Studio. A successful attack can lead to information disclosure. Attackers can exploit this issue to obtain sensitive information that may lead to further attacks.

Extended Description

Microsoft XML editor is prone to a remote information-disclosure vulnerability. Attackers can exploit this issue to gain access to sensitive information that may aid in further attacks. Attackers can exploit this issue by enticing an unsuspecting user to visit a specially crafted webpage.

Affected Products

  • Avaya aura_conferencing 6.0 Standard
  • Avaya callpilot 4.0
  • Avaya callpilot 5.0
  • Avaya communication_server_1000_telephony_manager 3.0
  • Avaya communication_server_1000_telephony_manager 4.0
  • Avaya meeting_exchange 5.0
  • Avaya meeting_exchange 5.0.0.0.52
  • Avaya meeting_exchange 5.0 SP1
  • Avaya meeting_exchange 5.0 SP2
  • Avaya meeting_exchange 5.1
  • Avaya meeting_exchange 5.1 SP1
  • Avaya meeting_exchange 5.2
  • Avaya meeting_exchange 5.2 SP1
  • Avaya meeting_exchange 5.2 SP2
  • Avaya meeting_exchange-client_registration_server
  • Avaya meeting_exchange-recording_server
  • Avaya meeting_exchange-streaming_server
  • Avaya meeting_exchange-web_conferencing_server
  • Avaya meeting_exchange-webportal
  • Avaya messaging_application_server 4
  • Avaya messaging_application_server 5
  • Avaya messaging_application_server 5.2
  • Microsoft infopath_2007 SP2
  • Microsoft infopath_2010
  • Microsoft office_2007 SP2
  • Microsoft office_2010_(32-bit_edition)
  • Microsoft office_2010_(64-bit_edition)
  • Microsoft sql_server_2005 SP3
  • Microsoft sql_server_2005 SP4
  • Microsoft sql_server_2005_express_edition SP3
  • Microsoft sql_server_2005_express_edition SP4
  • Microsoft sql_server_2005_express_edition_with_advanced_serv SP3
  • Microsoft sql_server_2005_express_edition_with_advanced_serv SP4
  • Microsoft sql_server_2005_itanium_edition SP3
  • Microsoft sql_server_2005_itanium_edition SP4
  • Microsoft sql_server_2005_x64_edition SP3
  • Microsoft sql_server_2005_x64_edition SP4
  • Microsoft sql_server_2008_32bit SP1
  • Microsoft sql_server_2008_32-bit R2
  • Microsoft sql_server_2008_32-bit SP2
  • Microsoft sql_server_2008_itanium R2
  • Microsoft sql_server_2008_itanium SP1
  • Microsoft sql_server_2008_itanium SP2
  • Microsoft sql_server_2008_x64 R2
  • Microsoft sql_server_2008_x64 SP2
  • Microsoft sql_server_management_studio_express_(ssmse)_2005
  • Microsoft sql_server_management_studio_express_(ssmse)_2005_x64
  • Microsoft visual_studio_2005 SP1
  • Microsoft visual_studio_2008 SP1
  • Microsoft visual_studio_2010

References

  • BugTraq: 48196
  • CVE: CVE-2011-1280

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out