Check: 2015-A-0104
Windows 2012 IAVM:
2015-A-0104
(in version v1 r30)
Title
Microsoft SharePoint Remote Code Execution Vulnerability (MS15-047) (Cat II impact)
Discussion
Microsoft has released a security bulletin addressing multiple vulnerabilities in Microsoft Office. To exploit these vulnerabilities, an attacker would send malicious page content to a SharePoint server. If successfully exploited, these vulnerabilities would allow an attacker to execute arbitrary code in the security context of the W3WP service account on the affected SharePoint site.
Check Content
Fix Text
Additional Identifiers
Rule ID:
Vulnerability ID: V-60645
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |