Microsoft Investigates SharePoint 2007 Zero Day

Friday Apr 30th 2010 by Staff

Experts warn the vulnerability could expose enterprise information stored in the popular groupware.

InfoWorld: Earlier this week, researchers at the Swiss firm High-Tech Bridge released code for a SharePoint 2007 exploit that the company says that it disclosed to Microsoft two weeks ago. Security experts warn that hackers could use the flaw to gain access to sensitive corporate information.

"Successful exploitation of this vulnerability could result in a compromise of the application, theft of cookie-based authentication credentials, disclosure or modification of sensitive data," said High-Tech Bridge.

Microsoft officials say that they have reproduced the bug and are working on a security advisory for SharePoint customers.

Mobile Site | Full Site
Copyright 2017 © QuinStreet Inc. All Rights Reserved