You are currently offline, waiting for your internet to reconnect

Your browser is out-of-date

You need to update your browser to use the site.

Update to the latest version of Internet Explorer

MS10-089: Vulnerabilities in Forefront Unified Access Gateway and Microsoft Intelligent Application Gateway could cause elevation of privilege

INTRODUCTION
Microsoft has released security bulletin MS10-089. To view the complete security bulletin, visit the following Microsoft website: 

How to obtain help and support for this security update

For enterprise customers, support for security updates is available through your usual support contacts.
MORE INFORMATION

Known issues with this security update

The following known issues apply to all the related updates that are listed in the "Additional information about this security update" section.
  • This security update is listed in the Programs and Features item in Control Panel as "Hotfix for Microsoft Forefront UAG 2010." There is no mention that this is a security update. Security updates are otherwise typically listed as "Security Update for xxxxx."
  • When you uninstall this security update, you are prompted to insert the Unified Access Gateway (UAG) CD. The installation program then exits, and you receive a 2920 error. To remove this security update, log on as an administrator, and then uninstall the update by using the Programs and Features item in Control Panel. Click View installed updates to access the update.
    Note We do not recommend that you uninstall any security update.
  • You cannot use the /quiet and /forcerestart switches in combination when you install this update.
  • After you install this security update, the Remote Desktop Gateway service may not restart automatically. When you try to use the Remote Desktop client to create a remote desktop session, you may receive an error message that resembles the following:
    Your computer can't connect to the remote computer because the Remote Desktop Gateway server is temporarily unavailable. Try reconnecting later or contact your network administrator for assistance.

    If you have any Remote Desktop Services applications that are published by using any UAG trunk, you must manually restart the service by using the Services console.
  • If you install this security update on the original RTM version of Forefront Unified Access Gateway, and then you apply Forefront Unified Access Gateway Update 1 or Forefront Unified Access Gateway Update 2, you must install this security update again.

Additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed below each article link.
  • 2433584 MS10-089: Description of the security update for Forefront Unified Access Gateway 2010 Update 1: November 9, 2010
  • 2433585 MS10-089: Description of the security update for Forefront Unified Access Gateway 2010: November 9, 2010
  • 2418933 MS10-089: Description of the security update for Forefront Unified Access Gateway 2010 Update 2: November 9, 2010
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE
Properties

Article ID: 2316074 - Last Review: 11/09/2010 18:32:00 - Revision: 1.1

  • Microsoft Forefront Unified Access Gateway 2010
  • kbbug kbfix kbsecvulnerability kbsecurity kbsecbulletin atdownload kbexpertiseinter kbsurveynew KB2316074
Feedback
ontent='true';document.getElementsByTagName('head')[0].appendChild(m);" onload="var m=document.createElement('meta');m.name='ms.dqp0';m.content='false';document.getElementsByTagName('head')[0].appendChild(m);" src="http://c1.microsoft.com/c.gif?"> >