The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Office SharePoint Server

Microsoft SharePoint 2010: three Cross Site Scripting
An attacker can invite a SharePoint user to display a malicious document, in order to create a Cross Site Scripting, which allows him to execute JavaScript code in the context of the web site...
2663841, BID-51928, BID-51934, BID-51937, CERTA-2012-AVI-077, CVE-2012-0017, CVE-2012-0144, CVE-2012-0145, MS12-011, VIGILANCE-VUL-11361
Microsoft SharePoint: seven vulnerabilities
An attacker can use several vulnerabilities of SharePoint, in order to create Cross Site Scripting, or to read a file...
2451858, BID-48199, BID-49002, BID-49004, BID-49005, BID-49010, BID-49511, BID-49620, CERTA-2011-AVI-514, CVE-2011-0653, CVE-2011-1252, CVE-2011-1890, CVE-2011-1891, CVE-2011-1892, CVE-2011-1893, MS11-074, VIGILANCE-VUL-10989
Excel: multiple vulnerabilities
An attacker can invite the victim to open a malicious document with Excel, in order to execute code on his computer...
2587505, BID-49476, BID-49477, BID-49478, BID-49517, BID-49518, CERTA-2011-AVI-512, CVE-2011-1986, CVE-2011-1987, CVE-2011-1988, CVE-2011-1989, CVE-2011-1990, MS11-072, VIGILANCE-VUL-10987
Microsoft SharePoint Server: code execution
When the Document Conversions Launcher and Load Balancer services are enabled, an attacker can send a malicious SOAP query, in order to execute code in Microsoft Office SharePoint Server...
2455005, BID-45264, CERTA-2010-AVI-607, CVE-2010-3964, MS10-104, VIGILANCE-VUL-10213, ZDI-10-287
SharePoint: Cross Site Scripting
An attacker can inject script code in a SharePoint site using the SafeHTML method to filter data...
2412048, CERTA-2010-AVI-482, CVE-2010-3243, CVE-2010-3324, MS10-072, VIGILANCE-VUL-10019
Microsoft SharePoint, InfoPath: three vulnerabilities
Three vulnerabilities of Microsoft SharePoint and InfoPath can be used by an attacker to generate a Cross Site Scripting, to obtain information, or to create a denial of service...
2028554, BID-39776, BID-40409, BID-40559, CERTA-2010-AVI-251, CVE-2010-0817, CVE-2010-1257, CVE-2010-1264, MS10-039, VIGILANCE-VUL-9695
Microsoft SharePoint Server: Cross Site Scripting via help.aspx
An attacker can use the help page of Microsoft SharePoint Server, in order to generate a Cross Site Scripting...
2028554, 983438, BID-39776, CVE-2010-0817, MS10-039, VIGILANCE-VUL-9620
Excel: several vulnerabilities
An attacker can invite the victim to open a malicious Excel document, in order to execute code on his computer...
980150, BID-38547, BID-38550, BID-38551, BID-38552, BID-38553, BID-38554, BID-38555, CERTA-2010-AVI-115, CORE-2009-1103, CVE-2010-0257, CVE-2010-0258, CVE-2010-0260, CVE-2010-0261, CVE-2010-0262, CVE-2010-0263, CVE-2010-0264, MS10-017, VIGILANCE-VUL-9508, ZDI-10-025
Microsoft SharePoint: Cross Site Scripting
An attacker allowed to upload a malicious content to Microsoft SharePoint can create a Cross Site Scripting...
CVE-2008-5026, VIGILANCE-VUL-8245
Microsoft SharePoint Server: reading ASPX files
An attacker can obtain the source code of some pages hosted on Microsoft Office SharePoint Server...
976829, BID-36817, CVE-2009-3830, VIGILANCE-VUL-9126
Our database contains other pages. You can request a free trial to read them.

Display information about Office SharePoint Server: