This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:microsoft:sharepoint_services
Detail
VendorMicrosoftFirst view 2004-01-20
ProductSharepoint ServicesLast view2015-03-11
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:microsoft:sharepoint_services:3.0:sp2:x329
cpe:/a:microsoft:sharepoint_services:3.0:sp2:x648
cpe:/a:microsoft:sharepoint_services:2.06
cpe:/a:microsoft:sharepoint_services:3.06
cpe:/a:microsoft:sharepoint_services:3.0:sp1:x323
Hide | Show 3 More...
CPE NameAffected CVE
cpe:/a:microsoft:sharepoint_services:3.0:sp1:x643
cpe:/a:microsoft:sharepoint_services:3.0:sp32
cpe:/a:microsoft:sharepoint_services:3.0:sp21

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
9.32015-03-11CVE-2015-0085NetworkMediumNone Requ...
92014-05-14CVE-2014-0251NetworkLowRequires ...
9.32013-09-11CVE-2013-3847NetworkMediumNone Requ...
4.32013-09-11CVE-2013-3179NetworkMediumNone Requ...
102013-09-11CVE-2013-1330NetworkLowNone Requ...
Hide | Show 14 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32013-09-11CVE-2013-1315NetworkMediumNone Requ...
52013-09-11CVE-2013-0081NetworkLowNone Requ...
4.32012-10-09CVE-2012-2520NetworkMediumNone Requ...
4.32012-07-10CVE-2012-1863NetworkMediumNone Requ...
4.32011-09-15CVE-2011-1893NetworkMediumNone Requ...
42011-09-15CVE-2011-1892NetworkLowRequires ...
4.32011-09-15CVE-2011-1891NetworkMediumNone Requ...
4.32010-10-13CVE-2010-3243NetworkMediumNone Requ...
4.32010-09-17CVE-2010-3324NetworkMediumNone Requ...
42010-06-08CVE-2010-1264NetworkLowRequires ...
4.32010-06-08CVE-2010-1257NetworkMediumNone Requ...
4.32010-04-29CVE-2010-0817NetworkMediumNone Requ...
4.32007-05-09CVE-2007-2581NetworkMediumNone Requ...
62004-01-20CVE-2003-0904NetworkMediumRequires ...

CWE : Common Weakness Enumeration

%idName
58% (10)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
11% (2)CWE-200Information Exposure
11% (2)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
11% (2)CWE-20Improper Input Validation
5% (1)CWE-94Failure to Control Generation of Code ('Code Injection')

Open Source Vulnerability Database (OSVDB)

idDescription
75393Microsoft SharePoint Unspecified URI XSS
75392Microsoft SharePoint XML File Arbitrary File Disclosure
75391Microsoft SharePoint Contact Details XSS
75381Microsoft SharePoint XML / XSL File Handling Unspecified Arbitrary File Discl...
68548Microsoft IE / SharePoint Unspecified XSS
Hide | Show 6 More...
idDescription
68123Microsoft IE / SharePoint toStaticHTML Function Crafted CSS @import Rule XSS ...
65220Microsoft SharePoint Crafted Request Help Page Invocation Remote DoS
65211Microsoft IE / Sharepoint toStaticHTML Information Disclosure
64170Microsoft SharePoint Server _layouts/help.aspx cid0 Parameter XSS
37630Microsoft SharePoint PATH_INFO (query string) XSS
3490Microsoft Exchange 2003 OWA Mailbox Access Information Disclosure

ExploitDB Exploits

idDescription
17873File disclosure via XEE in SharePoint 2007/2010 and DotNetNuke < 6

