TrendLabs Malware Blog
Glossary
TrendWatch
TrendLabs Twitter
(MS08-077) Vulnerability in Microsoft Office SharePoint Server Could Cause Elevation of Privilege (957175)
Vulnerability Identifier: CVE-2008-4032
Discovery Date: Dec 9, 2008
Risk: Important
Affected Software:
  • Microsoft Office SharePoint Server 2007 (32-bit editions)
  • Microsoft Office SharePoint Server 2007 (64-bit editions)
  • Microsoft Office SharePoint Server 2007 Service Pack 1
  • Microsoft Office SharePoint Server 2007 Service Pack 1 (32-bit editions)
  • Microsoft Office SharePoint Server 2007 Service Pack 1 (64-bit editions)
  • Microsoft Search Server 2008 (32-bit editions)
  • Microsoft Search Server 2008 (64-bit editions)
Description:

This security update resolves a privately reported vulnerability, which could allow elevation of privilege if a remote malicious user bypasses authentication by browsing to an administrative URL on a SharePoint site. A successful attack leading to elevation of privilege could result in denial of service or information disclosure.


Patch Information:

Patches for this vulnerability can be downloaded on this Microsoft Web page.
 
Search for another Security Advisory
Keyword: