search menu icon-carat-right cmu-wordmark

CERT Coordination Center

Microsoft Windows SharePoint Services and SharePoint Team Services cross-site scripting vulnerabilities

Vulnerability Note VU#340409

Original Release Date: 2005-02-09 | Last Revised: 2005-02-09

Overview

Microsoft Windows SharePoint Services and SharePoint Team Services contain cross-site scripting vulnerabilities. These vulnerabilities could be exploited to execute arbitrary code in the security context of the affected user.

Description

Microsoft Windows SharePoint Services for Windows Server 2003 and SharePoint Team Services are used to create collaborative Web sites. Versions of Microsoft SharePoint software contain several cross-site scripting vulnerabilities caused by insufficient validation of data used as input to HTML redirection queries. The output of such queries may contain malicious script that if executed, could lead to arbitrary code of an attacker's choice being run in the security context of the affected user.

Impact

These vulnerabilities could be exploited to execute arbitrary code in the security context of the affected user.

In addition, per Microsoft Security Bulletin MS05-006:

It may also be possible for an attacker to exploit this vulnerability to modify Web browser caches and intermediate proxy server caches, and put spoofed content in those caches.

Solution

Apply a patch from the vendor


Microsoft has published Microsoft Security Bulletin MS05-006 in response to this issue. Users are encouraged to review this bulletin and apply the patches it refers to.

Vendor Information

340409
 
Affected   Unknown   Unaffected

Microsoft Corporation

Updated:  February 08, 2005

Status

  Vulnerable

Vendor Statement

Please see Microsoft Security Bulletin MS05-006 at:

http://www.microsoft.com/technet/security/bulletin/ms05-006.mspx

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

US-CERT has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.


CVSS Metrics

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A

References

Acknowledgements

Thanks to Microsoft for reporting this vulnerability in Microsoft Security Bulletin MS05-006

This document was written by Jeffrey S. Havrilla.

Other Information

CVE IDs: CVE-2005-0049
Severity Metric: 15.12
Date Public: 2005-02-08
Date First Published: 2005-02-09
Date Last Updated: 2005-02-09 00:17 UTC
Document Revision: 6

Sponsored by the Department of Homeland Security Office of Cybersecurity and Communications.