CVE-2020-0932

Name of the Vulnerable Software and Affected Versions Microsoft SharePoint (affected versions not specified)

Description A remote code execution issue exists in Microsoft SharePoint due to the software's failure to properly check the source markup of an application package. This allows an attacker to execute arbitrary code in the context of the SharePoint application pool and the SharePoint server farm account by uploading a specially crafted SharePoint application package. The vulnerability is also related to the TypeConversion method, which can cause arbitrary code execution because SharePoint does not restrict available types for properties when parsing the XML configuration of WebParts. An attacker can specify a string and a type name, and SharePoint will attempt to convert the string using a TypeConverter corresponding to the specified type, with some TypeConverters allowing for arbitrary code execution. The entry point for this attack is the WebPartPages web service, specifically the RenderWebPartForEdit method, found at the /vti bin/WebPartPages.asmx endpoint.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.