Navigation section
cve-2013-1330
About this tag
CVE-2013-1330 is a security vulnerability addressed in Microsoft's MS13-067 bulletin, which covers critical vulnerabilities in Microsoft SharePoint Server and other Microsoft Office Server software. This specific vulnerability was publicly disclosed and could allow remote code execution in the context of the W3WP service account if an attacker sends specially crafted content to the affected server. The MS13-067 update resolves CVE-2013-1330 along with nine privately reported vulnerabilities. The bulletin originally included a workaround to enable viewstate MAC on sites, but this workaround was later removed in revision V1.1. Administrators should ensure the security update is applied to protect SharePoint environments from potential remote code execution attacks.
-
MS13-067 - Critical : Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code...
Severity Rating: Critical Revision Note: V1.1 (September 11, 2013): Removed the workaround, Enable viewstate MAC on sites where it is not already enabled, for CVE-2013-1330. Summary: This security update resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in...- News
- Thread
- critical cve-2013-1330 extended security updates microsoft office server remote code execution risk mitigation sharepoint vulnerability w3wp
- Replies: 0
- Forum: Security Alerts
-
MS13-067 - Critical : Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code...
Severity Rating: Critical Revision Note: V1.1 (September 11, 2013): Removed the workaround, Enable viewstate MAC on sites where it is not already enabled, for CVE-2013-1330. Summary: This security update resolves one publicly disclosed vulnerability and nine privately reported vulnerabilities in...- News
- Thread
- critical cve-2013-1330 microsoft office remote code execution security server sharepoint update vulnerability
- Replies: 0
- Forum: Security Alerts