MS12-066: Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege (2741517)
Medium Nessus Plugin ID 62461
SynopsisThe remote host is affected by a privilege escalation vulnerability.
DescriptionThe version of Microsoft InfoPath, Communicator, Lync, SharePoint Server, Groove Server, and/or Office Web Apps installed on the remote host is potentially affected by a privilege escalation vulnerability due to the way HTML strings are sanitized.
SolutionMicrosoft has released a set of patches for InfoPath 2007, InfoPath 2010, Communicator 2007 R2, Lync 2010, Lync 2010 Attendee, SharePoint Server 2007, SharePoint Server 2010, Groove Server 2010, SharePoint Services 3.0, SharePoint Foundation 2010, and Office Web Apps 2010.