10.284.2012 - MS12-066 - Important : Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege (2741517) - Version: 1.1

Severity Rating: Important Revision Note: V1.1 (October 10, 2012): Corrected KB numbers for Microsoft Lync 2010 Attendee (admin level install) and Microsoft Lync 2010 Attendee (user level install). This is an informational change only. Customers who have already successfully updated their systems do not need to take any action. Summary: This security update resolves a publicly disclosed vulnerability in Microsoft Office, Microsoft Communications Platforms, Microsoft Server software, and Microsoft Office Web Apps. The vulnerability could allow elevation of privilege if an attacker sends specially crafted content to a user. clicks a specially crafted URL that takes the user to a targeted SharePoint site. - View Microsoft Security Bulletin MS12-066 - View Microsoft Knowledge Base Article - on: 1. - Visit Microsoft Corporation