Lucene search
MitreCVE-2009-3830HistoryOct 30, 2009 - 8:30 p.m.
CVE-2009-3830
2009-10-3020:30:00
CWE-20
mitre
web.nvd.nist.gov
26
cve-2009-3830
team services
microsoft office sharepoint server 2007
security vulnerability
asp.net
remote attack
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.7
Confidence
Low
EPSS
0.882
Percentile
98.7%
The download functionality in Team Services in Microsoft Office SharePoint Server 2007 12.0.0.4518 and 12.0.0.6219 allows remote attackers to read ASP.NET source code via pathnames in the SourceUrl and Source parameters to _layouts/download.aspx.
Affected configurations
Node
microsoftsharepoint_serverMatch2007
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | sharepoint_server | 2007 | cpe:2.3:a:microsoft:sharepoint_server:2007:*:*:*:*:*:*:* |
Related
prion
prion
Code injection
2009-10-30 20:30:00
nvd
nvd
CVE-2009-3830
2009-10-30 20:30:00
openvas
openvas
Microsoft SharePoint Team Services Information Disclosure Vulnerability
2009-11-05 00:00:00
Microsoft SharePoint Team Services Information Disclosure Vulnerability
2009-11-05 00:00:00
cvelist
cvelist
CVE-2009-3830
2009-10-30 20:05:00
exploitdb
exploitdb
SharePoint 2007 - Team Services Source Code Disclosure
2009-10-26 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.7
Confidence
Low
EPSS
0.882
Percentile
98.7%
Related for CVE-2009-3830