SNS Vulnerability

Microsoft SharePoint Two Cross-Site Scripting Vulnerabilities

Description

Two vulnerabilities have been reported in Microsoft SharePoint, which can be exploited by malicious people to conduct cross-site scripting attacks.
1) An unspecified error can be exploited to conduct cross-site scripting attacks.
2) Another unspecified error can be exploited to conduct cross-site scripting attacks.

Vulnerable Products

Vulnerable Software:
Microsoft SharePoint Foundation 2013Microsoft SharePoint Server 2010Microsoft SharePoint Server 2013

Solution

Apply update.-- Microsoft SharePoint Server 2013 Service Pack 1 --Microsoft SharePoint Foundation 2013 Service Pack 1:https://www.microsoft.com/downloads/details.aspx?FamilyId=9f23e45c-b45c-4ec3-a212-5d429cf4b54fMicrosoft SharePoint Server 2013 Service Pack 1 :https://www.microsoft.com/downloads/details.aspx?FamilyId=9f23e45c-b45c-4ec3-a212-5d429cf4b54fMicrosoft Project Server 2013 Service Pack 1:https://www.microsoft.com/downloads/details.aspx?FamilyId=6c393ef3-b435-44fc-8d72-4335cb0e8d01-- Microsoft SharePoint Server 2010 Service Pack 2 --Microsoft Project Server 2010 Service Pack 2:https://www.microsoft.com/downloads/details.aspx?FamilyId=dfe46b34-bee1-42ba-99af-771c7a17f24b

CVE

CVE-2015-1653
CVE-2015-1640

References

Microsoft (KB3052044
KB2965219
KB2965302
KB2965278):
https://technet.microsoft.com/library/security/MS15-036

Vulnerability Manager Detection

IPS Protection

ASQ Engine alarm	Available Since
XSS - Prevention - GET : suspicious 'iframe' tag found in URL	3.2.0
XSS - Prevention - GET : suspicious 'meta' tag found in URL	3.2.0
XSS - Prevention - GET : suspicious tag with event found in URL	3.2.0
XSS - Prevention - GET : suspicious 'applet' tag found in URL	3.2.0
XSS - Phishing : suspicious 'div' tag found in URL	3.2.0
XSS - Prevention - GET : suspicious 'style' attribute found in URL	3.2.0
XSS - Prevention - GET : suspicious 'img' tag found in URL	3.2.0
XSS - Phishing : suspicious 'a' tag found in URL	3.2.0
XSS - Prevention - GET : cookie access attempt using script language found in URL	3.2.0
XSS - Prevention - GET : suspicious 'embed' tag found in URL	3.2.0
XSS - Prevention - GET : suspicious 'object' tag found in URL	3.2.0
XSS - Phishing : suspicious 'form' tag found in URL	3.2.0
XSS - Prevention - GET : javascript code found in URL	3.2.0
XSS - Prevention - GET : evasion attempt using tag characters encoding in URL	3.2.0
XSS - Prevention - GET : suspicious 'style' tag found in URL	3.2.0
XSS - Phishing : suspicious 'link' tag found in URL	3.2.0
XSS - Prevention - GET : 'script' tag found in URL	3.2.0
XSS - Prevention - GET : 'location' javascript object found in URL	3.2.0
XSS - Prevention - GET : suspicious 'div' tag found in URL	3.2.0

Risk level

Low

Vulnerability First Public Report Date

2015-04-14

Target Type

Server

Possible exploit

Remote