Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1861

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-1861
Last Modified 06 Mar 2013 11:53:57
Published 10 Jul 2012 05:55:05
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-1861

Summary

Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2010 Gold and SP1, SharePoint Foundation 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript elements in a URL, aka "SharePoint Script in Username Vulnerability."

Vulnerable Systems

Application

  • Microsoft Office Web Apps 2010

  • Microsoft Sharepoint Foundation 2010

  • Microsoft Sharepoint Server 2010


References

MS - MS12-050

CERT - TA12-192A

Related Patches

MS12-050 Security Update for Microsoft InfoPath 2010 32-Bit Edition (KB2553431)

MS12-050 Security Update for Windows SharePoint Services 3.0 (KB2596911)

MS12-050 Security Update for Microsoft SharePoint Server 2010 (KB2553424)

MS12-050 Security Update for Microsoft Web Applications (KB2598239)

MS12-050 Security Update for Microsoft Office SharePoint Server 2007 32-Bit Edition (KB2596663)

MS12-050 Security Update for Microsoft SharePoint Foundation 2010 (KB2553365)

MS12-050 Security Update for Microsoft Groove Server 2010 (KB2589325)

MS12-050 Security Update for Microsoft Office InfoPath 2007 (KB2596786)

MS12-050 Security Update for Microsoft Office 2007 suites (KB2596666)

MS12-050 Security Update for 2010 Microsoft Business Productivity Servers (KB2553194)

MS12-050 Security Update for Microsoft Office SharePoint Server 2007 64-Bit Edition (KB2596663)

MS12-050 Security Update for Windows SharePoint Services 3.0 x64 (KB2596911)

MS12-050 Security Update for Microsoft InfoPath 2010 64-Bit Edition (KB2553322)

MS12-050 Security Update for Microsoft Office SharePoint Server 2007 64-Bit Edition (KB2596942)

MS12-050 Security Update for Microsoft InfoPath 2010 64-Bit Edition (KB2553431)


Last Updated: 27 May 2016 10:54:51