HTTP: Microsoft Sharepoint Server 2007 Privilege Escalation
This signature detects attempts to exploit a known vulnerability against Microsoft Sharepoint Server 2007. A successful attack can escalate a user's privileges, causing denial of service by executing commands that would cause load on the server; an attacker could also gain sensitive information from the Microsoft Office Sharepoint Server 2007, for example internal path names and user's e-mail addresses.
Extended Description
Microsoft SharePoint Server is prone to a vulnerability that could let remote attackers gain unauthorized access. A successful exploit will let attackers access certain administrative functions of the SharePoint Server.
Affected Products
Microsoft sharepoint_server_2007_x64
Short Name
HTTP:IIS:SHAREPOINT-PRIV-ESC
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
2007 CVE-2008-4032 Escalation Microsoft Privilege Server Sharepoint bid:32638
Release Date
12/09/2008
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3725
False Positive
Unknown
Vendors
Microsoft
CVSS Score
7.5