Microsoft SharePoint Server Cross-Site Scripting Vulnerability

Bugtraq ID: 23832
Class: Input Validation Error
CVE: CVE-2007-2581
Remote: Yes
Local: No
Published: May 04 2007 12:00AM
Updated: Oct 10 2007 05:28PM
Credit: Solarius is credited with the discovery of this vulnerability.
Vulnerable: Microsoft Windows SharePoint Services 3.0
+ Microsoft Windows Server 2003 SP2
+ Microsoft Windows Server 2003 SP1 Platform SDK
+ Microsoft Windows Server 2003 SP1
+ Microsoft Windows Server 2003 Datacenter Edition SP1
+ Microsoft Windows Server 2003 Datacenter Edition
+ Microsoft Windows Server 2003 Datacenter x64 Edition SP2
+ Microsoft Windows Server 2003 Datacenter x64 Edition
+ Microsoft Windows Server 2003 Enterprise Edition SP1
+ Microsoft Windows Server 2003 Enterprise Edition
+ Microsoft Windows Server 2003 Enterprise x64 Edition SP2
+ Microsoft Windows Server 2003 Enterprise x64 Edition
+ Microsoft Windows Server 2003 Standard Edition SP2
+ Microsoft Windows Server 2003 Standard Edition SP1
+ Microsoft Windows Server 2003 Standard Edition
+ Microsoft Windows Server 2003 Standard x64 Edition
+ Microsoft Windows Server 2003 Web Edition SP2
+ Microsoft Windows Server 2003 Web Edition SP1
+ Microsoft Windows Server 2003 Web Edition
+ Microsoft Windows Server 2003 x64 SP2
+ Microsoft Windows Server 2003 x64 SP1
Microsoft SharePoint Server 2007 0
Microsoft Microsoft Office SharePoint Server 2007 x64 0
Microsoft Microsoft Office SharePoint Server 2007 0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus