Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 

AshishSharePointBlog

I am Ashish Banga, and I work as a Senior Software Engineer at an IT Company. I have around 4 years of experience in Microsoft Technology, focusing on SharePoint and also on Windows Server. I work as a SharePoint Administrator. I am a B.Tech Graduate and Microsoft Certified Technology Specialist in SharePoint and also ITIL V3 Foundation Certified. I blog about what I face and what I learn, trying to share with all.

Microsoft Security Bulletin || Vulnerabilities in FAST Search Server 2010 || Remote Code Execution

Friends, Microsoft has release a security bulletin for a FAST Search for SharePoint 2010. PF below for more help.

Full Details available at: http://technet.microsoft.com/security/bulletin/MS13-013

Bulletin ID : MS13-013
Bulletin Name: Vulnerabilities in FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution (2784242)
Maximum Severity Rating: Important
Vulnerability Impact: Remote Code Execution
Restart Requirement: May require restart
Affected Software: Microsoft FAST Search Server 2010 for SharePoint and Advanced Filter Pack.

General Information

Summary:This security update resolves publicly disclosed vulnerabilities in Microsoft FAST Search Server 2010 for SharePoint. The vulnerabilities could allow remote code execution in the security context of a user account with a restricted token. FAST Search Server for SharePoint is only affected by this issue when Advanced Filter Pack is enabled. By default, Advanced Filter Pack is disabled.

This security update is rated Important for supported editions of FAST Search Server 2010 for SharePoint. For more information, see the subsection, Affected and Non-Affected Software, in this section.The security update addresses the vulnerabilities by updating the affected Oracle Outside In libraries to a non-vulnerable version. For more information about the vulnerabilities, see the Frequently Asked Questions (FAQ) subsection for the specific vulnerability entry under the next section, Vulnerability Information.

This update is available from the Microsoft Download Center only.

If you liked this post, do like on Facebook at: https://www.facebook.com/Ashishsharepointblog

Feel free to Rate and provide feedback if you find post useful
Hope this help
Ashi


Filed under: SharePoint2010, SQLServerPedia

Comments

Leave a comment on the original post [ashishbanga.wordpress.com, opens in a new window]

Loading comments...