Home / bulletins MS12-066 - Important : Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege (2741517) - Version: 1.3
Posted on 23 October 2012
There is an newer version: MS12-066 - Version: 1.4
ImportantSeverity Rating: Important
Revision Note: V1.3 (October 23, 2012): Added Microsoft Windows SharePoint Services 3.0 Service Pack 3 (32-bit version) and Microsoft Windows SharePoint Services 3.0 Service Pack 3 (64-bit version) to the Affected Software section. This is a bulletin change only. There were no changes to the detection logic or security update files.
Summary: This security update resolves a publicly disclosed vulnerability in Microsoft Office, Microsoft Communications Platforms, Microsoft Server software, and Microsoft Office Web Apps. The vulnerability could allow elevation of privilege if an attacker sends specially crafted content to a user. clicks a specially crafted URL that takes the user to a targeted SharePoint site.Other versions
- MS12-066 - Version: 1.0
- MS12-066 - Version: 1.1
- MS12-066 - Version: 1.2
- MS12-066 - Version: 1.3
- MS12-066 - Version: 1.4
