35 matches found
Microsoft Office CVE-2017-0281 Remote Code Execution Vulnerability
Description Microsoft Office is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...
Security Update for Microsoft Office SharePoint Server 2007 (KB2687497) 32-Bit Edition
A security vulnerability exists in Microsoft Office SharePoint Server 2007 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Microsoft Office SharePoint Server 2007 - Remote Code Execution (MS10-104) (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Microsoft Office SharePoint Server 20...
CVE-2012-1862
CVE-2012-1862 is an open-redirect vulnerability affecting Microsoft Office SharePoint Server 2007 SP2 and SP3. The issue arises from improper handling/sanitization of user-supplied input in SharePoint’s URL processing, allowing an attacker to redirect victims to arbitrary external sites and poten...
CVE-2012-0144
Cross-site scripting XSS vulnerability in themeweb.aspx in Microsoft Office SharePoint Server 2010 Gold and SP1 and SharePoint Foundation 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via JavaScript sequences in a URL, aka "XSS in themeweb.aspx Vulnerability."...
Cross site scripting
Cross-site scripting XSS vulnerability in wizardlist.aspx in Microsoft Office SharePoint Server 2010 Gold and SP1 and SharePoint Foundation 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via JavaScript sequences in a URL, aka "XSS in wizardlist.aspx Vulnerability...
Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities (2412048)
This host is missing an important security update according to Microsoft Bulletin MS10-072. OpenVAS Vulnerability Test $Id: secpodms10-072.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities 2412048 Authors: Rachana Shetty Copyright: Copyright...
Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities (2412048)
This host is missing an important security update according to Microsoft Bulletin MS10-072. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Cross site scripting
Cross-site scripting XSS vulnerability in Microsoft Office SharePoint Server 2010, Windows SharePoint Services 2.0 and 3.0 SP2, and SharePoint Foundation 2010 allows remote attackers to inject arbitrary web script or HTML via the URI, aka "SharePoint XSS Vulnerability."...
CVE-2011-1890
CVE-2011-1890 describes a Cross-Site Scripting (XSS) vulnerability in EditForm.aspx of Microsoft SharePoint Server 2010 and SharePoint Foundation 2010. The vulnerability allows a remote attacker to inject arbitrary web script or HTML via a POST, enabling XSS in affected SharePoint pages. Connecte...
Microsoft Office Excel Remote Code Execution Vulnerabilities (2587505)
This host is missing an important security update according to Microsoft Bulletin MS11-072. OpenVAS Vulnerability Test $Id: secpodms11-072.nasl 6523 2017-07-04 15:46:12Z cfischer $ Microsoft Office Excel Remote Code Execution Vulnerabilities 2587505 Authors: Madhuri D Copyright: Copyright c 2011...
Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)
This host is missing an important security update according to Microsoft Bulletin MS11-074. OpenVAS Vulnerability Test $Id: secpodms11-074.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities 2451858 Authors: Rachana Shetty Copyright: Copyright c...
Microsoft Excel Array Index CVE-2011-1990 Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers could exploit this issue by enticing victims to open a maliciously crafted Excel file. Successful exploits will allow attackers to execute arbitrary code with the privileges of the user running the applicatio...
Microsoft SharePoint Could Allow Remote Code Execution Vulnerability (2455005)
This host is missing a critical security update according to Microsoft Bulletin MS10-104 OpenVAS Vulnerability Test $Id: secpodms10-104.nasl 5361 2017-02-20 11:57:13Z cfi $ Microsoft SharePoint Could Allow Remote Code Execution Vulnerability 2455005 Authors: Madhuri D Copyright: Copyright c 2010...
Microsoft SharePoint Could Allow Remote Code Execution Vulnerability (2455005)
This host is missing a critical security update according to Microsoft Bulletin MS10-104 SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Unrestricted file upload
Unrestricted file upload vulnerability in the Document Conversions Launcher Service in Microsoft Office SharePoint Server 2007 SP2, when the Document Conversions Load Balancer Service is enabled, allows remote attackers to execute arbitrary code via a crafted SOAP request to TCP port 8082, aka...
CVE-2010-3964
CVE-2010-3964 is an unrestricted file upload vulnerability in the Document Conversions Launcher Service of Microsoft Office SharePoint Server 2007 SP2, exploitable when the Document Conversions Load Balancer Service is enabled. A crafted SOAP request to TCP 8082 can lead to remote code execution ...
Microsoft SharePoint Cross Site Scripting Vulnerability
This host is running Microsoft SharePoint Server and is prone to Cross Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbmssharepointxssvuln.nasl 5323 2017-02-17 08:49:23Z teissa $ Microsoft SharePoint Cross Site Scripting Vulnerability Authors: Antu Sanadi Copyright: Copyright c 20...
Microsoft SharePoint <= 12.0.0.6421 XSS Vulnerability
Microsoft SharePoint Server is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only nb: While onl...
Microsoft SharePoint Team Services Information Disclosure Vulnerability
This host is installed with Microsoft SharePoint Server and is prone to Information Disclosure Vulnerability. OpenVAS Vulnerability Test $Id: gbmssharepointinfodiscvuln.nasl 5363 2017-02-20 13:07:22Z cfi $ Microsoft SharePoint Team Services Information Disclosure Vulnerability Authors: Nikita MR...