I'm looking for some assistance in the area of security for our ADFS proxy server (2008 R2). Our security team has scanned the server and found the ASP.NET banner advertises 2.0.50727. This version is vulnerable per - Microsoft ASP.NET validateRequest filters
could allow a remote attacker to bypass it's filters and conduct cross-site scripting attacks using a lessthan
slash (</) and less-than tilde slash (<~/) sequence. These vulnerabilities are described in CVE-2008-3842 and CVE-2008-3843.
There is no hotfix for 2008 R2. I have managed to get a pass for our Exchange servers since the validateRequest filter is set to false in the web.config file. I can't find this in the web.config file on our ADFS proxy.
Is the ADFS proxy vulnerable to XSS? If not, how do I know that?
Chris Bank