Back to search
CVE-2008-4032
Published: Dec 10, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Microsoft Office SharePoint Server 2007 Gold and SP1 and Microsoft Search Server 2008 do not properly perform authentication and authorization for administrative functions, which allows remote attackers to cause a denial of service (server load), obtain sensitive information, and "create scripts that would run in the context of the site" via requests to administrative URIs, aka "Access Control Vulnerability."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1021367
vdb-entry
x_refsource_SECTRACK
ADV-2008-3389
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:5774
vdb-entry
signature
x_refsource_OVAL
33063
third-party-advisory
x_refsource_SECUNIA
TA08-344A
third-party-advisory
x_refsource_CERT
MS08-077
vendor-advisory
x_refsource_MS
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now