Status Tracking Note JVNTR-2010-18

Vulnerability in Microsoft SharePoint (CVE-2010-0817, MS10-039, TA10-159B)

Overview

A vulnerability exists in Microsoft SharePoint.
Event Information

Date (UTC)Description
2010-06-09 02:28 JPCERT/CC
JPCERT-AT-2010-0014: June 2010 Microsoft Security Bulletin (including three critical patches)
Public notification for "Microsoft Security Bulletin Summary for June 2010"
2010-06-08 21:12 SANS Internet Storm Center
June 2010 Microsoft Black Tuesday Summary
Public notification for "Microsoft Security Bulletin Summary for June 2010"
2010-06-08 19:32 US-CERT
TA10-159B: Microsoft Updates for Multiple Vulnerabilities
Technical Cyber Security Alert publised via US-CERT Mailing List.
Public notification for "Microsoft Security Bulletin Summary for June 2010"
2010-06-08 18:25 Microsoft
MS10-039: Microsoft Security Bulletin Summary for June 2010
Security Update (MS10-039) released.
2010-06-08 18:10 Symantec
ThreatCON (1) => (2)
2010-06-08 17:30 US-CERT
Microsoft Releases June Security Bulletin
US-CERT Current Activity
Public notification for "Microsoft Security Bulletin Summary for June 2010"
2010-06-04 16:17 Microsoft
ms10-jun: Microsoft Security Bulletin Advance Notification for June 2010
Advance notification for Security Update.
2010-04-30 14:47 US-CERT
Microsoft Releases Security Advisory 983438
US-CERT Current Activity
Public notification for "Security Advisory (983438) ".
2010-04-30 14:10 SANS Internet Storm Center
CVE-2010-0817 SharePoint XSS Scorecard
2010-04-30 11:29 SANS Internet Storm Center
Sharepoint XSS Vulnerability
Public notification for "Security Advisory (983438) ".
2010-04-30 00:27 Microsoft
Microsoft Security Advisory (983438): Vulnerability in Microsoft SharePoint Could Allow Elevation of Privilege
Security Advisory (983438) published.
2010-04-28 16:12 High-Tech Bridge SA
HTB22350: XSS in Microsoft SharePoint Server 2007
Vulnerability proof-of-concept code posted to Mailing List.
2010-04-12 High-Tech Bridge SA
HTB22350: XSS in Microsoft SharePoint Server 2007
Vulnerability reported to vendor.

Reference

Date first published (UTC): 2010-07-11T06:48+00:00
Date last updated (UTC): 2010-07-11T06:48+00:00
Valid HTML 4.01!