Published: 11/09/2013 Updated: 12/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Microsoft SharePoint Portal Server 2003 SP3 and SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 do not properly process unassigned workflows, which allows remote malicious users to cause a denial of service (W3WP process hang) via a crafted URL, aka "SharePoint Denial of Service Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft sharepoint foundation 2010
microsoft sharepoint server 2007
microsoft sharepoint server 2010
microsoft sharepoint server 2013
microsoft sharepoint foundation 2013
microsoft sharepoint portal server 2003
microsoft sharepoint services 3.0
microsoft sharepoint services 2.0

CWE-20 http://www.us-cert.gov/ncas/alerts/TA13-253A https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19036 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-067 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-0081

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect