BlogPost

The official blog of the Microsoft SharePoint Product Group

2010

August 16

Microsoft Security Bulletin Summary for December 2008

System Account on 8/16/2010 1:40 AM

Category: Deployment Security Hotfix updates Bulletin

Yesterday, we released a security bulletin summary for December 2008. Within the bulletin summary, you will find Microsoft Security Bulletin MS08-077 which is a security update that resolves a privately reported vulnerability. This security update is rated as important and addresses the elevation of privilege if an attacker bypasses authentication by browsing to an administrative URL on a SharePoint site. The affected products are SharePoint Server 2007 and Search Server 2008. The security update was included within the October Cumulative Update so for those that have not applied the October CU, we recommend applying this security update at the earliest opportunity. Finally, we are planning to include this security update in Service Pack 2. Please follow best practices by testing and also make sure you have a recoverable backup of your environment before final deployment.

Jie Li & Dave Pae
SharePoint Technical Product Manager

3 Comment(s)

Comments

web tasarım

super http://www.parcakontorbayiniz.com mıracle.

Commented by <empty> on 8/9/2009 11:30:37 AM

System Account

on 8/9/2009 11:30 AM

Lots of stuff happening, and a bit of philosophy.

I'm not dead or gone, just had a lot of work to do. Have started to record a lot of screen casts

Commented by <empty> on 12/13/2008 12:20:10 PM

System Account

on 12/13/2008 12:20 PM

Microsoft SharePoint Team Blog : Microsoft Security Bulletin … | crmcourses.com

PingBack from http://crmcourses.com/microsoft-sharepoint-team-blog-microsoft-security-bulletin/

Commented by <empty> on 12/11/2008 6:19:44 AM

System Account

on 12/11/2008 6:19 AM

View in Web Browser

/blog/_layouts/VisioWebAccess/VisioWebAccess.aspx?listguid={ListId}&itemid={ItemId}&DefaultItemOpen=1

0x0

0x1

FileType

vdw

255

Compliance Details

javascript:commonShowModalDialog('{SiteUrl}/_layouts/itemexpiration.aspx?ID={ItemId}&List={ListId}', 'center:1;dialogHeight:500px;dialogWidth:500px;resizable:yes;status:no;location:no;menubar:no;help:no', function GotoPageAfterClose(pageid){if(pageid == 'hold') {STSNavigate(unescape(decodeURI('{SiteUrl}'))+'/_layouts/hold.aspx?ID={ItemId}&List={ListId}'); return false;} if(pageid == 'audit') {STSNavigate(unescape(decodeURI('{SiteUrl}'))+'/_layouts/Reporting.aspx?Category=Auditing&backtype=item&ID={ItemId}&List={ListId}'); return false;} if(pageid == 'config') {STSNavigate(unescape(decodeURI('{SiteUrl}'))+'/_layouts/expirationconfig.aspx?ID={ItemId}&List={ListId}'); return false;}}, null); return false;

0x0

0x1

ContentType

0x01

898

Edit in Browser

/_layouts/images/icxddoc.gif

/blog/_layouts/formserver.aspx?XsnLocation={ItemUrl}&OpenIn=Browser&Source={Source}

0x0

0x1

FileType

xsn

255

Edit in Browser

/_layouts/images/icxddoc.gif

/blog/_layouts/formserver.aspx?XmlLocation={ItemUrl}&OpenIn=Browser&Source={Source}

0x0

0x1

ProgId

InfoPath.Document

255

Edit in Browser

/_layouts/images/icxddoc.gif

/blog/_layouts/formserver.aspx?XmlLocation={ItemUrl}&OpenIn=Browser&Source={Source}

0x0

0x1

ProgId

InfoPath.Document.2

255

Edit in Browser

/_layouts/images/icxddoc.gif

/blog/_layouts/formserver.aspx?XmlLocation={ItemUrl}&OpenIn=Browser&Source={Source}

0x0

0x1

ProgId

InfoPath.Document.3

255

Edit in Browser

/_layouts/images/icxddoc.gif

/blog/_layouts/formserver.aspx?XmlLocation={ItemUrl}&OpenIn=Browser&Source={Source}

0x0

0x1

ProgId

InfoPath.Document.4

255

View in Browser

/blog/_layouts/xlviewer.aspx?id={ItemUrl}&DefaultItemOpen=1

0x0

0x1

FileType

xlsx

255

View in Browser

/blog/_layouts/xlviewer.aspx?id={ItemUrl}&DefaultItemOpen=1

0x0

0x1

FileType

xlsm

255

View in Browser

/blog/_layouts/xlviewer.aspx?id={ItemUrl}&DefaultItemOpen=1

0x0

0x1

FileType

xlsb

255

View in Browser

/blog/_layouts/xlviewer.aspx?id={ItemUrl}&DefaultItemOpen=1

0x0

0x1

FileType

ods

255

Add Comment

Items on this list require content approval. Your submission will not appear in public views until approved by someone with proper rights. More information on content approval.

Title

Body *

Captcha

Please verify the text shown in the image

‭(Hidden)‬ Content Editor

Comments

web tasarım

Lots of stuff happening, and a bit of philosophy.

Microsoft SharePoint Team Blog : Microsoft Security Bulletin … | crmcourses.com

Add Comment

Title

Body *

Captcha

Commented By

Migrated Source URL

Commentator Name

Commentator Email

Attachments

‭(Hidden)‬ Content Editor

Comments

web tasarım

Lots of stuff happening, and a bit of philosophy.

Microsoft SharePoint Team Blog : Microsoft Security Bulletin &#8230; | crmcourses.com

Add Comment

Title

Body *

Captcha

Commented By

Migrated Source URL

Commentator Name

Commentator Email

Attachments

Microsoft SharePoint Team Blog : Microsoft Security Bulletin … | crmcourses.com