Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:IIS:SHARE-ID

Severity

 Medium

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Microsoft SharePoint Team Information Disclosure

Release Date

 2009/11/09

Update Number

 1539

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Microsoft SharePoint Team Information Disclosure


This signature detects attempts to exploit a known vulnerability against Microsoft SharePoint Team Services. A successful attack can lead to arbitrary information disclosure.

Extended Description

Microsoft SharePoint is prone to a vulnerability that lets attackers access certain files that contain source code. An attacker can exploit this vulnerability to retrieve certain files from the vulnerable computer in the context of the webserver process. Information obtained may aid in further attacks. SharePoint 2007 is vulnerable; other versions may also be affected.

Affected Products

  • Microsoft SharePoint Server 2007
  • Microsoft SharePoint Team Services from Microsoft

References

  • BugTraq: 36817
  • CVE: CVE-2009-3830

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out