MS10-072: Description of the security update for Office SharePoint Server 2007: October 12, 2010

Article ID: 2345212 - View products that this article applies to.
Important This article contains information that shows you how to help lower security settings or how to turn off security features on a computer. You can make these changes to work around a specific problem. Before you make these changes, we recommend that you evaluate the risks that are associated with implementing this workaround in your particular environment. If you implement this workaround, take any appropriate additional steps to help protect the computer.
Expand all | Collapse all

On This Page

INTRODUCTION

Microsoft has released security bulletin MS10-072. To view the complete security bulletin, visit one of the following Microsoft websites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update
(http://support.microsoft.com/ph/6527)


Security solutions for IT professionals: TechNet Security Troubleshooting and Support
(http://technet.microsoft.com/security/bb980617.aspx)


Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center
(http://support.microsoft.com/contactus/cu_sc_virsec_master)


Local support according to your country: International Support
(http://support.microsoft.com/common/international.aspx)


Back to the top | Give Feedback

More information about this security update

Back to the top | Give Feedback

Known issues with this security update

  • Known issue 1

    Symptom
    If the SharePoint Products and Technologies Configuration Wizard does not finish its task, SharePoint may be left in an inconsistent state. You may be unable to browse the Central Administration or SharePoint site, and you may receive one of the following error messages:

    Error message 1

    Server Error: http://go.microsoft.com/fwlink?LinkID=96177

    Error message 2

    HTTP 404 Not Found

    Error message 3

    Cannot connect to the configuration database

    Resolution

    For more information about how to resolve this issue, click the following article number to view the article in the Microsoft Knowledge Base:
    944267
    (http://support.microsoft.com/kb/944267/ )
    How to troubleshoot common errors that occur when you run the SharePoint Products and Technologies Configuration Wizard on a computer that is running Windows SharePoint Services 3.0 or SharePoint Server 2007
  • Known issue 2

    Symptom

    Users are prompted for authentication when they try to browse a SharePoint site. Windows Server 2003 SP1 and Windows Server 2008 include a loopback check security feature that helps prevent reflection attacks on your computer. Therefore, authentication fails if the fully qualified domain (FQDN) or the custom host header that you use does not match the local computer name.

    Workaround

    There are two methods to work around this issue. Use one of the following methods, as appropriate for your situation.

    Important This section, method, or task contains steps that tell you how to modify the registry. However, serious problems might occur if you modify the registry incorrectly. Therefore, make sure that you follow these steps carefully. For added protection, back up the registry before you modify it. Then, you can restore the registry if a problem occurs. For more information about how to back up and restore the registry, click the following article number to view the article in the Microsoft Knowledge Base:
    322756
    (http://support.microsoft.com/kb/322756/ )
    How to back up and restore the registry in Windows

    Method 1: Specify host names (the preferred method for NTLM authentication)

    To specify the host names that are mapped to the loopback address and can connect to websites on your computer, follow these steps:
    1. Set the DisableStrictNameChecking registry entry to 1. For more information about how to do this, click the following article number to view the article in the Microsoft Knowledge Base:
      281308
      (http://support.microsoft.com/kb/281308/ )
      Connecting to SMB share on a Windows 2000-based computer or a Windows Server 2003-based computer may not work with an alias name
    2. Click Start, click Run, type regedit, and then click OK.
    3. In Registry Editor, locate and then click the following registry key:
      HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0
    4. Right-click MSV1_0, point to New, and then click Multi-String Value.
    5. Type BackConnectionHostNames, and then press ENTER.
    6. Right-click BackConnectionHostNames, and then click Modify.
    7. In the Value data box, type the host name or the host names for the sites that are on the local computer, and then click OK.
    8. Exit Registry Editor, and then restart the IISAdmin service.

    Method 2: Disable the loopback check (the less-recommended method)

    Warning This workaround may make a computer or a network more vulnerable to attack by malicious users or by malicious software such as viruses. We do not recommend this workaround but are providing this information so that you can implement this workaround at your own discretion. Use this workaround at your own risk.

    The second method is to disable the loopback check by setting the DisableLoopbackCheck registry entry.

    To set the DisableLoopbackCheck registry key, follow these steps:
    1. Set the DisableStrictNameChecking registry entry to 1. For more information about how to do this, click the following article number to view the article in the Microsoft Knowledge Base:
      281308
      (http://support.microsoft.com/kb/281308/ )
      Connecting to SMB share on a Windows 2000-based computer or a Windows Server 2003-based computer may not work with an alias name
    2. Click Start, click Run, type regedit, and then click OK.
    3. In Registry Editor, locate and then click the following registry key:
      HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
    4. Right-click Lsa, point to New, and then click DWORD Value.
    5. Type DisableLoopbackCheck, and then press ENTER.
    6. Right-click DisableLoopbackCheck, and then click Modify.
    7. In the Value data box, type 1, and then click OK.
    8. Exit Registry Editor, and then restart your computer.
    For more information, click the following article number to view the article in the Microsoft Knowledge Base:
    926642
    (http://support.microsoft.com/kb/926642/ )
    Error message when you try to access a server locally by using its FQDN or its CNAME alias after you install Windows Server 2003 Service Pack 1: "Access denied" or "No network provider accepted the given network path"
  • Known issue 3

