Home / bulletins MS12-066 - Important : Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege (2741517) - Version: 1.2
Posted on 18 October 2012
There is an newer version: MS12-066 - Version: 1.4
ImportantSeverity Rating: Important
Revision Note: V1.2 (October 17, 2012): Corrected update replacement information. Corrected KB numbers for Microsoft Lync 2010 Attendee (admin level install) and Microsoft Lync 2010 Attendee (user level install). These are informational changes only. Customers who have already successfully updated their systems do not need to take any action.
Summary: This security update resolves a publicly disclosed vulnerability in Microsoft Office, Microsoft Communications Platforms, Microsoft Server software, and Microsoft Office Web Apps. The vulnerability could allow elevation of privilege if an attacker sends specially crafted content to a user. clicks a specially crafted URL that takes the user to a targeted SharePoint site.Other versions
- MS12-066 - Version: 1.0
- MS12-066 - Version: 1.1
- MS12-066 - Version: 1.2
- MS12-066 - Version: 1.3
- MS12-066 - Version: 1.4