OpenVAS Exploits

idDescription
2012-10-10Name : Microsoft Products HTML Sanitisation Component XSS Vulnerability (2741517)
File : nvt/secpod_ms12-066.nasl
2012-07-11Name : Microsoft SharePoint Multiple Privilege Elevation Vulnerabilities (2695502)
File : nvt/secpod_ms12-050.nasl
2011-09-22Name : Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities (2412048)
File : nvt/secpod_ms10-072.nasl
2011-09-14Name : Microsoft SharePoint Server 2007 '_layouts/help.aspx' Cross Site Scripting Vu...
File : nvt/gb_sharepoint_39776.nasl
2011-09-14Name : Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)
File : nvt/secpod_ms11-074.nasl
Hide | Show 5 More...
idDescription
2010-10-13Name : Microsoft Internet Explorer Multiple Vulnerabilities (2360131)
File : nvt/secpod_ms10-071.nasl
2010-09-23Name : Microsoft Internet Explorer 'toStaticHTML()' Cross Site Scripting Vulnerability
File : nvt/secpod_ms_ie_static_html_xss_vuln.nasl
2010-06-09Name : Microsoft Internet Explorer Multiple Vulnerabilities (982381)
File : nvt/secpod_ms10-035.nasl
2010-06-09Name : Microsoft SharePoint Privilege Elevation Vulnerabilities (2028554)
File : nvt/secpod_ms10-039.nasl
2010-05-04Name : Microsoft SharePoint '_layouts/help.aspx' Cross Site Scripting Vulnerability
File : nvt/secpod_ms_sharepoint_layouts_xss_vuln.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-A-0052Multiple Vulnerabilities in Microsoft Office (MS15-022)
Severity : Category II - VMSKEY : V0058999
2014-A-0074Multiple Vulnerabilities in Microsoft Office SharePoint Server
Severity : Category II - VMSKEY : V0050449
2013-A-0231Multiple Vulnerabilities in Microsoft Exchange Server
Severity : Category I - VMSKEY : V0042592
2013-A-0178Multiple Vulnerabilities in Microsoft Office
Severity : Category II - VMSKEY : V0040289
2013-A-0174Multiple Remote Code Execution Vulnerabilities in Microsoft SharePoint Server
Severity : Category II - VMSKEY : V0040292
Hide | Show 4 More...
idDescription
2013-A-0171Multiple Remote Code Execution Vulnerabilities in Microsoft Excel
Severity : Category I - VMSKEY : V0040295
2011-B-0115Multiple Vulnerabilities in Microsoft Office SharePoint
Severity : Category II - VMSKEY : V0030239
2010-A-0079Multiple Vulnerabilities in Microsoft Office SharePoint
Severity : Category II - VMSKEY : V0024377
2007-B-0031Windows SharePoint Services and Office SharePoint Server Remote Privilege Esc...
Severity : Category II - VMSKEY : V0015306

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2018-02-22toStaticHTML CSS import XSS exploit attempt
RuleID : 45514 - Type : BROWSER-IE - Revision : 1
2016-11-15Microsoft Office Excel malicious cce value following a PtgMemFunc token
RuleID : 40460 - Type : FILE-OFFICE - Revision : 2
2016-11-15Microsoft Office Excel malicious cce value following a PtgMemFunc token
RuleID : 40459 - Type : FILE-OFFICE - Revision : 2
2016-07-26Microsoft Office Excel RealTimeData record exploit attempt
RuleID : 39347 - Type : FILE-OFFICE - Revision : 2
2016-07-26Microsoft Office Excel RealTimeData record exploit attempt
RuleID : 39346 - Type : FILE-OFFICE - Revision : 2
Hide | Show 20 More...
DateDescription
2015-04-10Microsoft Office Word incorrect schema property remote code execution attempt
RuleID : 33716 - Type : FILE-OFFICE - Revision : 2
2015-04-10Microsoft Office Word incorrect schema property remote code execution attempt
RuleID : 33715 - Type : FILE-OFFICE - Revision : 2
2014-04-24Microsoft Office Excel malicious cce value following a PtgMemFunc token
RuleID : 30243 - Type : FILE-OFFICE - Revision : 4
2014-04-24Microsoft Office Excel malicious cce value following a PtgMemFunc token
RuleID : 30242 - Type : FILE-OFFICE - Revision : 4
2014-01-10Microsoft Office SharePoint malicious serialized viewstate evaluation attempt
RuleID : 27823 - Type : SERVER-WEBAPP - Revision : 1
2014-01-10Microsoft Office Excel PtgMemFunc zero-value cce-field read access violation ...
RuleID : 27821 - Type : FILE-OFFICE - Revision : 3
2014-01-10Microsoft Office Excel PtgMemFunc zero-value cce-field read access violation ...
RuleID : 27820 - Type : FILE-OFFICE - Revision : 3
2014-01-10Microsoft SharePoint denial of service attempt
RuleID : 27819 - Type : SERVER-OTHER - Revision : 2
2014-01-10Microsoft SharePoint denial of service attempt
RuleID : 27818 - Type : SERVER-OTHER - Revision : 2
2014-01-10Microsoft Office SharePoint query.iqy XSS attempt
RuleID : 23282 - Type : SERVER-WEBAPP - Revision : 7
2014-01-10Microsoft multiple product toStaticHTML XSS attempt
RuleID : 23137 - Type : BROWSER-IE - Revision : 11
2014-01-10Microsoft multiple product toStaticHTML XSS attempt
RuleID : 23136 - Type : BROWSER-IE - Revision : 11
2014-01-10Microsoft Office SharePoint Javascript XSS attempt
RuleID : 20116 - Type : SERVER-WEBAPP - Revision : 10
2014-01-10Microsoft Office SharePoint XML external entity exploit attempt
RuleID : 20115 - Type : SERVER-WEBAPP - Revision : 9
2014-01-10Microsoft SharePoint hiddenSpanData cross site scripting attempt
RuleID : 20114 - Type : SERVER-WEBAPP - Revision : 7
2014-01-10Microsoft Internet Explorer and SharePoint toStaticHTML information disclosur...
RuleID : 19322 - Type : BROWSER-IE - Revision : 10
2014-01-10Microsoft Internet Explorer 8 tostaticHTML CSS import vulnerability
RuleID : 17767 - Type : BROWSER-IE - Revision : 15
2014-01-10Microsoft Internet Explorer 8 XSS in toStaticHTML API attempt
RuleID : 17766 - Type : BROWSER-IE - Revision : 15
2014-01-10Microsoft Office SharePoint Server 2007 help.aspx denial of service attempt
RuleID : 16660 - Type : SERVER-WEBAPP - Revision : 16
2014-01-10Microsoft Internet Explorer 8 cross-site scripting attempt
RuleID : 16658 - Type : BROWSER-IE - Revision : 7

