CVE-2017-8654

Description

Microsoft SharePoint Server 2010 Service Pack 2 allows a cross-site scripting (XSS) vulnerability when it does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft Office SharePoint XSS Vulnerability".

Affected products

• Microsoft Corporation / Microsoft OfficeMicrosoft SharePoint Server 2010 Service Pack 2 – Microsoft SharePoint Server 2010 Service Pack 2

References

• MISChttp://www.securitytracker.com/id/1039111
• MISChttp://www.securityfocus.com/bid/100064
• VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8654