This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:microsoft:sharepoint_services:3.0:sp2:x32
Detail
VendorMicrosoftFirst view 2010-04-29
ProductSharepoint ServicesLast view2012-07-10
Version3.0TypeApplication
Editionx32 
Language 
Updatesp2 
 
CPE Productcpe:/a:microsoft:sharepoint_services

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
4.32012-07-10CVE-2012-1863NetworkMediumNone Requ...
4.32011-09-15CVE-2011-1893NetworkMediumNone Requ...
42011-09-15CVE-2011-1892NetworkLowRequires ...
4.32011-09-15CVE-2011-1891NetworkMediumNone Requ...
4.32010-10-13CVE-2010-3243NetworkMediumNone Requ...
Hide | Show 4 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32010-09-17CVE-2010-3324NetworkMediumNone Requ...
42010-06-08CVE-2010-1264NetworkLowRequires ...
4.32010-06-08CVE-2010-1257NetworkMediumNone Requ...
4.32010-04-29CVE-2010-0817NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
87% (7)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
12% (1)CWE-200Information Exposure

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:12864Contact Details Reflected XSS Vulnerability
oval:org.mitre.oval:def:7468Help.aspx XSS Vulnerability
oval:org.mitre.oval:def:7241Sharepoint Help Page Denial of Service Vulnerability
oval:org.mitre.oval:def:7297HTML Sanitization Vulnerability (CVE-2010-3324)
oval:org.mitre.oval:def:12907SharePoint Remote File Disclosure Vulnerability
Hide | Show 5 More...
idName
oval:org.mitre.oval:def:12676SharePoint XSS Vulnerability
oval:org.mitre.oval:def:7637HTML Sanitization Vulnerability (CVE-2010-3243)
oval:org.mitre.oval:def:7275HTML Sanitization Vulnerability
oval:org.mitre.oval:def:15689SharePoint Reflected List Parameter Vulnerability - MS12-050
oval:org.mitre.oval:def:6677toStaticHTML Information Disclosure Vulnerability

Open Source Vulnerability Database (OSVDB)

idDescription
75393Microsoft SharePoint Unspecified URI XSS
75392Microsoft SharePoint XML File Arbitrary File Disclosure
75391Microsoft SharePoint Contact Details XSS
75381Microsoft SharePoint XML / XSL File Handling Unspecified Arbitrary File Discl...
68548Microsoft IE / SharePoint Unspecified XSS
Hide | Show 4 More...
idDescription
68123Microsoft IE / SharePoint toStaticHTML Function Crafted CSS @import Rule XSS ...
65220Microsoft SharePoint Crafted Request Help Page Invocation Remote DoS
65211Microsoft IE / Sharepoint toStaticHTML Information Disclosure
64170Microsoft SharePoint Server _layouts/help.aspx cid0 Parameter XSS

ExploitDB Exploits

idDescription
17873File disclosure via XEE in SharePoint 2007/2010 and DotNetNuke < 6

OpenVAS Exploits

idDescription
2012-07-11Name : Microsoft SharePoint Multiple Privilege Elevation Vulnerabilities (2695502)
File : nvt/secpod_ms12-050.nasl
2011-09-22Name : Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities (2412048)
File : nvt/secpod_ms10-072.nasl
2011-09-14Name : Microsoft SharePoint Server 2007 '_layouts/help.aspx' Cross Site Scripting Vu...
File : nvt/gb_sharepoint_39776.nasl
2011-09-14Name : Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)
File : nvt/secpod_ms11-074.nasl
2010-10-13Name : Microsoft Internet Explorer Multiple Vulnerabilities (2360131)
File : nvt/secpod_ms10-071.nasl
Hide | Show 4 More...
idDescription
2010-09-23Name : Microsoft Internet Explorer 'toStaticHTML()' Cross Site Scripting Vulnerability
File : nvt/secpod_ms_ie_static_html_xss_vuln.nasl
2010-06-09Name : Microsoft Internet Explorer Multiple Vulnerabilities (982381)
File : nvt/secpod_ms10-035.nasl
2010-06-09Name : Microsoft SharePoint Privilege Elevation Vulnerabilities (2028554)
File : nvt/secpod_ms10-039.nasl
2010-05-04Name : Microsoft SharePoint '_layouts/help.aspx' Cross Site Scripting Vulnerability
File : nvt/secpod_ms_sharepoint_layouts_xss_vuln.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2011-B-0115Multiple Vulnerabilities in Microsoft Office SharePoint
Severity : Category II - VMSKEY : V0030239
2010-A-0079Multiple Vulnerabilities in Microsoft Office SharePoint
Severity : Category II - VMSKEY : V0024377

