Gravité: : Élevé
  Identifiant(s) CVE: : CVE-2013-1290
  Date du conseil: 14 mai 2013

  Description

This security update resolves a publicly disclosed vulnerability in Microsoft SharePoint Server. The vulnerability, if left unpatched, may allow information disclosure if an attacker has determined the address or location of a specific SharePoint list and gained access to the SharePoint site where the list is maintained. The attacker would need to be able to satisfy the SharePoint site's authentication requests to exploit this vulnerability.

The vulnerability addressed in this patch affects Microsoft SharePoint Server 2013.

  Solutions

  Affected software and version:

  • Microsoft SharePoint Server 2013