Skip to main content

Microsoft SharePoint Multiple Elevation of Privilege Vulnerabilities

Last Update Date: 14 Sep 2011 11:58 Release Date: 14 Sep 2011 5505 Views

RISK: Medium Risk

TYPE: Servers - Other Servers

TYPE: Other Servers
  1. XSS in SharePoint Calendar Vulnerability
    A cross-site scripting vulnerability exists in Microsoft SharePoint 2010 that could result in information disclosure or elevation of privilege if a user clicks a specially crafted URL containing malicious JavaScript elements. Due to the vulnerability, when the malicious JavaScript is echoed back to the user's browser, the resulting page could allow an attacker to issue SharePoint commands in the context of the authenticated user on the targeted SharePoint site.
  2. HTML Sanitization Vulnerability
    An information disclosure vulnerability exists in the way that the SafeHTML function sanitizes HTML. An attacker who successfully exploited this vulnerability could perform cross-site scripting attacks and run script in the security context of the logged-on user.
  3. Editform Script Injection Vulnerability
    A cross-site scripting, information disclosure, and elevation of privilege vulnerability exists in Microsoft SharePoint 2010 and Microsoft Foundation 2010 if a user visits a specially crafted Web site. Due to the vulnerability, malicious JavaScript can be injected into a post made to a targeted SharePoint site. The injected script could allow an attacker to issue SharePoint commands in the context of the authenticated user on the targeted SharePoint site.
  4. Contact Details Reflected XSS Vulnerability
    A cross-site scripting vulnerability in Microsoft SharePoint could allow an attacker to gain control over valid user accounts, perform operations on the user's behalf, redirect the user to malicious sites, or steal user credentials.
  5. SharePoint Remote File Disclosure Vulnerability
    A file disclosure vulnerability exists in Microsoft Office SharePoint that could allow a malicious authenticated user to use a specially crafted XML file to gain read-only access to a local file on the SharePoint server under the security context of the account running SharePoint.
  6. SharePoint XSS Vulnerability
    A file disclosure vulnerability exists in Microsoft Office SharePoint that could allow a malicious authenticated user to use a specially crafted XML file to gain read-only access to a local file on the SharePoint server under the security context of the account running SharePoint.

Impact

  • Elevation of Privilege
  • Information Disclosure

System / Technologies affected

  • Microsoft Office Groove 2007
  • Microsoft SharePoint Workspace 2010 
  • Microsoft Office Forms Server 2007
  • Microsoft Office SharePoint Server 2007
  • Microsoft Office SharePoint Server 2010
  • Microsoft Office Groove Data Bridge Server 2007
  • Microsoft Office Groove Management Server 2007
  • Microsoft Groove Server 2010 
  • Microsoft Windows SharePoint Services 2.0
  • Microsoft Windows SharePoint Services 3.0
  • Microsoft SharePoint Foundation 2010
  • Microsoft Office Web Apps 2010 

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.


Vulnerability Identifier


Source


Related Link