cnvd - cnvd-2017-37175

cnvd-2017-37175

Vulnerability from cnvd

Title: Microsoft Project Server和SharePoint Enterprise Server权限提升漏洞

Description:

Microsoft Project Server和Microsoft SharePoint Enterprise Server 2016都是美国微软（Microsoft）公司的产品。Microsoft Project Server是一套适用于项目组合管理（PPM）和日常工作的项目管理解决方案。 SharePoint Enterprise Server 2016是一套企业业务协作平台。

Microsoft Project Server和SharePoint Enterprise Server 2016中存在权限提升漏洞，该漏洞源于程序未能正确的管理用户会话。远程攻击者可利用漏洞未授权读取内容并执行操作（更改权限、删除内容或向浏览器中注入恶意的内容）。

Severity: 中

Patch Name: Microsoft Project Server和SharePoint Enterprise Server权限提升漏洞的补丁

Patch Description:

Microsoft Project Server和SharePoint Enterprise Server 2016中存在权限提升漏洞，该漏洞源于程序未能正确的管理用户会话。远程攻击者可利用漏洞未授权读取内容并执行操作（更改权限、删除内容或向浏览器中注入恶意的内容）。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

Microsoft已经为此发布了一个安全公告（November 2017 Security Updates）以及相应补丁： http://technet.microsoft.com/security/bulletin/November 2017 Security Updates

Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-11876 http://www.securityfocus.com/bid/101754

Impacted products

Name
['Microsoft SharePoint Enterprise Server 2016', 'Microsoft Project Server 2013 SP1']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "101754"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-11876",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11876"
    }
  },
  "description": "Microsoft Project Server\u548cMicrosoft SharePoint Enterprise Server 2016\u90fd\u662f\u7f8e\u56fd\u5fae\u8f6f\uff08Microsoft\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Microsoft Project Server\u662f\u4e00\u5957\u9002\u7528\u4e8e\u9879\u76ee\u7ec4\u5408\u7ba1\u7406\uff08PPM\uff09\u548c\u65e5\u5e38\u5de5\u4f5c\u7684\u9879\u76ee\u7ba1\u7406\u89e3\u51b3\u65b9\u6848\u3002 SharePoint Enterprise Server 2016\u662f\u4e00\u5957\u4f01\u4e1a\u4e1a\u52a1\u534f\u4f5c\u5e73\u53f0\u3002\r\n\r\nMicrosoft Project Server\u548cSharePoint Enterprise Server 2016\u4e2d\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u7684\u7ba1\u7406\u7528\u6237\u4f1a\u8bdd\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u672a\u6388\u6743\u8bfb\u53d6\u5185\u5bb9\u5e76\u6267\u884c\u64cd\u4f5c\uff08\u66f4\u6539\u6743\u9650\u3001\u5220\u9664\u5185\u5bb9\u6216\u5411\u6d4f\u89c8\u5668\u4e2d\u6ce8\u5165\u6076\u610f\u7684\u5185\u5bb9\uff09\u3002",
  "discovererName": "Microsoft",
  "formalWay": "Microsoft\u5df2\u7ecf\u4e3a\u6b64\u53d1\u5e03\u4e86\u4e00\u4e2a\u5b89\u5168\u516c\u544a\uff08November 2017 Security Updates\uff09\u4ee5\u53ca\u76f8\u5e94\u8865\u4e01\uff1a\r\nhttp://technet.microsoft.com/security/bulletin/November 2017 Security Updates",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-37175",
  "openTime": "2017-12-15",
  "patchDescription": "Microsoft Project Server\u548cMicrosoft SharePoint Enterprise Server 2016\u90fd\u662f\u7f8e\u56fd\u5fae\u8f6f\uff08Microsoft\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Microsoft Project Server\u662f\u4e00\u5957\u9002\u7528\u4e8e\u9879\u76ee\u7ec4\u5408\u7ba1\u7406\uff08PPM\uff09\u548c\u65e5\u5e38\u5de5\u4f5c\u7684\u9879\u76ee\u7ba1\u7406\u89e3\u51b3\u65b9\u6848\u3002 SharePoint Enterprise Server 2016\u662f\u4e00\u5957\u4f01\u4e1a\u4e1a\u52a1\u534f\u4f5c\u5e73\u53f0\u3002\r\n\r\nMicrosoft Project Server\u548cSharePoint Enterprise Server 2016\u4e2d\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u7684\u7ba1\u7406\u7528\u6237\u4f1a\u8bdd\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u672a\u6388\u6743\u8bfb\u53d6\u5185\u5bb9\u5e76\u6267\u884c\u64cd\u4f5c\uff08\u66f4\u6539\u6743\u9650\u3001\u5220\u9664\u5185\u5bb9\u6216\u5411\u6d4f\u89c8\u5668\u4e2d\u6ce8\u5165\u6076\u610f\u7684\u5185\u5bb9\uff09\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Microsoft Project Server\u548cSharePoint Enterprise Server\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Microsoft SharePoint Enterprise Server 2016",
      "Microsoft Project Server 2013 SP1"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2017-11876\r\nhttp://www.securityfocus.com/bid/101754",
  "serverity": "\u4e2d",
  "submitTime": "2017-11-16",
  "title": "Microsoft Project Server\u548cSharePoint Enterprise Server\u6743\u9650\u63d0\u5347\u6f0f\u6d1e"
}

