All the latest UK technology news, reviews and analysis
|
|
|
01 May 2010
Microsoft is warning of a flaw in SharePoint Server 2007 and SharePoint Services 3.0 which could allow a cross-site scripting attack.
The company said that there have been no reports of attacks targeting the vulnerability, which could allow an attacker to access the SharePoint site with elevated privileges.
Administrators are advised to apply an access control list to the SharePoint Help.aspx file to prevent unauthorised users gaining access to the vulnerable components.
Applying the measure will, however, disable the help function for all users on the affected SharePoint site.
Microsoft noted that the cross-site scripting protections in Internet Explorer 8 could also help to prevent an attack.
The firm is developing and fix and is currently planning to release a patch next month with its May security update.
Latest stories from Security
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
TFL director of Games transport Mark Evers discusses how the public transport network is preparing for this summer's event
Connect with V3.co.uk
The wrong printers, for the wrong tasks on the wrong contracts
Who leads the BI pack and who should we be watching out for?
Sales Consultant - Data Centre, Colocation, Hosting...
Senior Interaction Designer (User Experience, UCD, Interactive...
Information Architecture / IA / User Experience / UX...
Sales Consultant A rapidly expanding independent managed...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?