10.297.2012 - MS12-066 - Important : Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege (2741517) - Version: 1.3

Severity Rating: Important Revision Note: V1.3 (October 23, 2012): Added Microsoft Windows SharePoint Services 3.0 Service Pack 3 (32-bit version) and Microsoft Windows SharePoint Services 3.0 Service Pack 3 (64-bit version) to the Affected Software section. This is a bulletin change only. There were no changes to the detection logic or security update files. Summary: This security update resolves a publicly disclosed vulnerability in Microsoft Office, Microsoft Communications Platforms, Microsoft Server software, and Microsoft Office Web Apps. The vulnerability could allow elevation of privilege if an attacker sends specially crafted content to a user. clicks a specially crafted URL that takes the user to a targeted SharePoint site. - View Microsoft Security Bulletin MS12-066 - View Microsoft Knowledge Base Article - on: 1. - Visit Microsoft Corporation