SharePoint Security Snafu -- Redmond Channel Partner

Barney's Blog

SharePoint Security Snafu

SharePoint Services 3.0 and Office SharePoint Server 2007 are both affected by an elevation of privileges flaw.

Similar to a recently announced IE 8 flaw, hackers use cross-site scripting to wage attacks. Here, malicious code is embedded into SharePoint-based Web pages. Similar to phishing scams, users are led to these sites through spam.

The lesson here? Don't just rely on patches, but train you end users to avoid clicking anything that is the least bit suspect.

Do you train your users in security? Does it work? Share your best advice with us by writing to dbarney@redmondmag.com.

Posted by Doug Barney on May 05, 2010 at 11:53 AM

Printable Format

Microsoft Goes Live with Azure File Sync Service

The 2018 Microsoft Product Roadmap

Top Dog(fooder): Nadella Details His Daily Use of Microsoft 365

2018 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Microsoft Inspire: Explaining That $4.5 Trillion Opportunity

Free Partner Guide PDFs from RCP's editors

FREE WHITE PAPERS FROM OUR SPONSORS

More White Papers

Partner Resources

Hot Topics

More Resources

Barney's Blog