KLA10561
Code injection vulnerability in Microsoft Sharepoint
Обновлено: 17/06/2019
Дата обнаружения
14/04/2015
Уровень угрозы
Warning
Описание

An XSS vulnerabilities were found in Microsoft Sharepoint. By exploiting these vulnerabilities malicious users can inject arbitrary scripts. These vulnerabilities can be exploited remotely via a specially designed request.

Пораженные продукты

Microsoft SharePoint Server 2013 Service Pack 1
Microsoft SharePoint Server 2010 Service Pack 2

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
MS15-036
CVE-2015-1653
CVE-2015-1640
Оказываемое влияние
?
CI 
[?]
Связанные продукты
Microsoft Sharepoint Server
CVE-IDS
CVE-2015-16534.3Warning
CVE-2015-16404.3Warning
Microsoft official advisories
Microsoft Security Update Guide
KB list

2965219
2965302
2965278