[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Vulnerability in HTML sanitization component could allow elevation of privilege - MS13-035

ID: oval:org.secpod.oval:def:10776Date: (C)2013-04-12   (M)2021-06-02
Class: PATCHFamily: windows




The host is missing an important security update according to Microsoft bulletin, MS13-035. The update is required to fix elevation of privilege vulnerability. A flaw is present in the applications, which is caused by the way that HTML strings are sanitized. Successful exploitation allows attackers to perform cross-site scripting attacks on affected systems and run script in the security context of the current user.

Platform:
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows 10
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Product:
Microsoft Groove Server 2010
Microsoft InfoPath 2010
Microsoft Office Web Apps 2010
Microsoft SharePoint Foundation 2010
Microsoft SharePoint Server 2010
Reference:
MS13-035
CVE-2013-1289
CVE    1
CVE-2013-1289
CPE    12
cpe:/a:microsoft:groove:2010
cpe:/a:microsoft:sharepoint_server:2010:sp1
cpe:/a:microsoft:infopath:2010:sp1:x64
cpe:/a:microsoft:infopath:2010:sp1:x86
...

© SecPod Technologies