==================================================================== CERT-Renater Note d'Information No. 2012/VULN402 ____________________________________________________________________ DATE : 10/10/2012 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S) : Systems running Microsoft FAST Search Server version 2010 for SharePoint SP 1. ====================================================================== KB2742321 http://technet.microsoft.com/en-us/security/bulletin/MS12-067 ______________________________________________________________________ Microsoft Security Bulletin MS12-067 - Important Vulnerabilities in FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution (2742321) Published Date: October 9, 2012 Version: 1.0 General Information Executive Summary This security update resolves publicly disclosed vulnerabilities in Microsoft FAST Search Server 2010 for SharePoint. The vulnerabilities could allow remote code execution in the security context of a user account with a restricted token. FAST Search Server for SharePoint is only affected by this issue when Advanced Filter Pack is enabled. By default, Advanced Filter Pack is disabled. This security update is rated Important for supported editions of FAST Search Server 2010 for SharePoint. For more information, see the subsection, Affected and Non-Affected Software, in this section. Affected Software Microsoft FAST Search Server 2010 for SharePoint Service Pack 1 Vulnerability Information Oracle Outside In contains multiple exploitable vulnerabilities Remote code execution vulnerabilities exist in FAST Search Server 2010 for SharePoint using the Advanced Filter Pack, an attacker could run arbitrary code in the context of a user account with a restricted token. By default, Advanced Filter Pack in FAST is disabled. To view these vulnerabilities as a standard entry in the Common Vulnerabilities and Exposures list, see CVE-2012-1766, CVE-2012-1767,CVE-2012-1768, CVE-2012-1769, CVE-2012-1770, CVE-2012-1771 , CVE-2012-1772, CVE-2012-1773, CVE-2012-3106, CVE-2012-3107, CVE-2012-3108, CVE-2012-3109, and CVE-2012-3110. ====================================================================== ========================================================= Serveur de référence du CERT-Renater https://services.renater.fr/ssi/ ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23 - 25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email: certsvp@renater.fr + =========================================================