Detections
Analytics

Security Update for Microsoft SharePoint Server (June 2017)

high Nessus Plugin ID 100787

Language:

Synopsis

An application installed on the remote Windows host is affected by multiple vulnerabilities.

Description

The Microsoft SharePoint Server installed on the remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities :

 - Multiple remote code execution vulnerabilities exist in Microsoft Office due to improper handling of objects in memory. An unauthenticated, remote attacker can exploit these, by convincing a user to open a specially crafted document, to execute arbitrary code in the context of the current user. (CVE-2017-8509, CVE-2017-8511, CVE-2017-8512)

 - A remote code execution vulnerability exists in Microsoft PowerPoint due to improper handling of objects in memory. An unauthenticated, remote attacker can exploit this, by convincing a user to open a specially crafted file, to execute arbitrary code in the context of the current user. (CVE-2017-8513)

 - A reflective cross-site scripting (XSS) vulnerability exists in Microsoft SharePoint Server due improper validation of user-supplied input in web requests. An unauthenticated, remote attacker can exploit this, via a specially crafted request, to execute arbitrary script code in a user's browser session. (CVE-2017-8514)

 - An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server. (CVE-2017-8551)

Solution

Microsoft has released a set of patches for SharePoint Server 2007;
SharePoint Server 2010; SharePoint Enterprise Server 2013 and 2016;
SharePoint Foundation 2013; Word Automation Services on Microsoft SharePoint Server 2010; and Microsoft Office Project Server 2013.

See Also

https://portal.msrc.microsoft.com/en-us/security-guidance/summary

Plugin Details

Severity: High

ID: 100787

File Name: smb_nt_ms17_jun_office_sharepoint.nasl

Version: 1.14

Type: local

Agent: windows

Published: 6/14/2017

Updated: 4/14/2023

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 6.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2017-8513

CVSS v3

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:microsoft:office, cpe:/a:microsoft:sharepoint_server, cpe:/a:microsoft:sharepoint_foundation

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Ease: No known exploits are available

Patch Publication Date: 6/13/2017

Vulnerability Publication Date: 6/13/2017

Reference Information

CVE: CVE-2017-8509, CVE-2017-8511, CVE-2017-8512, CVE-2017-8513, CVE-2017-8514, CVE-2017-8551

BID: 98812, 98815, 98816, 98830, 98831, 98913

IAVA: 2017-A-0179-S

MSFT: MS17-3127894, MS17-3172445, MS17-3203384, MS17-3203385, MS17-3203387, MS17-3203388, MS17-3203390, MS17-3203397, MS17-3203398, MS17-3203399, MS17-3203430, MS17-3203431, MS17-3203432, MS17-3203458

MSKB: 3127894, 3172445, 3203384, 3203385, 3203387, 3203388, 3203390, 3203397, 3203398, 3203399, 3203430, 3203431, 3203432, 3203458