MS10-039: Vulnerabilities in Microsoft SharePoint Could Allow Elevation of Privilege (2028554)

Medium Nessus Plugin ID 46846

Synopsis

The remote host has multiple vulnerabilities.

Description

The remote Windows host is running a version of InfoPath, SharePoint
Server, or SharePoint Services with the following vulnerabilities :

 - A cross-site scripting vulnerability in Help.aspx.
 (CVE-2010-0817)

 - An information disclosure vulnerability in the
 toStaticHTML() API. (CVE-2010-1257)

 - A denial of service vulnerability, triggered by sending
 specially crafted requests to the help page.
 (CVE-2010-1264)

Solution

Microsoft has released a set of patches for InfoPath 2003, InfoPath
2007, SharePoint Server 2007, and SharePoint Services 3.0.

See Also

https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2010/ms10-039

Plugin Details

Severity: Medium

ID: 46846

File Name: smb_nt_ms10-039.nasl

Version: 1.27

Type: local

Agent: windows

Published: 2010/06/09

Modified: 2018/11/15

Dependencies: 11336, 57033, 27524

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 5

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:H/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:microsoft:office, cpe:/a:microsoft:infopath, cpe:/a:microsoft:sharepoint_server, cpe:/a:microsoft:sharepoint_services

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2010/06/08

Vulnerability Publication Date: 2010/04/28

Exploitable With

Core Impact

Reference Information

CVE: CVE-2010-0817, CVE-2010-1257, CVE-2010-1264

BID: 39776, 40409, 40559

MSFT: MS10-039

IAVA: 2010-A-0079

MSKB: 979441, 979445, 980923, 983444