Trend Micro Security

MS10-104:Microsoft SharePoint の脆弱性により、リモートでコードが実行される (2455005)

  危険度: :
  CVE識別番号: CVE-2010-3964

  概要

This update resolves a vulnerability in Microsoft SharePoint, which could allow remote code execution. The vulnerability is exploited if an attacker sends a specially crafted SOAP request to the Document Conversions Launcher Service in a SharePoint server environment that is using the Document Conversions Load Balancer Service. More specifically, this update addresses the vulnerability by modifying the way by which the Document Conversion Launcher Service validates specially crafted SOAP requests.

  トレンドマイクロの対策

詳しい情報については以下のサイトをご参照ください。

  対応方法

  影響を受けるソフトウェア

  • Microsoft Office SharePoint Server 2007 Service Pack 2 (32-bit editions) (KB2433089)
  • Microsoft Office SharePoint Server 2007 Service Pack 2 (64-bit editions) (KB2433089)