Дата обнаружения
|
13/06/2017 |
Уровень угрозы
|
Warning |
Описание
|
Multiple serious vulnerabilities have been found in Microsoft Sharepoint. Malicious users can exploit these vulnerabilities to obtain sensitive information and gain privileges. Below is a complete list of vulnerabilities:
Technical details Vulnerability (1) can only be exploited if user clicks a specially designed URL which takes the user to a targeted Sharepoint Web App site. A malicious URL can be sent via email or it can be on a website hosted by a malicious user. In both cases the attacker should convince a user to click malicious URL. |
Пораженные продукты
|
Microsoft SharePoint Enterprise Server 2016 |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2017-8514 CVE-2017-8551 |
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
SB
[?]
PE
[?]
SUI
[?]
|
Связанные продукты
|
Microsoft Sharepoint Server |
CVE-IDS
|