CVE-2010-3964

Name of the Vulnerable Software and Affected Versions Microsoft Office SharePoint Server 2007 SP2

Description The issue is related to an unrestricted file upload vulnerability in the Document Conversions Launcher Service. This allows remote attackers to execute arbitrary code via a crafted SOAP request to TCP port 8082. A remote code execution vulnerability exists in the way the Document Conversions Launcher Service validates SOAP requests before processing on a SharePoint server. An attacker who successfully exploited this vulnerability could run arbitrary code on an affected SharePoint server under the security context of a guest account.

Recommendations For Microsoft Office SharePoint Server 2007 SP2, consider disabling the Document Conversions Load Balancer Service as a temporary workaround until a patch is available. Restrict access to the Document Conversions Launcher Service to minimize the risk of exploitation. Avoid using the service for file uploads until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.