Detections
Analytics

Security Updates for Microsoft SharePoint Server and Microsoft Project Server (November 2017)

high Nessus Plugin ID 104570

Language:

Synopsis

The Microsoft SharePoint Server or Microsoft Project Server installation on the remote host is missing a security update.

Description

The Microsoft SharePoint Server or Microsoft Project Server installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability :

 - An elevation of privilege vulnerability exists in Microsoft Project when Microsoft Project Server does not properly manage user sessions. For this Cross-site Request Forgery(CSRF/XSRF) vulnerability to be exploited, the victim must be authenticated to (logged on) the target site. (CVE-2017-11876)

 - A remote code execution vulnerability exists when a user opens a specially crafted office file. (ADV170020).

Solution

Microsoft has released the following security updates to address this issue:
-KB4011267
 -KB4011244
 -KB4011245
 -KB4011257

See Also

http://www.nessus.org/u?441fc23d

http://www.nessus.org/u?4fbd25b4

http://www.nessus.org/u?42a3373f

http://www.nessus.org/u?e718850e

Plugin Details

Severity: High

ID: 104570

File Name: smb_nt_ms17_nov_office_sharepoint.nasl

Version: 1.12

Type: local

Agent: windows

Published: 11/15/2017

Updated: 6/6/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS Score Source: CVE-2017-11876

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:microsoft:sharepoint_server:2010, cpe:/a:microsoft:sharepoint_foundation, cpe:/a:microsoft:project_server, cpe:/a:microsoft:sharepoint_server:2013, cpe:/a:microsoft:sharepoint_server:2016, cpe:/a:microsoft:office

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Ease: No known exploits are available

Patch Publication Date: 11/14/2017

Vulnerability Publication Date: 11/14/2017

Reference Information

CVE: CVE-2017-11876

BID: 101754

IAVA: 2017-A-0337-S

MSFT: MS17-4011244, MS17-4011245, MS17-4011257, MS17-4011267

MSKB: 4011244, 4011245, 4011257, 4011267