Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2010-1264 | First vendor Publication | 2010-06-08 |
Vendor | Cve | Last vendor Modification | 2018-10-12 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:S/C:N/I:N/A:P) | |||
---|---|---|---|
Cvss Base Score | 4 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Low |
Cvss Expoit Score | 8 | Authentication | Requires single instance |
Calculate full CVSS 2.0 Vectors scores |
Detail
Unspecified vulnerability in Microsoft Windows SharePoint Services 3.0 SP1 and SP2 allows remote attackers to cause a denial of service (hang) via crafted requests to the Help page that cause repeated restarts of the application pool, aka "Sharepoint Help Page Denial of Service Vulnerability." |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1264 |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:7241 | |||
Oval ID: | oval:org.mitre.oval:def:7241 | ||
Title: | Sharepoint Help Page Denial of Service Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Windows SharePoint Services 3.0 SP1 and SP2 allows remote attackers to cause a denial of service (hang) via crafted requests to the Help page that cause repeated restarts of the application pool, aka "Sharepoint Help Page Denial of Service Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-1264 | Version: | 7 |
Platform(s): | Microsoft Windows Server 2003 | Product(s): | Microsoft Windows SharePoint Services 3.0 |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 4 |
OpenVAS Exploits
Date | Description |
---|---|
2011-09-14 | Name : Microsoft SharePoint Server 2007 '_layouts/help.aspx' Cross Site Scripting Vu... File : nvt/gb_sharepoint_39776.nasl |
2010-06-09 | Name : Microsoft Windows Kernel Mode Drivers Privilege Escalation Vulnerabilities (9... File : nvt/secpod_ms10-032.nasl |
2010-06-09 | Name : Microsoft SharePoint Privilege Elevation Vulnerabilities (2028554) File : nvt/secpod_ms10-039.nasl |
2010-05-04 | Name : Microsoft SharePoint '_layouts/help.aspx' Cross Site Scripting Vulnerability File : nvt/secpod_ms_sharepoint_layouts_xss_vuln.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
65220 | Microsoft SharePoint Crafted Request Help Page Invocation Remote DoS Microsoft SharePoint contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker uses crafted requests to the Help page (help.aspx) via the 'tid' parameter to cause the application pool to repeatedly restart, which will result in a loss of availability. |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2010-06-10 | IAVM : 2010-A-0079 - Multiple Vulnerabilities in Microsoft Office SharePoint Severity : Category II - VMSKEY : V0024377 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft Office SharePoint Server 2007 help.aspx denial of service attempt RuleID : 16660 - Revision : 16 - Type : SERVER-WEBAPP |
2014-01-10 | Microsoft Office SharePoint XSS attempt RuleID : 16560 - Revision : 17 - Type : SERVER-WEBAPP |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2010-07-01 | Name : An application running on the remote web server has a denial of service vulne... File : sharepoint_help_dos.nasl - Type : ACT_DENIAL |
2010-07-01 | Name : An application running on the remote web server has a cross-site scripting vu... File : sharepoint_help_xss.nasl - Type : ACT_ATTACK |
2010-06-09 | Name : The remote host has multiple vulnerabilities. File : smb_nt_ms10-039.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2021-05-04 12:11:21 |
|
2021-04-22 01:11:59 |
|
2020-05-23 00:25:34 |
|
2018-10-13 00:22:56 |
|
2017-09-19 09:23:44 |
|
2016-04-26 19:42:56 |
|
2014-02-17 10:54:39 |
|
2014-01-19 21:26:45 |
|
2013-11-11 12:38:45 |
|
2013-05-10 23:21:49 |
|