Microsoft SharePoint And Microsoft Lync HTML Sanitization Cross Site Scripting Vulnerability

Bugtraq ID: 55797
Class: Input Validation Error
CVE: CVE-2012-2520
Remote: Yes
Local: No
Published: Oct 09 2012 12:00AM
Updated: Oct 09 2012 12:00AM
Credit: Drew Hintz of Google Security Team
Vulnerable: Microsoft SharePoint Foundation 2010 SP1
Microsoft SharePoint Foundation 2010 0
Microsoft Office Web Apps 2010 SP1
Microsoft Office Web Apps 2010 0
Microsoft Office SharePoint Server 2010 SP1
Microsoft Office Communicator 2007 R2
Microsoft Lync 2010 Attendee 0
Microsoft InfoPath 2007 SP2
Microsoft InfoPath 2007 SP1
Microsoft Groove Server 2010 SP1
Microsoft Groove Server 2010 0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus