Follow:

Vulnerability:Win/SharePoint.Layouts.RCE!CVE-2010-1264

Severity rating
Critical

Class/Type
Vulnerability

Discovered date
2010-06-08T00:00:00

Attack vector
Remote

Authentication required
No

Public exploits available
Yes

Signature detection
Medium



On this page




Description

A denial of service vulnerability exists in the way that Microsoft SharePoint handles specially crafted requests to the help page. An attacker could exploit the vulnerability by sending specially crafted packets to the targeted SharePoint server which could cause the Web server to become non-responsive until the associated application pool is restarted.



Impact

The attacker could cause either a limited or long-term denial of service impact to the SharePoint server.



Technical details (analysis)

The vulnerability is due to the way that Microsoft SharePoint handles specially crafted requests sent to the Help page.



Affected software

Microsoft Office InfoPath 2003 Service Pack 3
Microsoft Office InfoPath 2007 Service Pack 1 and Microsoft Office InfoPath 2007 Service Pack 2
Microsoft Office SharePoint Server 2007 Service Pack 1 (32-bit editions)
Microsoft Office SharePoint Server 2007 Service Pack 2 (32-bit editions)
Microsoft Office SharePoint Server 2007 Service Pack 1 (64-bit editions)
Microsoft Office SharePoint Server 2007 Service Pack 2 (64-bit editions)



Non-affected software

Microsoft Windows SharePoint Services 2.0
Microsoft SharePoint Portal Server 2001 Service Pack 3
Microsoft Office SharePoint Portal Server 2003 Service Pack 3
Microsoft SharePoint Server 2010



References




Solutions




NIS signature

Name: Vulnerability:Win/SharePoint.Layouts.RCE!CVE-2010-1264
Release Date: 2010-06-08T00:00:00



Known false positives

No known false positives at this time.



Work-arounds

No known work-arounds at this time.