This CPE summary could be partial or incomplete. Please contact us for a detailed listing.


CPE Namecpe:/a:microsoft:sharepoint_services:3.0:sp1:x32
VendorMicrosoftFirst view 2010-04-29
ProductSharepoint ServicesLast view2010-06-08
CPE Productcpe:/a:microsoft:sharepoint_services

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
42010-06-08CVE-2010-1264NetworkLowRequires ...
4.32010-06-08CVE-2010-1257NetworkMediumNone Requ...
4.32010-04-29CVE-2010-0817NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

100% (2)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')

Oval Markup Language : Definitions

oval:org.mitre.oval:def:7468Help.aspx XSS Vulnerability
oval:org.mitre.oval:def:7241Sharepoint Help Page Denial of Service Vulnerability
oval:org.mitre.oval:def:6677toStaticHTML Information Disclosure Vulnerability

Open Source Vulnerability Database (OSVDB)

65220Microsoft SharePoint Crafted Request Help Page Invocation Remote DoS
65211Microsoft IE / Sharepoint toStaticHTML Information Disclosure
64170Microsoft SharePoint Server _layouts/help.aspx cid0 Parameter XSS

OpenVAS Exploits

2011-09-14Name : Microsoft SharePoint Server 2007 '_layouts/help.aspx' Cross Site Scripting Vu...
File : nvt/gb_sharepoint_39776.nasl
2010-06-09Name : Microsoft Internet Explorer Multiple Vulnerabilities (982381)
File : nvt/secpod_ms10-035.nasl
2010-06-09Name : Microsoft SharePoint Privilege Elevation Vulnerabilities (2028554)
File : nvt/secpod_ms10-039.nasl
2010-05-04Name : Microsoft SharePoint '_layouts/help.aspx' Cross Site Scripting Vulnerability
File : nvt/secpod_ms_sharepoint_layouts_xss_vuln.nasl

Information Assurance Vulnerability Management (IAVM)

2010-A-0079Multiple Vulnerabilities in Microsoft Office SharePoint
Severity : Category II - VMSKEY : V0024377

Snort® IPS/IDS

2014-01-10Microsoft Office SharePoint Server 2007 help.aspx denial of service attempt
RuleID : 16660 - Type : SERVER-WEBAPP - Revision : 16
2014-01-10Microsoft Internet Explorer 8 cross-site scripting attempt
RuleID : 16658 - Type : BROWSER-IE - Revision : 7
2014-01-10Microsoft Office SharePoint XSS attempt
RuleID : 16560 - Type : SERVER-WEBAPP - Revision : 17

Nessus® Vulnerability Scanner

2010-07-01Name : An application running on the remote web server has a denial of service vulne...
File : sharepoint_help_dos.nasl - Type : ACT_DENIAL
2010-07-01Name : An application running on the remote web server has a cross-site scripting vu...
File : sharepoint_help_xss.nasl - Type : ACT_ATTACK
2010-06-09Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms10-035.nasl - Type : ACT_GATHER_INFO
2010-06-09Name : The remote host has multiple vulnerabilities.
File : smb_nt_ms10-039.nasl - Type : ACT_GATHER_INFO