First published: Wed Dec 11 2013(Updated: )
Microsoft SharePoint Server 2010 SP1 and SP2 and 2013, and Office Web Apps 2013, allows remote attackers to execute arbitrary code via crafted page content, aka "SharePoint Page Content Vulnerabilities."
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Office Web Apps | =2013 | |
Microsoft SharePoint Server 2010 | =2010-sp1 | |
Microsoft SharePoint Server 2010 | =2010-sp2 | |
Microsoft SharePoint Server 2010 | =2013 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2013-5059 has a critical severity rating due to its potential to allow remote code execution.
To fix CVE-2013-5059, apply the relevant security patches provided by Microsoft for affected versions of SharePoint Server and Office Web Apps.
CVE-2013-5059 affects Microsoft SharePoint Server 2010 SP1, SP2, 2013, and Office Web Apps 2013.
CVE-2013-5059 can be exploited through crafted page content, allowing attackers to execute arbitrary code.
There are no official workarounds for CVE-2013-5059; the recommended action is to apply the security updates.