Microsoft Windows Sharepoint Help Page Denial of Service Vulnerability

Overview

» IDS/IPS Signatures

Security Sites

iPolicy Networks Security Advisory


Date Discovered:	08/06/2010
Severity:	Medium
Operating Systems Affected:	Microsoft Windows
Application Affected:	Microsoft Windows SharePoint Services 3.0 SP 1 Microsoft Windows SharePoint Services 3.0 SP 2 (32-bit) Microsoft Windows SharePoint Services 3.0 SP 1 Microsoft Windows SharePoint Services 3.0 SP 2 (64-bit)
Identifiers:	CVE-2010-1264

Synopsis

Microsoft Windows SharePoint is susceptible to denial of service vulnerability in the way it handles specially crafted requests to the help page. This vulnerability can cause the Web server to become non-responsive.

Recommended Actions

Please refer following link provided by Microsoft to apply the appropriate patches:
http://www.microsoft.com/technet/security/Bulletin/MS10-039.mspx

Threat Analysis

A denial of service vulnerability exists in the way that Microsoft SharePoint handles specially crafted requests to the help page.

An attacker could exploit the vulnerability by sending specially crafted packets to the targeted SharePoint server which could cause the Web server to become non-responsive until the associated application pool is restarted.

The attacker must be authenticated on the SharePoint site in order to exploit this vulnerability.

References

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1264

Write-up by: Ashish Joshi