Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Summary
Title Vulnerabilities in SharePoint Could Allow Elevation of Privilege (2780176)
Informations
Name MS13-024 First vendor Publication 2013-03-12
Vendor Microsoft Last vendor Modification 2013-03-12
Severity (Vendor) Critical Revision 1.0

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score 7.8 Attack Range Network
Cvss Impact Score 6.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Revision Note: V1.0 (March 12, 2013): Bulletin published.

Summary: This security update resolves four privately reported vulnerabilities in Microsoft SharePoint and Microsoft SharePoint Foundation. The most severe vulnerabilities could allow elevation of privilege if a user clicks a specially crafted URL that takes the user to a targeted SharePoint site.

Original Source

Url : http://technet.microsoft.com/en-us/security/bulletin/ms13-024

CWE : Common Weakness Enumeration

% Id Name
25 % CWE-264 Permissions, Privileges, and Access Controls
25 % CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
25 % CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25)
25 % CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:16414
 
Oval ID: oval:org.mitre.oval:def:16414
Title: Buffer Overflow Vulnerability - MS13-024
Description: Buffer overflow in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allows remote attackers to cause a denial of service (W3WP process crash and site outage) via a crafted URL, aka "Buffer Overflow Vulnerability."
Family: windows Class: vulnerability
Reference(s): CVE-2013-0085
 Version: 5
Platform(s): Microsoft Windows 2000
Microsoft Windows 8
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Vista
Microsoft Windows XP
 Product(s): Microsoft SharePoint Foundation 2010
Microsoft SharePoint Server 2010
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:16445
 
Oval ID: oval:org.mitre.oval:def:16445
Title: SharePoint Directory Traversal Vulnerability - MS13-024
Description: Directory traversal vulnerability in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allows remote attackers to bypass intended read restrictions for content, and hijack user accounts, via a crafted URL, aka "SharePoint Directory Traversal Vulnerability."
Family: windows Class: vulnerability
Reference(s): CVE-2013-0084
 Version: 5
Platform(s): Microsoft Windows 2000
Microsoft Windows 8
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Vista
Microsoft Windows XP
 Product(s): Microsoft SharePoint Foundation 2010
Microsoft SharePoint Server 2010
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:16596
 
Oval ID: oval:org.mitre.oval:def:16596
Title: Callback Function Vulnerability - MS13-024
Description: Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allow remote attackers to bypass intended read restrictions for content, and hijack user accounts, via a crafted URL, aka "Callback Function Vulnerability."
Family: windows Class: vulnerability
Reference(s): CVE-2013-0080
 Version: 5
Platform(s): Microsoft Windows 8
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Vista
Microsoft Windows XP
 Product(s): Microsoft SharePoint Foundation 2010
Microsoft SharePoint Server 2010
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 1
Application 1

Snort® IPS/IDS

Date Description
2014-11-16 Microsoft Sharepoint server callback function cross-site scripting attempt
RuleID : 31429 - Revision : 3 - Type : SERVER-WEBAPP
2014-01-16 Microsoft Sharepoint server callback function cross-site scripting attempt
RuleID : 28946 - Revision : 3 - Type : SERVER-WEBAPP
2014-01-10 Microsoft SharePoint Server directory traversal attempt
RuleID : 26167 - Revision : 3 - Type : SERVER-WEBAPP
2014-01-10 Microsoft SharePoint Server directory traversal attempt
RuleID : 26166 - Revision : 3 - Type : SERVER-WEBAPP
2014-01-10 Microsoft SharePoint Server directory traversal attempt
RuleID : 26165 - Revision : 3 - Type : SERVER-WEBAPP
2014-01-10 Microsoft Office SharePoint cross site scripting attempt
RuleID : 26131 - Revision : 5 - Type : SERVER-WEBAPP
2014-01-10 Microsoft Office SharePoint cross site scripting attempt
RuleID : 26124 - Revision : 7 - Type : SERVER-WEBAPP

Nessus® Vulnerability Scanner

Date Description
2013-03-12 Name : The version of SharePoint running on the remote host has multiple vulnerabili...
File : smb_nt_ms13-024.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
Date Informations
2014-02-17 11:47:36
  • Multiple Updates
2014-01-19 21:30:56
  • Multiple Updates
2013-03-16 18:31:55
  • Multiple Updates
2013-03-12 22:08:53
  • Multiple Updates
2013-03-12 22:05:15
  • First insertion