← volver
CVE-2010-3964

CVE-2010-3964

EPSS 93.9%
Unrestricted file upload vulnerability in the Document Conversions Launcher Service in Microsoft Office SharePoint Server 2007 SP2, when the Document Conversions Load Balancer Service is enabled, allows remote attackers to execute arbitrary code via a crafted SOAP request to TCP port 8082, aka "Malformed Request Code Execution Vulnerability."
Productos afectados
n/a · n/a
PoCs públicas encontradas1
exploitdbwww.exploit-db.com/exploits/20122no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://osvdb.org/69817https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-104http://secunia.com/advisories/42631https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11737http://www.securityfocus.com/bid/45264http://www.securitytracker.com/id?1024886http://www.us-cert.gov/cas/techalerts/TA10-348A.htmlhttp://www.vupen.com/english/advisories/2010/3226http://www.zerodayinitiative.com/advisories/ZDI-10-287/