Patch for Potential Cross-Site Scripting Security Vulnerability (322690)


The information in this article applies to:

  • Microsoft SharePoint Portal Server 2001 SP1
This article was previously published under Q322690

SUMMARY

Microsoft has released an update to SharePoint Portal Server 2001 that addresses a potential cross-site scripting vulnerability.

For additional information about the latest service pack for Microsoft SharePoint Portal Server 2001, click the following article number to view the article in the Microsoft Knowledge Base:

312963How to Obtain the Latest SharePoint Portal Server 2001 Service Pack

MORE INFORMATION

For additional information on this Cross-Site Scripting, visit the following Microsoft Web site:

http://www.microsoft.com/TechNet/itsolutions/security/topics/crssite.asp

To resolve this problem, obtain the latest service pack for Microsoft SharePoint Portal Server 2001. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:

312963 How to Obtain the Latest SharePoint Portal Server 2001 Service Pack

The English version of this fix should have the following file attributes or later:
   Date         Time    Size         File name
   -------------------------------------------------------
   07-May-2002  23:09      22,339    Createsubscriptions.asp
   07-May-2002  23:09       8,292    Newfolder.asp
   07-May-2002  23:09       6,975    Portalredirect.asp
   07-May-2002  23:09     194,279    Tahoeutils.asp
   07-May-2002  17:53   2,087,322    Defaultworkspace.cab
NOTE: Because of file dependencies, this update requires Microsoft SharePoint Portal Server 2001 Service Pack 1
Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article.
Modification Type:MinorLast Reviewed:9/30/2005
Keywords:kbHotfixServer kbQFE kbSharePtPortalSvr2001SP2fix kbfix kbinfo KB322690
©2004 Microsoft Corporation. All rights reserved.