    After you install this security update on a Windows Small Business Server-based computer that is running Office SharePoint Server 2007, in some scenarios, the SharePoint Companyweb and Central Administration pages may not be available. For more information about this issue and about how to resolve the issue, visit the following Microsoft TechNet webpage: 
    http://blogs.technet.com/b/sbs/archive/2010/06/18/companyweb-and-sharepoint-central-admin-not-accessible-after-installing-kb983444.aspx
    (http://blogs.technet.com/b/sbs/archive/2010/06/18/companyweb-and-sharepoint-central-admin-not-accessible-after-installing-kb983444.aspx)
  • Known issue 4

    This security update may appear multiple times in the Installed Updates list after you install it. This occurs because this update is applied to multiple Office applications.
For more information, click the following article number to view the article in the Microsoft Knowledge Base:
944267
(http://support.microsoft.com/kb/944267/ )
How to troubleshoot common errors that occur when you run the SharePoint Products and Technologies Configuration Wizard on a computer that is running Windows SharePoint Services 3.0 or SharePoint Server 2007
Back to the top | Give Feedback

Prerequisites to apply this security update

The following list contains prerequisites for the security update:
  • To install this security update, you must have the following installed:
    • 2007 Microsoft Office servers Service Pack 2 (SP2)
Back to the top | Give Feedback

Restart information

You do not have to restart the computer after you install this security update.
Back to the top | Give Feedback

Security update replacement information

This security update replaces the following security update:
979445
(http://support.microsoft.com/kb/979445/ )
MS10-039: Description of the security update for Microsoft Office SharePoint Server 2007: June 8, 2010
Back to the top | Give Feedback

