Story image

SharePoint vulnerability patch incoming

04 Jun 10

The Microsoft SharePoint servers remain vulnerable but a patch is on its way, data security firm Imperva has said.

“Since April 12, all Microsoft SharePoint users have been vulnerable to a web-based attack on their help.aspx page,” says Imperva.

The problem was identified on April 29th and Microsoft has since been working on a fix.

The patch is due for release on June 8th “possibly for the web interface” adds Imperva.

“Everyone with a public facing SharePoint portal needs a web application firewall (WAF) to mitigate this vulnerability while waiting for Microsoft to release a patch. Many organisations have unprotected SharePoint servers accessible from the Internet, for partners and customers to access.”

10 patches are expected to be released next week as part of the latest Microsoft update.

MulteFire announces industrial IoT network specification
The specification aims to deliver robust wireless network capabilities for Industrial IoT and enterprises.
Google Cloud, Palo Alto Networks extend partnership
Google Cloud and Palo Alto Networks have extended their partnership to include more security features and customer support for all major public clouds.
DigiCert conquers Google's distrust of Symantec certs
“This could have been an extremely disruptive event to online commerce," comments DigiCert CEO John Merrill. 
Schneider Electric's bets for the 2019 data centre industry
From IT and telco merging to the renaissance of liquid cooling, here are the company's top predictions for the year ahead.
China to usurp Europe in becoming AI research world leader
A new study has found China is outpacing Europe and the US in terms of AI research output and growth.
Google says ‘circular economy’ needed for data centres
Google's Sustainability Officer believes major changes are critical in data centres to emulate the cyclical life of nature.
52mil users affected by Google+’s second data breach
Google+ APIs will be shut down within the next 90 days, and the consumer platform will be disabled in April 2019 instead of August 2019 as originally planned.
Ramping up security with next-gen firewalls
The classic firewall lacked the ability to distinguish between different kinds of web traffic.