Nessus® Vulnerability Scanner

idDescription
2015-03-11Name : The remote host is affected by multiple remote code execution vulnerabilities.
File : smb_nt_ms15-022.nasl - Type : ACT_GATHER_INFO
2014-05-14Name : The remote host is affected by multiple vulnerabilities.
File : smb_nt_ms14-022.nasl - Type : ACT_GATHER_INFO
2013-12-11Name : The remote mail server has multiple vulnerabilities.
File : smb_nt_ms13-105.nasl - Type : ACT_GATHER_INFO
2013-09-11Name : The remote host is affected by multiple vulnerabilities.
File : smb_nt_ms13-067.nasl - Type : ACT_GATHER_INFO
2013-09-11Name : The Microsoft Office component installed on the remote host is affected by mu...
File : smb_nt_ms13-072.nasl - Type : ACT_GATHER_INFO
Hide | Show 14 More...
idDescription
2013-09-11Name : It is possible to execute arbitrary code on the remote host through Microsoft...
File : smb_nt_ms13-073.nasl - Type : ACT_GATHER_INFO
2013-09-11Name : An application installed on the remote Mac OS X host is affected by multiple ...
File : macosx_ms13-073.nasl - Type : ACT_GATHER_INFO
2012-10-10Name : The remote host is affected by a privilege escalation vulnerability.
File : smb_nt_ms12-066.nasl - Type : ACT_GATHER_INFO
2012-07-11Name : The remote host is affected by multiple privilege escalation and information ...
File : smb_nt_ms12-050.nasl - Type : ACT_GATHER_INFO
2011-09-14Name : The remote host is affected by multiple privilege escalation and information ...
File : smb_nt_ms11-074.nasl - Type : ACT_GATHER_INFO
2010-10-18Name : The remote host is affected by multiple cross-site scripting vulnerabilities.
File : safehtml_ms10_072.nasl - Type : ACT_GATHER_INFO
2010-10-13Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms10-071.nasl - Type : ACT_GATHER_INFO
2010-10-13Name : The remote host is affected by multiple cross-site scripting vulnerabilities.
File : smb_nt_ms10-072.nasl - Type : ACT_GATHER_INFO
2010-07-01Name : An application running on the remote web server has a denial of service vulne...
File : sharepoint_help_dos.nasl - Type : ACT_DENIAL
2010-07-01Name : An application running on the remote web server has a cross-site scripting vu...
File : sharepoint_help_xss.nasl - Type : ACT_ATTACK
2010-06-09Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms10-035.nasl - Type : ACT_GATHER_INFO
2010-06-09Name : The remote host has multiple vulnerabilities.
File : smb_nt_ms10-039.nasl - Type : ACT_GATHER_INFO
2007-10-09Name : A user can elevate his privileges through SharePoint.
File : smb_nt_ms07-059.nasl - Type : ACT_GATHER_INFO
2004-01-13Name : It is possible to access other users mailboxes.
File : smb_nt_ms04-002.nasl - Type : ACT_GATHER_INFO