Check: 2015-A-0087
Windows 2012 IAVM:
2015-A-0087
(in version v1 r30)
Title
Multiple Vulnerabilities in Microsoft Office SharePoint Server (MS15-036) (Cat II impact)
Discussion
Microsoft has released a security bulletin addressing a multiple vulnerabilities that resolves Microsoft Office server and productivity software. To exploit these vulnerabilities, an attacker sends a specially crafted request to an affected SharePoint server. If successfully exploited the attacker could read content that the attacker is not authorized to read, use the victim's identity to take actions on the SharePoint site on behalf of the victim, such as change permissions and delete content, and inject malicious content in the victim’s browser.
Check Content
Fix Text
Additional Identifiers
Rule ID:
Vulnerability ID: V-59889
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |