(MS14-050) Vulnerability in Microsoft SharePoint Server Could Allow Elevation of Privilege (2977202)
Publish date: 14 de agosto de 2014
Gravedad: High
Identificadores de CVE : CVE-2014-2816
Fecha recomendada: 14 de agosto de 2014
Descripción
This security update resolves one privately reported vulnerability in Microsoft SharePoint Server. An authenticated attacker who successfully exploited this vulnerability could use a specially crafted app to run arbitrary JavaScript in the context of the user on the current SharePoint site.
Soluciones
Software y versión afectados
- Microsoft SharePoint Server 2013
- Microsoft SharePoint Server 2013 Service Pack 1