CVE-2012-1862

Name of the Vulnerable Software and Affected Versions Microsoft Office SharePoint Server 2007 versions SP2 through SP3

Description The issue allows remote attackers to redirect users to arbitrary web sites, potentially leading to phishing attacks, via a crafted URL. This could result in spoofing and information disclosure, enabling an attacker to redirect a user to an external URL.

Recommendations For Microsoft Office SharePoint Server 2007 versions SP2 and SP3, consider restricting access to external URLs to minimize the risk of exploitation. As a temporary workaround, avoid using crafted URLs that could lead to redirection until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.