Vulnerabilities > CVE-2005-0049 - Unspecified vulnerability in Microsoft Sharepoint Portal Server and Sharepoint Team Services

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

microsoft

NVD

Published: 2005-05-02

Updated: 2018-10-12

Summary

Windows SharePoint Services and SharePoint Team Services for Windows Server 2003 does not properly validate an HTTP redirection query, which allows remote attackers to inject arbitrary HTML and web script via a cross-site scripting (XSS) attack, or to spoof the web cache.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Sharepoint Portal Server 2003 Microsoft Sharepoint Team Services *	3

References

http://www.kb.cert.org/vuls/id/340409
http://www.us-cert.gov/cas/techalerts/TA05-039A.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-006
https://exchange.xforce.ibmcloud.com/vulnerabilities/19091