Snort® IPS/IDS

DateDescription
2018-02-22toStaticHTML CSS import XSS exploit attempt
RuleID : 45514 - Type : BROWSER-IE - Revision : 1
2014-01-10Microsoft Office SharePoint query.iqy XSS attempt
RuleID : 23282 - Type : SERVER-WEBAPP - Revision : 7
2014-01-10Microsoft Office SharePoint Javascript XSS attempt
RuleID : 20116 - Type : SERVER-WEBAPP - Revision : 10
2014-01-10Microsoft Office SharePoint XML external entity exploit attempt
RuleID : 20115 - Type : SERVER-WEBAPP - Revision : 9
2014-01-10Microsoft SharePoint hiddenSpanData cross site scripting attempt
RuleID : 20114 - Type : SERVER-WEBAPP - Revision : 7
Hide | Show 6 More...
DateDescription
2014-01-10Microsoft Internet Explorer and SharePoint toStaticHTML information disclosur...
RuleID : 19322 - Type : BROWSER-IE - Revision : 10
2014-01-10Microsoft Internet Explorer 8 tostaticHTML CSS import vulnerability
RuleID : 17767 - Type : BROWSER-IE - Revision : 15
2014-01-10Microsoft Internet Explorer 8 XSS in toStaticHTML API attempt
RuleID : 17766 - Type : BROWSER-IE - Revision : 15
2014-01-10Microsoft Office SharePoint Server 2007 help.aspx denial of service attempt
RuleID : 16660 - Type : SERVER-WEBAPP - Revision : 16
2014-01-10Microsoft Internet Explorer 8 cross-site scripting attempt
RuleID : 16658 - Type : BROWSER-IE - Revision : 7
2014-01-10Microsoft Office SharePoint XSS attempt
RuleID : 16560 - Type : SERVER-WEBAPP - Revision : 17

Nessus® Vulnerability Scanner

idDescription
2012-07-11Name : The remote host is affected by multiple privilege escalation and information ...
File : smb_nt_ms12-050.nasl - Type : ACT_GATHER_INFO
2011-09-14Name : The remote host is affected by multiple privilege escalation and information ...
File : smb_nt_ms11-074.nasl - Type : ACT_GATHER_INFO
2010-10-18Name : The remote host is affected by multiple cross-site scripting vulnerabilities.
File : safehtml_ms10_072.nasl - Type : ACT_GATHER_INFO
2010-10-13Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms10-071.nasl - Type : ACT_GATHER_INFO
2010-10-13Name : The remote host is affected by multiple cross-site scripting vulnerabilities.
File : smb_nt_ms10-072.nasl - Type : ACT_GATHER_INFO
Hide | Show 4 More...
idDescription
2010-07-01Name : An application running on the remote web server has a denial of service vulne...
File : sharepoint_help_dos.nasl - Type : ACT_DENIAL
2010-07-01Name : An application running on the remote web server has a cross-site scripting vu...
File : sharepoint_help_xss.nasl - Type : ACT_ATTACK
2010-06-09Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms10-035.nasl - Type : ACT_GATHER_INFO
2010-06-09Name : The remote host has multiple vulnerabilities.
File : smb_nt_ms10-039.nasl - Type : ACT_GATHER_INFO