CVE-2013-0084

Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 - Directory Traversal via Crafted URL

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allows remote attackers to bypass intended read restrictions for content, and hijack user accounts, via a crafted URL, aka "SharePoint Directory Traversal Vulnerability."

References (3)

Core 3
Core References
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/ncas/alerts/TA13-071A
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16445

Scores

EPSS 0.2135
EPSS Percentile 97.3%

Details

CWE
CWE-22
Status published
Products (2)
microsoft/sharepoint_foundation 2010 sp1
microsoft/sharepoint_server 2010 sp1
Published Mar 13, 2013
Tracked Since Feb 18, 2026