CVE-2013-0085 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft Sharepoint Foundation

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources

Severity

7.8HIGHNVD

EPSS

70.1%

top 1.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Sharepoint Foundation Microsoft Sharepoint Server

Timeline

PublishedMar 13

Latest updateMay 5

Description

Buffer overflow in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allows remote attackers to cause a denial of service (W3WP process crash and site outage) via a crafted URL, aka "Buffer Overflow Vulnerability."

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

▶NVDmicrosoft/sharepoint_server2010

▶NVDmicrosoft/sharepoint_foundation2010

🔴Vulnerability Details

GHSA

GHSA-6rm6-8j5v-wqjm: Buffer overflow in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allows remote attackers to cause a denial of service (W3WP↗2022-05-05

▶

CVEList

CVE-2013-0085: Buffer overflow in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allows remote attackers to cause a denial of service (W3WP↗2013-03-13

▶