Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Sharepoint code execution
Published:15.12.2010
Source:
SecurityVulns ID:11308
Type:remote
Threat Level:
7/10
Description:Document Conversions Launcher Service code execution on SOAP request processing.
Affected:MICROSOFT : SharePoint Server 2007
CVE:CVE-2010-3964 (Unrestricted file upload vulnerability in the Document Conversions Launcher Service in Microsoft Office SharePoint Server 2007 SP2, when the Document Conversions Load Balancer Service is enabled, allows remote attackers to execute arbitrary code via a crafted SOAP request to TCP port 8082, aka "Malformed Request Code Execution Vulnerability.")
Files:Microsoft Security Bulletin MS10-104 - Important Vulnerability in Microsoft SharePoint Could Allow Remote Code Execution (2455005)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod