MS07-059

Executive Summary

Summary
Title	Vulnerability in Windows SharePoint Services 3.0 and Office SharePoint Server 2007 Could Result in Elevation of Privilege Within the SharePoint Site (942017)

Informations
Name	MS07-059	First vendor Publication	2007-10-09
Vendor	Microsoft	Last vendor Modification	2007-10-09
Severity (Vendor)	Important	Revision	N/A

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:P/A:N)
Cvss Base Score	4.3	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentification	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

This security update resolves a publicly reported vulnerability in Microsoft Windows SharePoint Services 3.0 and Microsoft Office SharePoint Server 2007. The vulnerability could allow an attacker to run arbitrary script that could result in elevation of privilege within the SharePoint site, as opposed to elevation of privilege within the workstation or server environment. The vulnerability could also allow an attacker to run arbitrary script to modify a user?s cache, resulting in information disclosure at the workstation.

Original Source

Url : http://www.microsoft.com/technet/security/bulletin/ms07-059.mspx

CWE : Common Weakness Enumeration

id	Name
CWE-79	Failure to Preserve Web Page Structure ('Cross-site Scripting')

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:2286

Oval ID:	oval:org.mitre.oval:def:2286
Title:	SharePoint Privilege Elevation Vulnerability
Description:	Multiple cross-site scripting (XSS) vulnerabilities in Microsoft Windows SharePoint Services 3.0 for Windows Server 2003 and Office SharePoint Server 2007 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO (query string) in "every main page," as demonstrated by default.aspx.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2007-2581	Version:	1
Platform(s):	Microsoft Windows Server 2003	Product(s):	SharePoint
Definition Synopsis:
Windows Server 2003 is installed AND IF 32-Bit version of Windows is installed AND Microsoft Office SharePoint Services 2003 are installed. AND the version of Mssdmn.exe is less than 12.0.6031.5000 OR 64-Bit (x64 architecture) version of Windows is installed AND Microsoft Office SharePoint Services 2003 are installed. AND the version of Mssdmn.exe is less than 12.0.6028.5000 OR Microsoft Office SharePoint Server 2007 is installed. AND the version of Mssdmn.exe is less than 12.0.6031.5000

CPE : Common Platform Enumeration

Type	Description	Count
Application	Microsoft Sharepoint Server cpe:/a:microsoft:sharepoint_server:2007	1
Application	Microsoft Sharepoint Services cpe:/a:microsoft:sharepoint_services:3.0	1
Application	Microsoft Windows 2003 cpe:/a:microsoft:windows_2003	1