November 20, 2023
Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]
Rewterz Threat Advisory -CVE-2019-6567 – ICS: Siemens SCALANCE X Password Protection Vulnerability
June 13, 2019Rewterz threat Advisory – CVE-2019-1904 – Cisco IOS XE Cross-Site Request Forgery Vulnerability
June 13, 2019Rewterz Threat Advisory -CVE-2019-6567 – ICS: Siemens SCALANCE X Password Protection Vulnerability
June 13, 2019Rewterz threat Advisory – CVE-2019-1904 – Cisco IOS XE Cross-Site Request Forgery Vulnerability
June 13, 2019
Severity
Medium
Analysis summary
CVE-2019-1033, CVE-2019-1036, CVE-2019-1031
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server.
Impact
Cross Site Scripting
Affected Vendors
Microsoft
Affected Products
Microsoft SharePoint Foundation 2013
Remediation
Apply update.
Microsoft SharePoint Foundation 2013 Service Pack 1 (KB4464602):
https://www.microsoft.com/downloads/details.aspx?familyid=b4cf0fb9-bfc6-4c8c-9696-c14b96091839
Microsoft SharePoint Foundation 2013 Service Pack 1 (KB4464597):
https://www.microsoft.com/downloads/details.aspx?familyid=9b445eb9-105f-4403-98c7-105f95fb45be