Description of Windows SharePoint Services 3.0 SP3 and of Windows SharePoint Services 3.0 Language Pack SP3

Description of Windows SharePoint Services 3.0 SP3 and of Windows SharePoint Services 3.0 Language Pack SP3 Introduction Microsoft Windows SharePoint Services 3.0 Service Pack 3 SP3 and Microsoft Windows SharePoint Services 3.0 Language Pack SP3 provide the latest updates to Windows SharePoint...

MS14-022: Description of the security update for Windows SharePoint Services 3.0: May 13, 2014

MS14-022: Description of the security update for Windows SharePoint Services 3.0: May 13, 2014 Introduction This security update resolves vulnerabilities in Microsoft Office server and productivity software that could allow remote code execution if an authenticated attacker sends specially crafte...

CVE-2015-0085

Use-after-free vulnerability in Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Office 2013 Gold and SP1, Word 2013 Gold and SP1, Office 2013 RT Gold and SP1, Word 2013 RT Gold and SP1, Excel Viewe...

Design/Logic Flaw

Use-after-free vulnerability in Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Office 2013 Gold and SP1, Word 2013 Gold and SP1, Office 2013 RT Gold and SP1, Word 2013 RT Gold and SP1, Excel Viewe...

Microsoft SharePoint Services 3.0 Multiple Vulnerabilities (3038999)

This host is missing an important security update according to Microsoft Bulletin MS15-022. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

KLA10604 Multiple vulnerabilities in Microsoft SharePoint

Multiple serious vulnerabilities have been found in Microsoft SharePoint. Malicious users can exploit these vulnerabilities to gain privileges or execute arbitrary code. Below is a complete list of vulnerabilities 1. XSS vulnerability can be exploited remotely via a specially designed requests; 2...

MS14-050: Description of the security update for SharePoint Services: August 12, 2014

Resolves a vulnerability in Microsoft SharePoint Services. An authenticated attacker who successfully exploited this vulnerability could use a specially crafted app to run arbitrary code in the security context of the logged-on user.INTRODUCTIONMicrosoft has released security bulletin MS14-050. T...

Microsoft SharePoint Services 3.0 Multiple Vulnerabilities (2952166)

This host is missing a critical security update according to Microsoft Bulletin MS14-022. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Microsoft SharePoint CVE-2013-1330 Remote Code Execution Vulnerability

Description Microsoft SharePoint is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the guest account on the SharePoint server. Failed exploit attempts will result in a denial-of-service condition. Technologies...

Cross site scripting

Cross-site scripting XSS vulnerability in Microsoft InfoPath 2007 SP2 and SP3 and 2010 SP1, Communicator 2007 R2, Lync 2010 and 2010 Attendee, SharePoint Server 2007 SP2 and SP3 and 2010 SP1, Groove Server 2010 SP1, Windows SharePoint Services 3.0 SP2, SharePoint Foundation 2010 SP1, and Office W...

CVE-2012-2520

CVE-2012-2520 is a cross-site scripting vulnerability in Microsoft’s HTML sanitization component affecting multiple products (InfoPath 2007/2010, Communicator/Lync 2010, SharePoint Server/Foundation, Groove Server, Office Web Apps). The issue arises from improper input filtering in the HTML sanit...

Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities (2412048)

This host is missing an important security update according to Microsoft Bulletin MS10-072. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities (2412048)

This host is missing an important security update according to Microsoft Bulletin MS10-072. OpenVAS Vulnerability Test $Id: secpodms10-072.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities 2412048 Authors: Rachana Shetty Copyright: Copyright...

Cross site scripting

Cross-site scripting XSS vulnerability in Microsoft Office SharePoint Server 2010, Windows SharePoint Services 2.0 and 3.0 SP2, and SharePoint Foundation 2010 allows remote attackers to inject arbitrary web script or HTML via the URI, aka "SharePoint XSS Vulnerability."...

CVE-2011-1893

CVE-2011-1893 corresponds to a cross-site scripting (XSS) vulnerability affecting Microsoft SharePoint components: Office SharePoint Server 2010, Windows SharePoint Services 2.0/3.0 SP2, and SharePoint Foundation 2010. The root cause is improper handling of URI parameters, enabling remote attacke...

CVE-2011-1891

CVE-2011-1891 is a Cross-site scripting (XSS) vulnerability in Microsoft SharePoint components: Windows SharePoint Services 3.0 SP2, and SharePoint Foundation 2010 Gold/SP1. The issue arises from unfiltered input in a request to a script, allowing remote attackers to inject arbitrary web script o...

Microsoft SharePoint Server 2007 '_layouts/help.aspx' Cross Site Scripting Vulnerability

Microsoft SharePoint Server 2007 and SharePoint Services 3.0 are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)

This host is missing an important security update according to Microsoft Bulletin MS11-074. OpenVAS Vulnerability Test $Id: secpodms11-074.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities 2451858 Authors: Rachana Shetty Copyright: Copyright c...

Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)

This host is missing an important security update according to Microsoft Bulletin MS11-074. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2011-1252

Cross-site scripting XSS vulnerability in the SafeHTML function in the toStaticHTML API in Microsoft Internet Explorer 7 and 8, Office SharePoint Server 2007 SP2, Office SharePoint Server 2010 Gold and SP1, Groove Server 2010 Gold and SP1, Windows SharePoint Services 3.0 SP2, and SharePoint...