Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

How does the risk of Microsoft SharePoint Server information disclosure vulnerability suggest?

2025-01-29 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Internet Technology >

Share

Shulou(Shulou.com)06/01 Report--

Microsoft SharePoint Server information disclosure vulnerability risk is how to prompt, in view of this problem, this article introduces the corresponding analysis and solution in detail, hoping to help more partners who want to solve this problem to find a more simple and feasible method.

0x00 vulnerability background

From December 20,2019 to December 17th, Microsoft officially issued a CVE-2019-1491 vulnerability warning and patch.

Microsoft SharePoint is a set of enterprise business collaboration platform of Microsoft. The platform is used to integrate business information, and can share work, work with others, organize projects and workgroups, and search for people and information. An information disclosure vulnerability exists in SharePoint Server. To exploit this vulnerability, an attacker needs to send a special request to a specific instance of SharePoint Server. An attacker who successfully exploits this vulnerability can read arbitrary files on the target server.

360CERT judges that the vulnerability level is high and the damage area / influence area is wide. It is recommended that Microsoft SharePoint users install the latest patches in time to avoid hacker attacks.

0x01 affects version

Microsoft SharePoint Enterprise Server 2016

Microsoft SharePoint Foundation 2010 Service Pack 2

Microsoft SharePoint Foundation 2013 Service Pack 1

Microsoft SharePoint Server 2019

0x02 repair recommendation

At present, Microsoft has officially released an upgrade patch to fix the vulnerability, and 360CERT recommends that users confirm whether they are affected by the vulnerability and take remedial measures as soon as possible. The official patch link is as follows:

Https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1491

The answer to the question about how the risk of Microsoft SharePoint Server information disclosure vulnerabilities is prompted is shared here. I hope the above content can be of some help to you. If you still have a lot of doubts to be solved, you can follow the industry information channel for more related knowledge.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Share To

Internet Technology

Wechat

© 2024 shulou.com SLNews company. All rights reserved.

12
Report