Signature Detail

HTTP: Microsoft SharePoint Cross Site Scripting injection 2

This signature detects attempts to exploit a known cross site scripting vulnerability in Microsoft SharePoint. It is due to insufficient validation of user-supplied input. Attackers can steal cookie-based authentication credentials and launch other attacks.

Extended Description

Microsoft SharePoint Server 2007 and SharePoint Services 3.0 are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.

Affected Products

• Avaya Meeting Exchange - Client Registration Server
• Avaya Meeting Exchange - Recording Server
• Avaya Meeting Exchange - Streaming Server
• Avaya Meeting Exchange - Web Conferencing Server
• Avaya Meeting Exchange - Webportal
• Avaya Messaging Application Server 4
• Avaya Messaging Application Server 5
• Avaya Messaging Application Server MM 1.1
• Avaya Messaging Application Server MM 2.0
• Avaya Messaging Application Server MM 3.0
• Avaya Messaging Application Server MM 3.1
• Avaya Messaging Application Server
• Microsoft SharePoint Server 2007 12.0.0.6318
• Microsoft SharePoint Server 2007 12.0.0.6421
• Microsoft SharePoint Server 2007 SP1
• Microsoft SharePoint Server 2007 SP2
• Microsoft SharePoint Server 2007
• Microsoft SharePoint Server 2007 x64 SP1
• Microsoft SharePoint Server 2007 x64 SP2
• Microsoft SharePoint Server 2007 x64
• Microsoft SharePoint Services 3.0 SP1
• Microsoft SharePoint Services 3.0 SP2
• Microsoft SharePoint Services 64-bit 3.0
• Microsoft SharePoint Services 64-bit 3.0 SP1
• Microsoft SharePoint Services 64-bit 3.0 SP2
• Microsoft Windows SharePoint Services 3.0

References

• BugTraq: 39776
• CVE: CVE-2010-0817