Schweregrad: : Alto
  Identificador(es) CVE: : CVE-2014-2816
  Data do informe: 14 agosto 2014

  Descrição

This security update resolves one privately reported vulnerability in Microsoft SharePoint Server. An authenticated attacker who successfully exploited this vulnerability could use a specially crafted app to run arbitrary JavaScript in the context of the user on the current SharePoint site.

  Solução

  Software infectado e versão:

  • Microsoft SharePoint Server 2013
  • Microsoft SharePoint Server 2013 Service Pack 1