KLA10604
Multiple vulnerabilities in Microsoft SharePoint

Multiple serious vulnerabilities have been found in Microsoft SharePoint. Malicious users can exploit these vulnerabilities to gain privileges or execute arbitrary code.

Below is a complete list of vulnerabilities

1. XSS vulnerability can be exploited remotely via a specially designed requests;
2. An unknown vulnerabilities can be exploited remotely via a specially designed page content or app.

Microsoft Windows SharePoint Services x86, x64 3.0 Service Pack 3
Microsoft SharePoint Foundation 2010 Service Pack 1, 2
Microsoft SharePoint Foundation 2013
Microsoft SharePoint Foundation 2013 Service Pack 1
Microsoft SharePoint Server 2013
Microsoft SharePoint Server 2013 Service Pack 1 
Microsoft Project Server 2010 Service Pack 1, 2
Microsoft Project Server 2013 
Microsoft Project Server 2013 Service Pack 1
Microsoft Web Applications 2010 Service Pack 1, 2
Microsoft Office Web Apps Server 2013 
Microsoft Office Web Apps Server 2013 Service Pack 1 

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)