MS12-050 Released – Vulnerabilities in SharePoint Could Allow Elevation of Privilege (2695502)

MS12-050 was released today. It covers InfoPath (client), WSSv3, MOSS 2007, Groove, Groove Server, SharePoint Foundation 2010 (RTM and SP1), SharePoint Server 2010 (RTM and SP1), and Office Web Applications (RTM and SP1).

Make sure you install all applicable patches for your product. For instance, for SharePoint Server 2010 SP1 with Office Web Applications SP1, this means 3 patches: KB2553424, KB2553194, and KB2598239.

If you are running the latest June 2012 CU on SharePoint 2010 SP1, the SharePoint 2010 SP1 patches in MS12-050 do not apply.

After installation and any applicable reboots, do not forget to run the SharePoint Products Configuration Wizard to fully configure these patches.

Trevor Seward is a Microsoft Office Apps and Services MVP who specializes in SharePoint Server administration, hybrid scenarios, and SharePoint Online. He has been working with SharePoint for 16 years from SharePoint 2003 on up, managing environments with terabytes of content for 150,000+ user organizations. Trevor is an author of Deploying SharePoint 2016 and Deploying SharePoint 2019. You can find him on Twitter and in /r/sharepoint.