Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-3964Unrestricted File Upload in Microsoft Sharepoint Server

6 documents6 sources
Severity
7.5HIGHNVD
EPSS
90.6%
top 0.38%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Sharepoint Server
Timeline
PublishedDec 16
Latest updateMay 14

Description

Unrestricted file upload vulnerability in the Document Conversions Launcher Service in Microsoft Office SharePoint Server 2007 SP2, when the Document Conversions Load Balancer Service is enabled, allows remote attackers to execute arbitrary code via a crafted SOAP request to TCP port 8082, aka "Malformed Request Code Execution Vulnerability."

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-g47q-7h58-pqpc: Unrestricted file upload vulnerability in the Document Conversions Launcher Service in Microsoft Office SharePoint Server 2007 SP2, when the Document2022-05-14
CVEList
CVE-2010-3964: Unrestricted file upload vulnerability in the Document Conversions Launcher Service in Microsoft Office SharePoint Server 2007 SP2, when the Document2010-12-16

💥Exploits & PoCs

2
Exploit-DB
Microsoft Office SharePoint Server 2007 - Remote Code Execution (MS10-104) (Metasploit)2012-07-31
Metasploit
MS10-104 Microsoft Office SharePoint Server 2007 Remote Code Execution

🕵️Threat Intelligence

1
Zscaler
Zscaler found Multiple Security Vulnerabilities | 12-14-2010
CVE-2010-3964 — Unrestricted File Upload in Microsoft | cvebase