(MS14-073) Vulnerability in Microsoft SharePoint Foundation Could Allow Elevation of Privilege (3000431)

• Email
• Facebook
• 
  Twitter
• Google+
• Linkedin

  Severity: HIGH

  CVE Identifier: CVE-2014-4116

  Advisory Date: NOV 14, 2014

---

  TREND MICRO PROTECTION INFORMATION

This update resolves an elevation of privilege vulnerability that exists in Microsoft Sharepoint Server. The vulnerability may be exploited by an attacker by creating a website that hosts exploits. The attacker must lure its intended victim to view the created website.

  SOLUTION

  PATCH: https://technet.microsoft.com/en-us/library/security/ms14-073.aspx

  AFFECTED SOFTWARE AND VERSION

• Microsoft SharePoint Server 2010 Service Pack 2

Related Vulnerability

• November 2014 - Microsoft Releases 14 Security Advisories