MS12-011: Vulnerabilities in Microsoft SharePoint Could Allow Elevation of Privilege (2663841)
14 FEB 2012
Internet Security Systems Guidance
Three privately reported vulnerabilities in Microsoft Sharepoint were fixed in this update. All could be abused to achieve cross-site-scripting in various Sharepoint pages/controls. Those who have publicly facing vulnerable SharePoint installations should apply this update.
X-Force Database: http://xforce.iss.net/xforce/xfdb/72884
X-Force Database: http://xforce.iss.net/xforce/xfdb/72885
X-Force Database: http://xforce.iss.net/xforce/xfdb/72887
X-Force Database: http://xforce.iss.net/xforce/xfdb/72886