MS14-073: Vulnerability in Microsoft SharePoint Foundation Could Allow Elevation of Privilege (3000431)
Medium Nessus Plugin ID 79133
SynopsisThe remote host is affected by a privilege escalation vulnerability.
DescriptionThe version of SharePoint Foundation installed on the remote Windows host is affected by a privilege escalation vulnerability due to the improper validation of page content in SharePoint lists. By exploiting this flaw, a remote authenticated attacker can run arbitrary code in the security context of the logged-on user.
SolutionMicrosoft has released patches for SharePoint Foundation 2010 SP2.