- Home
- CVEs with nessus.description==The Microsoft SharePoint Server installation on the
remote host is missing security updates.
It is, therefore, affected by multiple vulnerabilities :
- An elevation of privilege vulnerability exists when
Microsoft SharePoint Server does not properly sanitize
a specially crafted web request to an affected
SharePoint server. An authenticated attacker could
exploit the vulnerability by sending a specially
crafted request to an affected SharePoint server.
(CVE-2018-1005)
- An elevation of privilege vulnerability exists when
Microsoft SharePoint Server does not properly sanitize
a specially crafted web request to an affected
SharePoint server. An authenticated attacker could
exploit the vulnerability by sending a specially
crafted URL to a user of an affected SharePoint
server. (CVE-2018-1014)
- A remote code execution vulnerability exists when the
Office graphics component improperly handles specially
crafted embedded fonts. An attacker who successfully
exploited this vulnerability could take control of the
affected system. An attacker could then install
programs; view, change, or delete data; or create new
accounts with full user rights. Users whose accounts
are configured to have fewer user rights on the system
could be less impacted than users who operate with
administrative user rights. (CVE-2018-1028)
- An elevation of privilege vulnerability exists when
Microsoft SharePoint Server does not properly sanitize
a specially crafted web request to an affected
SharePoint server. An authenticated attacker could
exploit the vulnerability by sending a specially
crafted request to an affected SharePoint server.
(CVE-2018-1032)
- An elevation of privilege vulnerability exists when
Microsoft SharePoint Server does not properly sanitize
a specially crafted web request to an affected
SharePoint server. An authenticated attacker could
exploit the vulnerability by sending a specially
crafted request to an affected SharePoint server.
(CVE-2018-1034)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top