In addition to Weibo, there is also WeChat
Please pay attention
WeChat public account
Shulou
2025-02-24 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Internet Technology >
Share
Shulou(Shulou.com)06/01 Report--
Today, I will talk to you about the example analysis of CVE-2020-1181 vulnerabilities in SharePoint remote code execution. Many people may not know much about it. In order to make you understand better, the editor has summarized the following contents for you. I hope you can get something according to this article.
360CERT monitoring found that Microsoft officially issued a risk notification of SharePoint remote code execution vulnerability, vulnerability level: medium risk.
SharePoint Portal Server is a set of portal solutions that enable enterprises to easily develop intelligent portals that seamlessly connect with users, teams, and knowledge. Therefore, users can make better use of the relevant information in the business process and work more effectively.
A remote code execution vulnerability exists when Microsoft SharePoint Server fails to properly identify and filter unsafe ASP.Net Web controls. A remote attacker who successfully exploits this vulnerability (requiring authentication) can execute arbitrary code in the context of the SharePoint application process pool by creating a specially crafted page.
The technical details of the vulnerability have been made public.
In this regard, 360CERT recommends that the majority of users timely install the latest patches, do a good job of asset self-examination and prevention work, so as to avoid hacker attacks.
0x01 risk rating
360CERT's assessment of the vulnerability is as follows
Assessment methods, threat levels, medium risk impact surfaces, general 0x02 impact version
Microsoft SharePoint Enterprise Server 2016
Microsoft SharePoint Foundation 2010 Service Pack 2
Microsoft SharePoint Foundation 2013 Service Pack 1
Microsoft SharePoint Server 2019
0x03 repair recommendations General patching recommendations:
It is recommended that users install the latest patch in time. The corresponding version of the patch and the download address are as follows:
The patch for Microsoft SharePoint Enterprise Server version 2016 can be downloaded from: https://www.microsoft.com/en-us/download/details.aspx?id=101383
The patch for Microsoft SharePoint Foundation 2010 Service Pack version 2 can be downloaded from: https://www.microsoft.com/en-us/download/details.aspx?id=101379
The patch for Microsoft SharePoint Foundation 2013 Service Pack 1 can be downloaded from: https://www.microsoft.com/en-us/download/details.aspx?id=101435
The patch for Microsoft SharePoint Server version 2019 can be downloaded from:
Https://www.microsoft.com/en-us/download/details.aspx?id=101405
0x04 related spatial mapping data
Through surveying and mapping the assets of the whole network, it is found that SharePoint is widely used all over the world, as shown in the following figure.
0x05 product side solution 360city-level network security monitoring service
The QUAKE asset mapping platform of the security brain monitors such vulnerabilities by means of asset mapping technology, and asks users to contact the relevant product area leaders to obtain the corresponding products.
After reading the above, do you have any further understanding of the SharePoint remote code execution CVE-2020-1181 vulnerability example analysis? If you want to know more knowledge or related content, please follow the industry information channel, thank you for your support.
Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.
Views: 0
*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.
Continue with the installation of the previous hadoop.First, install zookooper1. Decompress zookoope
"Every 5-10 years, there's a rare product, a really special, very unusual product that's the most un
© 2024 shulou.com SLNews company. All rights reserved.