CVE-2011-1892

Name of the Vulnerable Software and Affected Versions Microsoft Office Groove 2007 SP2 SharePoint Workspace 2010 Gold and SP1 Office Forms Server 2007 SP2 Office SharePoint Server 2007 SP2 Office SharePoint Server 2010 Gold and SP1 Office Groove Data Bridge Server 2007 SP2 Office Groove Management Server 2007 SP2 Groove Server 2010 Gold and SP1 Windows SharePoint Services 3.0 SP2 SharePoint Foundation 2010 Office Web Apps 2010 Gold and SP1

Description The issue allows remote authenticated users to read arbitrary files via a crafted XML and XSL file. A file disclosure vulnerability exists in Microsoft Office SharePoint that could allow a malicious authenticated user to use a specially crafted XML file to gain read-only access to a local file on the SharePoint server under the security context of the account running SharePoint.

Recommendations For Microsoft Office Groove 2007 SP2, consider disabling the Web Parts containing XML classes referencing external entities until a patch is available. For SharePoint Workspace 2010 Gold and SP1, restrict access to the XML file upload feature to minimize the risk of exploitation. For Office Forms Server 2007 SP2, avoid using the XML and XSL file combination in the Web Parts until the issue is resolved. For Office SharePoint Server 2007 SP2, apply configuration changes to limit the access to local files on the SharePoint server. For Office SharePoint Server 2010 Gold and SP1, restrict the security context of the account running SharePoint to prevent read-only access to local files. For Office Groove Data Bridge Server 2007 SP2, consider disabling the Web Parts feature until a patch is available. For Office Groove Management Server 2007 SP2, restrict access to the XML file upload feature to minimize the risk of exploitation. For Groove Server 2010 Gold and SP1, avoid using the XML and XSL file combination in the Web Parts until the issue is resolved. For Windows SharePoint Services 3.0 SP2, apply configuration changes to limit the access to local files on the SharePoint server. For SharePoint Foundation 2010, restrict the security context of the account running SharePoint to prevent read-only access to local files. For Office Web Apps 2010 Gold and SP1, consider disabling the Web Parts containing XML classes referencing external entities until a patch is available.