<< Back
CVE Number Vulnerability Product Severity Date
MS08-077 Vulnerability in Microsoft Office SharePoint Server Could Cause Elevation of Privilege (957175) Microsoft Office Critical 10-12-2008

Technical Information

Brief overview of the risk:
An elevation of privilege vulnerability exists in Microsoft Office SharePoint Server 2007 and Microsoft Office SharePoint Server 2007 Service Pack 1. The vulnerability could allow elevation of privilege if an attacker bypasses authentication by browsing to an administrative URL on a SharePoint site. A successful attack leading to elevation of privilege could result in denial of service or information disclosure.
Detailed Information on the risk:
This security update resolves a privately reported vulnerability. This security update is rated Important for all supported editions of Microsoft Office SharePoint Server 2007 and Microsoft Search Server 2008. Further information on this exploit is available at : MS08-077

Affected Software

Microsoft Office SharePoint Server 2007 (32-bit editions)
Microsoft Office SharePoint Server 2007 (64-bit editions)
Microsoft Office SharePoint Server 2007 Service Pack 1
Microsoft Office SharePoint Server 2007 Service Pack 1 (32-bit editions)
Microsoft Office SharePoint Server 2007 Service Pack 1 (64-bit editions)
Microsoft Search Server 2008 (32-bit editions)
Microsoft Search Server 2008 (64-bit editions)