Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft SharePoint weak permissions
Published:12.04.2013
Source:
SecurityVulns ID:13004
Type:remote
Threat Level:
6/10
Description:Weak documents access rights.
Affected:MICROSOFT : SharePoint Server 2013
CVE:CVE-2013-1290 (Microsoft SharePoint Server 2013, in certain configurations involving legacy My Sites, does not properly establish default access controls for a SharePoint list, which allows remote authenticated users to bypass intended restrictions on reading list items via a direct request for a list's location, aka "Incorrect Access Rights Information Disclosure Vulnerability.")
Files:Microsoft Security Bulletin MS13-030 - Important Vulnerability in SharePoint Could Allow Information Disclosure (2827663)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod