SB2010060801 - Multiple vulnerabilities in Microsoft SharePoint
Published: June 8, 2010 Updated: December 30, 2016
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 secuirty vulnerabilities.
1) Denial of service (CVE-ID: CVE-2010-1264)
The vulnerability allows a remote attacker to cause denial of service condition.
The vulnerability exists due to an error in Microsoft SharePoint when processing specially crafted requests to the help page. A remote attacker can send a specially crafted HTTP request and cause the application to stop responding.
Successful exploitation of the vulnerability will allow and attacker to cause the web server to become non-responsive until the associated application pool is restarted.
2) Cross-site scripting (CVE-ID: CVE-2010-1257)
The vulnerability allows a remote attacker to perform XSS attacks.
The vulnerability exists due to insufficient sanitization of user-supplied input data within SharePoint toStaticHTML API. A remote attacker can trick the victim into following a specially crafted link and execute arbitrary HTML and script code in victim’s browser in context of vulnerable SharePoint website.
Successful exploitation may allow an attacker to conduct phishing and drive-by-download attacks and obtain potentially sensitive information.
3) Cross-site scripting (CVE-ID: CVE-2010-0817)
The vulnerability allows a remote attacker to perform XSS attacks.
The vulnerability exists due to insufficient sanitization of user-supplied input data passed to Help.aspx script. A remote attacker can trick the victim into following a specially crafted link and execute arbitrary HTML and script code in victim’s browser in context of vulnerable SharePoint website.
Successful exploitation may allow an attacker to conduct phishing and drive-by-download attacks.
Note: this vulnerability is being publicly exploited.
Remediation
Install update from vendor's website.