24 matches found
Security Updates for Microsoft SharePoint Server 2010 (March 2021)
The Microsoft SharePoint Server 2010 installation on the remote host is missing security updates. It is, therefore, affected by A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. C Tenable Network Security, Inc...
Description of the security update for SharePoint Server 2010: October 8, 2019
Description of the security update for SharePoint Server 2010: October 8, 2019 Summary This security update resolves a remote code execution vulnerability that exists in Microsoft Excel software when the software fails to correctly handle objects in memory. To learn more about the vulnerability,...
Description of the security update for Word Automation Services on Microsoft SharePoint Server 2010: April 10, 2018
Description of the security update for Word Automation Services on Microsoft SharePoint Server 2010: April 10, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about...
MS13-084: Description of the security update for Excel Services in Microsoft SharePoint Server 2010: October 8, 2013
This security update addresses the vulnerabilities by correcting how affected Microsoft software validates data when parsing specially crafted Office files and by changing configuration of SharePoint pages to help provide additional protection against clickjacking attacks.INTRODUCTIONMicrosoft ha...
CVE-2013-3179
Cross-site scripting XSS vulnerability in Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 allows remote attackers to inject arbitrary web script or HTML via a crafted request, aka "SharePoint XSS Vulnerability."...
CVE-2013-1289
The CVE-2013-1289 entry covers a cross-site scripting (XSS) vulnerability in multiple Microsoft HTML Sanitization components used by SharePoint Server 2010 SP1, Groove Server 2010 SP1, SharePoint Foundation 2010 SP1, and Office Web Apps 2010 SP1. The issue arises from the HTML sanitization logic,...
Cross site scripting
Cross-site scripting XSS vulnerability in Microsoft SharePoint Server 2010 SP1 allows remote attackers to inject arbitrary web script or HTML via crafted content, leading to administrative command execution, aka "SharePoint XSS Vulnerability."...
CVE-2013-0083
CVE-2013-0083 affects Microsoft SharePoint Server 2010 SP1 (and SharePoint Foundation 2010) via a cross-site scripting (XSS) vulnerability in crafted site content that allows an attacker to inject arbitrary script/HTML. This could lead to execution of administrative commands in the context of the...
CVE-2012-1859
Cross-site scripting XSS vulnerability in scriptresx.ashx in Microsoft SharePoint Server 2010 Gold and SP1, SharePoint Foundation 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript elements in a URL, aka...
Cross site scripting
Cross-site scripting XSS vulnerability in scriptresx.ashx in Microsoft SharePoint Server 2010 Gold and SP1, SharePoint Foundation 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript elements in a URL, aka...
Security Update for Microsoft SharePoint Server 2010 (KB4022135) farm-deployment
A security vulnerability exists in Microsoft SharePoint Server 2010 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Microsoft SharePoint Server 2010 (KB4484191) farm-deployment
A security vulnerability exists in Microsoft SharePoint Server 2010 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Microsoft SharePoint Server 2010 (KB4475530) farm-deployment
A security vulnerability exists in Microsoft SharePoint Server 2010 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Microsoft SharePoint Server 2010 (KB4092481) farm-deployment
A security vulnerability exists in Microsoft SharePoint Server 2010 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Microsoft SharePoint Server 2010 (KB4484490) farm-deployment
A security vulnerability exists in Microsoft SharePoint Server 2010 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Microsoft SharePoint Server 2010 (KB4011705) farm-deployment
A security vulnerability exists in Microsoft SharePoint Server 2010 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Microsoft SharePoint Server 2010 (KB2956136) farm-deployment
A security vulnerability exists in Microsoft SharePoint Server 2010 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Microsoft SharePoint Server 2010 (KB4486736)
A security vulnerability exists in Microsoft SharePoint Server 2010 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Microsoft SharePoint Server 2010 (KB3178684)
A security vulnerability exists in Microsoft SharePoint Server 2010 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Security Update for Microsoft SharePoint Server 2010 (KB4092481)
A security vulnerability exists in Microsoft SharePoint Server 2010 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...