241 matches found
CVE-2018-0864
SharePoint Project Server 2013 and SharePoint Enterprise Server 2016 allow an information disclosure vulnerability due to how web requests are handled, aka "Microsoft SharePoint Information Disclosure Vulnerability"...
Information disclosure
SharePoint Project Server 2013 and SharePoint Enterprise Server 2016 allow an information disclosure vulnerability due to how web requests are handled, aka "Microsoft SharePoint Information Disclosure Vulnerability"...
CVE-2018-0864
CVE-2018-0864 affects SharePoint Project Server 2013 and SharePoint Enterprise Server 2016. The root cause is improper sanitization of crafted web requests, leading to information disclosure and potential privilege abuse. The issue is addressed by Microsoft security updates KB4011680 (SharePoint ...
Security Update for Microsoft Project Server 2013 (KB4011701)
A security vulnerability exists in Microsoft Project Server 2013 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Microsoft Project Server 2013 (KB4011701) farm-deployment
A security vulnerability exists in Microsoft Project Server 2013 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Description of the security update for Project Server 2013: February 13, 2018
Description of the security update for Project Server 2013: February 13, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft...
Security Updates for Microsoft SharePoint Server and Microsoft Project Server (February 2018)
The Microsoft SharePoint Server or Microsoft Project Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a speciall...
Microsoft Project Server and SharePoint Enterprise Server Elevation of Privilege Vulnerability
Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 are both products of Microsoft Corporation USA.Microsoft Project Server is a suite of Project Portfolio Management PPM and day-to-day Microsoft Project Server is a project management solution for PPM and day-to-day work...
CVE-2017-11876
Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read content that they are not authorized to read, use the victim's identity to take actions on the web application on behalf of the victim, such as change permissions and delet...
CVE-2017-11876
Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read content that they are not authorized to read, use the victim's identity to take actions on the web application on behalf of the victim, such as change permissions and delet...
CVE-2017-11876
Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read content that they are not authorized to read, use the victim's identity to take actions on the web application on behalf of the victim, such as change permissions and delet...
CVE-2017-11876
CVE-2017-11876 affects Microsoft Project Server and SharePoint Enterprise Server 2016. The vulnerability arises from improper session handling that enables cross-site request forgery, allowing an attacker to read restricted content and impersonate the victim to perform actions (e.g., change permi...
CVE-2017-11876
Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read content that they are not authorized to read, use the victim's identity to take actions on the web application on behalf of the victim, such as change permissions and delet...
Microsoft SharePoint Enterprise Server 2016 Multiple Vulnerabilities (KB4011244)
This host is missing an important security update according to Microsoft KB4011244 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Microsoft Project Server 2013 Elevation of Privilege Vulnerability (KB4011257)
This host is missing an important security update according to Microsoft KB4011257 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Security Updates for Microsoft SharePoint Server and Microsoft Project Server (November 2017)
The Microsoft SharePoint Server or Microsoft Project Server installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability : - An elevation of privilege vulnerability exists in Microsoft Project when Microsoft Project Server does not proper...
Security Update for Microsoft Project Server 2013 (KB4011257)
A security vulnerability exists in Microsoft Project Server 2013 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Microsoft Project Server 2013 (KB4011257) farm-deployment
A security vulnerability exists in Microsoft Project Server 2013 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Description of the security update for Project Server 2013: November 14, 2017
Description of the security update for Project Server 2013: November 14, 2017 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft...
Microsoft Project Server Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in Microsoft Project when Microsoft Project Server does not properly manage user sessions. For this Cross-site Request ForgeryCSRF/XSRF vulnerability to be exploited, the victim must be authenticated to logged on the target site. In a web-based attac...