Windows : Microsoft Bulletins : Vulnerability in Microsoft Office SharePoint Server Could Cause Elevation of Privilege (957175)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.900064

Categoría: Windows : Microsoft Bulletins

Título: Vulnerability in Microsoft Office SharePoint Server Could Cause Elevation of Privilege (957175)

Resumen: This host is missing a critical security update according to; Microsoft Bulletin MS08-077.

Descripción: Summary:
This host is missing a critical security update according to
Microsoft Bulletin MS08-077.

Vulnerability Insight:
The flaw is due to SharePoint Server does not properly restrict
access to administrative portions of the application.

Vulnerability Impact:
Successful attack result in bypassing certain security restrictions by using
web browser to directly access the vulnerable administrative functionality.

Affected Software/OS:
- Microsoft Search Server 2008

- Microsoft Office SharePoint Server

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2008-4032
Cert/CC Advisory: TA08-344A
http://www.us-cert.gov/cas/techalerts/TA08-344A.html
Microsoft Security Bulletin: MS08-077
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-077
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5774
http://www.securitytracker.com/id?1021367
http://secunia.com/advisories/33063
http://www.vupen.com/english/advisories/2008/3389

Copyright Copyright (C) 2008 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.900064
Categoría:	Windows : Microsoft Bulletins
Título:	Vulnerability in Microsoft Office SharePoint Server Could Cause Elevation of Privilege (957175)
Resumen:	This host is missing a critical security update according to; Microsoft Bulletin MS08-077.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS08-077. Vulnerability Insight: The flaw is due to SharePoint Server does not properly restrict access to administrative portions of the application. Vulnerability Impact: Successful attack result in bypassing certain security restrictions by using web browser to directly access the vulnerable administrative functionality. Affected Software/OS: - Microsoft Search Server 2008 - Microsoft Office SharePoint Server Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-4032 Cert/CC Advisory: TA08-344A http://www.us-cert.gov/cas/techalerts/TA08-344A.html Microsoft Security Bulletin: MS08-077 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-077 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5774 http://www.securitytracker.com/id?1021367 http://secunia.com/advisories/33063 http://www.vupen.com/english/advisories/2008/3389
Copyright	Copyright (C) 2008 Greenbone AG