CVE-2017-11876 (GCVE-0-2017-11876)

Vulnerability from cvelistv5

Published

2017-11-15 03:00

Modified

2024-09-17 00:26

Severity ?

CWE

Elevation of Privilege

Summary

Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read content that they are not authorized to read, use the victim's identity to take actions on the web application on behalf of the victim, such as change permissions and delete content, and inject malicious content in the browser of the victim, aka "Microsoft Project Server Elevation of Privilege Vulnerability".

References

▼	URL	Tags
	http://www.securitytracker.com/id/1039789	vdb-entry, x_refsource_SECTRACK
	http://www.securitytracker.com/id/1039788	vdb-entry, x_refsource_SECTRACK
	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11876	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/101754	vdb-entry, x_refsource_BID

Impacted products

	Vendor	Product	Version
	Microsoft Corporation	Microsoft Server	Version: Microsoft Project Server 2013, Microsoft SharePoint Enterprise Server 2016

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T18:19:39.331Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1039789",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1039789"
          },
          {
            "name": "1039788",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1039788"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11876"
          },
          {
            "name": "101754",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/101754"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Microsoft Server",
          "vendor": "Microsoft Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "Microsoft Project Server 2013, Microsoft SharePoint Enterprise Server 2016"
            }
          ]
        }
      ],
      "datePublic": "2017-11-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read content that they are not authorized to read, use the victim\u0027s identity to take actions on the web application on behalf of the victim, such as change permissions and delete content, and inject malicious content in the browser of the victim, aka \"Microsoft Project Server Elevation of Privilege Vulnerability\"."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Elevation of Privilege",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-11-15T10:57:01",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "1039789",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1039789"
        },
        {
          "name": "1039788",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1039788"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11876"
        },
        {
          "name": "101754",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/101754"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@microsoft.com",
          "DATE_PUBLIC": "2017-11-14T00:00:00",
          "ID": "CVE-2017-11876",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Microsoft Server",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Microsoft Project Server 2013, Microsoft SharePoint Enterprise Server 2016"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Microsoft Corporation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read content that they are not authorized to read, use the victim\u0027s identity to take actions on the web application on behalf of the victim, such as change permissions and delete content, and inject malicious content in the browser of the victim, aka \"Microsoft Project Server Elevation of Privilege Vulnerability\"."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Elevation of Privilege"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1039789",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1039789"
            },
            {
              "name": "1039788",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1039788"
            },
            {
              "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11876",
              "refsource": "CONFIRM",
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11876"
            },
            {
              "name": "101754",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/101754"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2017-11876",
    "datePublished": "2017-11-15T03:00:00Z",
    "dateReserved": "2017-07-31T00:00:00",
    "dateUpdated": "2024-09-17T00:26:38.656Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted