Published: 16/12/2010 Updated: 12/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Unrestricted file upload vulnerability in the Document Conversions Launcher Service in Microsoft Office SharePoint Server 2007 SP2, when the Document Conversions Load Balancer Service is enabled, allows remote malicious users to execute arbitrary code via a crafted SOAP request to TCP port 8082, aka "Malformed Request Code Execution Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft sharepoint server 2007

## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # web site for more information on licensing and terms of use # metasploitcom/ ## require 'msf/core' class Metasploit3 < Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit ...

NVD-CWE-Other http://www.vupen.com/english/advisories/2010/3226 http://osvdb.org/69817 http://www.zerodayinitiative.com/advisories/ZDI-10-287/http://secunia.com/advisories/42631 http://www.securityfocus.com/bid/45264 http://www.securitytracker.com/id?1024886 http://www.us-cert.gov/cas/techalerts/TA10-348A.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11737 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-104 https://nvd.nist.gov https://www.exploit-db.com/exploits/20122/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-3964

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect