Vulnerabilities in Microsoft SharePoint Server could allow remote code execution| ID: oval:org.secpod.oval:def:24276 | Date: (C)2015-05-13 (M)2021-09-11 |
| Class: PATCH | Family: windows |
The host is missing an important security update according to Microsoft security bulletin, MS15-047. The update is required to fix remote code execution vulnerabilities. The flaws are present in the applications, which fail to handle specially crafted page content. Successful exploitation could allow attackers to execute arbitrary code in the security context of the W3WP service account.
| Platform: |
| Microsoft Windows Server 2003 |
| Microsoft Windows Server 2008 |
| Microsoft Windows Server 2008 R2 |
| Microsoft Windows Server 2012 |
| Microsoft Windows Server 2012 R2 |
| Microsoft Windows 7 |
| Microsoft Windows 8 |
| Product: |
| Microsoft SharePoint Server 2007 |
| Microsoft SharePoint Server 2010 |
| Microsoft SharePoint Foundation 2010 |
| Microsoft SharePoint Foundation 2013 |
