106 matches found
Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities (2412048)
This host is missing an important security update according to Microsoft Bulletin MS10-072. OpenVAS Vulnerability Test $Id: secpodms10-072.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities 2412048 Authors: Rachana Shetty Copyright: Copyright...
Out-of-bounds
Microsoft Excel 2007 SP2; Excel in Office 2007 SP2; Excel Viewer SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; and Excel Services on Office SharePoint Server 2007 SP2 do not properly validate the sign of an unspecified array index, which allows remote...
CVE-2011-1892
CVE-2011-1892 targets SharePoint-related products (SharePoint Server/Workspace/ Groove components, Office Web Apps, Windows SharePoint Services, etc.). The flaw is an XXE-style vulnerability where Web Parts containing XML classes referencing external entities allow remote authenticated users to r...
Microsoft Office Excel Remote Code Execution Vulnerabilities (2587505)
This host is missing an important security update according to Microsoft Bulletin MS11-072. OpenVAS Vulnerability Test $Id: secpodms11-072.nasl 6523 2017-07-04 15:46:12Z cfischer $ Microsoft Office Excel Remote Code Execution Vulnerabilities 2587505 Authors: Madhuri D Copyright: Copyright c 2011...
Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)
This host is missing an important security update according to Microsoft Bulletin MS11-074. OpenVAS Vulnerability Test $Id: secpodms11-074.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities 2451858 Authors: Rachana Shetty Copyright: Copyright c...
Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)
This host is missing an important security update according to Microsoft Bulletin MS11-074. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
PT-2011-2990 · Microsoft · Sharepoint Foundation +5
Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 7 through 8 Office SharePoint Server versions 2007 SP2 through 2010 SP1 Groove Server versions 2010 Gold through 2010 SP1 Windows SharePoint Services version 3.0 SP2 SharePoint Foundation versions 2010 Gol...
Microsoft SharePoint Could Allow Remote Code Execution Vulnerability (2455005)
This host is missing a critical security update according to Microsoft Bulletin MS10-104 OpenVAS Vulnerability Test $Id: secpodms10-104.nasl 5361 2017-02-20 11:57:13Z cfi $ Microsoft SharePoint Could Allow Remote Code Execution Vulnerability 2455005 Authors: Madhuri D Copyright: Copyright c 2010...
Microsoft SharePoint Could Allow Remote Code Execution Vulnerability (2455005)
This host is missing a critical security update according to Microsoft Bulletin MS10-104 SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Unrestricted file upload
Unrestricted file upload vulnerability in the Document Conversions Launcher Service in Microsoft Office SharePoint Server 2007 SP2, when the Document Conversions Load Balancer Service is enabled, allows remote attackers to execute arbitrary code via a crafted SOAP request to TCP port 8082, aka...
CVE-2010-3964
Unrestricted file upload vulnerability in the Document Conversions Launcher Service in Microsoft Office SharePoint Server 2007 SP2, when the Document Conversions Load Balancer Service is enabled, allows remote attackers to execute arbitrary code via a crafted SOAP request to TCP port 8082, aka...
CVE-2010-3964
CVE-2010-3964 is an unrestricted file upload vulnerability in the Document Conversions Launcher Service of Microsoft Office SharePoint Server 2007 SP2, exploitable when the Document Conversions Load Balancer Service is enabled. A crafted SOAP request to TCP 8082 can lead to remote code execution ...
MS10-104: Vulnerability in Microsoft SharePoint Could Allow Remote Code Execution (2455005)
The version of SharePoint Server 2007 running on the remote host has a remote code execution vulnerability. The Document Conversions Launcher Service does not properly validate SOAP requests before processing them. A remote attacker could exploit this by submitting a specially crafted SOAP reques...
PT-2010-2962 · Microsoft · Sharepoint Services +4
Name of the Vulnerable Software and Affected Versions: Microsoft Office InfoPath versions 2003 SP3 through 2007 SP2 Office SharePoint Server versions 2007 SP1 through 2007 SP2 SharePoint Services versions 3.0 SP1 through 3.0 SP2 Internet Explorer version 8 Description: The issue is related to a...
Microsoft SharePoint Help Page Denial of Service (MS10-039; CVE-2010-1264)
Windows SharePoint Services provide a platform for collaboration applications and document management. Office SharePoint Server is an integrated suite of server capabilities built on top of Windows SharePoint Services. A denial of service vulnerability has been discovered in Microsoft SharePoint...
Microsoft SharePoint Server 2007 XSS Vulnerability
Exploit for windows platform in category web applications ================================================== Microsoft SharePoint Server 2007 XSS Vulnerability ================================================== Product: Microsoft SharePoint Server 2007 Vendor: Microsoft Corporation Vulnerable...
Remote code execution
Microsoft Office Excel 2007 SP1 and SP2; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; and Office SharePoint Server 2007 SP1 and SP2 do not validate ZIP headers...
CVE-2010-0263
Microsoft Office Excel 2007 SP1 and SP2; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; and Office SharePoint Server 2007 SP1 and SP2 do not validate ZIP headers...
Microsoft SharePoint Cross Site Scripting Vulnerability
This host is running Microsoft SharePoint Server and is prone to Cross Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbmssharepointxssvuln.nasl 5323 2017-02-17 08:49:23Z teissa $ Microsoft SharePoint Cross Site Scripting Vulnerability Authors: Antu Sanadi Copyright: Copyright c 20...
Microsoft SharePoint <= 12.0.0.6421 XSS Vulnerability
Microsoft SharePoint Server is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only nb: While onl...