6 matches found
CVE-2013-1330
CVE-2013-1330 is described as a vulnerability in Microsoft SharePoint Portal Server 2003 SP3, SharePoint Server 2007 SP3, SharePoint Server 2010 SP1/SP2, and Office Web Apps 2010 where the EnableViewStateMac attribute is not enabled by default. This permits remote code execution via an unassigned...
CVE-2013-1315
CVE-2013-1315 is a remote code execution/memory corruption vulnerability affecting Microsoft Office components. The public records identify affected products as Microsoft SharePoint Server 2007 SP3, 2010 SP1/SP2, 2013; Office Web Apps 2010; Excel 2003 SP3/2007 SP3/2010 SP1/SP2/2013/2013 RT; Offic...
CVE-2013-0081
CVE-2013-0081 affects Microsoft SharePoint components (SharePoint Portal Server 2003 SP3; SharePoint Server 2007 SP3; 2010 SP1/SP2; 2013) and causes a denial of service by abusing unassigned workflows via a crafted URL, triggering W3WP process hang. The issue is listed among MS13-067 vulnerabilit...
CVE-2013-3847
Microsoft Word Memory Corruption Vulnerability (CVE-2013-3847) affects Word Automation Services in SharePoint Server 2010 SP1, Word Web App 2010 SP1 in Office Web Apps 2010, Word 2003 SP3, Word 2007 SP3, Word 2010 SP1, Office Compatibility Pack SP3, and Word Viewer. A crafted Office document coul...
CVE-2004-0379
CVE-2004-0379 corresponds to multiple cross-site scripting (XSS) vulnerabilities in Microsoft SharePoint Portal Server 2001. The affected component is three scripts within SharePoint Portal Server 2001, where XSS could allow remote attackers to process arbitrary web content and steal cookies via ...
CVE-2005-0049
The CVE-2005-0049 issue affects Windows SharePoint Services for Windows Server 2003 and SharePoint Team Services, arising from insufficient validation of input to an HTTP redirection query. The underlying cause is improper handling of redirection query data, enabling remote attackers to inject ar...