File information

The English (United States) version of this security update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.
For Microsoft Office SharePoint Server 2007, 32-bit Edition
Collapse this tableExpand this table
File nameFile versionFile sizeDateTime
Admcmds.xml.x86Not applicable2,21617-Apr-200909:05
Chtbrkr.dll.x8612.0.6539.50006,859,77609-Jun-201007:48
Deprpt.asxNot applicable15,60416-Sep-200922:08
Editprofilelayouts.aspxNot applicable2,67121-May-200923:24
Expicker.jsNot applicable3,26521-May-200923:24
Gmgfelem.xmlNot applicable28814-Aug-200922:09
Gmigfeat.xmlNot applicable47214-Aug-200922:09
Microsoft.office.server.dll12.0.6539.50002,932,73609-Jun-201006:34
Microsoft.office.server.dll_isapi12.0.6539.50002,932,73609-Jun-201006:34
Microsoft.sharepoint.publishing.dll_isapi12.0.6545.50003,723,26411-Aug-201018:06
Msscntrs.dll.x8612.0.6529.5000909,82403-Feb-201008:20
Mssdmn.exe.x8612.0.6539.50001,372,67209-Jun-201007:43
Mssearch.exe.x8612.0.6539.50001,057,79209-Jun-201007:46
Mssph.dll.x8612.0.6544.50002,519,04004-Aug-201007:39
Mssrch.dll.x8612.0.6539.50005,203,96809-Jun-201007:46
Natlang6.dll_osssearch.x866.0.6531.50006,211,58409-Mar-201015:46
Natlangnlsd0009.dll_osssearch.x866.0.6519.500032,449,02430-Sep-200909:35
Notesph.dll.oss.x8612.0.6545.50002,147,84011-Aug-201020:05
Offfiltx.dll.x862006.1200.6524.50004,998,65619-Nov-200922:24
Office.odf12.0.6527.50003,634,68812-Jan-201016:07
Osafehtm.dll12.0.6545.5000233,47211-Aug-201016:10
Pbb1feat.xmlNot applicable52621-Jul-201006:10
Pbb1fil.xmlNot applicable8,67921-Jul-201006:10
Pbbfeat.xmlNot applicable52021-Jul-201006:10
Pbbfil.xmlNot applicable1,25721-Jul-201006:10
Pblyfeat.xmlNot applicable58321-Jul-201006:09
Pkmexsph.dll_0001.x8612.0.6539.50001,240,57609-Jun-201007:45
Portal.dll12.0.6541.50006,623,23208-Jul-201017:00
Portal.dll_00112.0.6541.50006,623,23208-Jul-201017:00
Profilesrp.sqlNot applicable551,28809-Jun-201008:08
Profilup.sqlNot applicable618,70309-Jun-201008:08
Provfil.xmlNot applicable20,53821-Jul-201006:09
Provfile.xmlNot applicable4,89821-Jul-201006:09
Pubrfeat.xmlNot applicable95821-Jul-201006:09
Query9x.dll_0001.x8612.0.6510.5000553,47217-Jun-200923:21
Reportcenterxmlonet_xmlNot applicable25,16904-Nov-200922:14
Sclonet_xml.x86Not applicable32,39217-Apr-200909:05
Sctabslistallitems_aspx.x86Not applicable2,64908-Dec-200907:15
Scxmlonet_xml.x86Not applicable54,69217-Apr-200910:19
Searchom.dll.x8612.0.6545.50009,153,53611-Aug-201020:01
Searchom.dll_0001.x8612.0.6545.50009,153,53611-Aug-201020:01
Sharepointpub.dll12.0.6545.50003,723,26411-Aug-201018:06
Sharepointpub_gac.dll12.0.6545.50003,723,26411-Aug-201018:06
Sitesv3siteslistallitems_aspx12.0.32082,64908-Dec-200907:15
Sitesv3tabslistallitems_aspx12.0.32082,64908-Dec-200907:15
Sm.asxNot applicable31,01208-Apr-201011:25
Sps.core.rsxNot applicable85,63817-Apr-200910:21
Spscore.rsx_1025Not applicable103,75717-Apr-200918:12
Spscore.rsx_1026Not applicable116,42917-Apr-200918:11
Spscore.rsx_1027Not applicable92,89417-Apr-200918:11
Spscore.rsx_1028Not applicable83,67717-Apr-200917:51
Spscore.rsx_1029Not applicable90,79517-Apr-200918:12
Spscore.rsx_1030Not applicable89,10717-Apr-200918:11
Spscore.rsx_1031Not applicable92,53417-Apr-200918:11
Spscore.rsx_1032Not applicable121,22317-Apr-200918:11
Spscore.rsx_1033Not applicable85,63817-Apr-200910:21
Spscore.rsx_1035Not applicable89,73317-Apr-200918:10
Spscore.rsx_1036Not applicable94,47817-Apr-200918:11
Spscore.rsx_1037Not applicable97,26117-Apr-200918:10
Spscore.rsx_1038Not applicable94,20717-Apr-200918:10
Spscore.rsx_1040Not applicable92,76217-Apr-200918:05
Spscore.rsx_1041Not applicable97,79617-Apr-200918:03
Spscore.rsx_1042Not applicable92,05017-Apr-200918:03
Spscore.rsx_1043Not applicable91,32917-Apr-200917:59
Spscore.rsx_1044Not applicable87,92317-Apr-200918:01
Spscore.rsx_1045Not applicable93,35417-Apr-200917:59
Spscore.rsx_1046Not applicable90,66017-Apr-200917:58
Spscore.rsx_1048Not applicable91,75217-Apr-200917:58
Spscore.rsx_1049Not applicable114,43517-Apr-200917:59
Spscore.rsx_1050Not applicable90,27917-Apr-200918:10
Spscore.rsx_1051Not applicable92,65617-Apr-200917:58
Spscore.rsx_1053Not applicable89,02217-Apr-200917:58
Spscore.rsx_1054Not applicable128,14017-Apr-200917:58
Spscore.rsx_1055Not applicable90,96517-Apr-200917:51
Spscore.rsx_1058Not applicable112,11617-Apr-200917:51
Spscore.rsx_1060Not applicable89,55617-Apr-200917:58
Spscore.rsx_1061Not applicable87,32117-Apr-200918:11
Spscore.rsx_1062Not applicable91,35217-Apr-200918:03
Spscore.rsx_1063Not applicable91,52317-Apr-200918:03
Spscore.rsx_1081Not applicable127,69817-Apr-200918:11
Spscore.rsx_2052Not applicable83,67617-Apr-200917:51
Spscore.rsx_2070Not applicable92,24817-Apr-200917:59
Spscore.rsx_2074Not applicable90,82617-Apr-200917:59
Spscore.rsx_3082Not applicable92,45817-Apr-200918:10
Spsimpph.dll.x8612.0.6529.50001,395,20003-Feb-201008:22
Svrsetup.dll12.0.6501.500015,127,04012-Mar-200904:59
Svrsetup.exe12.0.6501.50008,511,48812-Mar-200905:00
Tquery.dll.x8612.0.6542.50008,269,82421-Jul-201006:56
Upgrade.dll_00112.0.6539.5000774,14409-Jun-201008:13
Userprofilechangeservicewsdl.aspxNot applicable19,96926-May-201012:16
For Microsoft Office SharePoint Server 2007, 64-bit Edition
Collapse this tableExpand this table
File nameFile versionFile sizeDateTimePlatform
Admcmds.xml.x64Not applicable2,21617-Apr-200908:51Not applicable
Chtbrkr.dll.x6412.0.6539.50006,129,49609-Jun-201006:58Not applicable
Deprpt.asxNot applicable15,59216-Sep-200920:21Not applicable
Editprofilelayouts.aspxNot applicable2,65921-May-200923:11Not applicable
Expicker.jsNot applicable3,26521-May-200923:11Not applicable
Gmgfelem.xmlNot applicable28814-Aug-200921:52Not applicable
Gmigfeat.xmlNot applicable47214-Aug-200921:52Not applicable
Microsoft.office.server.dll12.0.6539.50002,893,69609-Jun-201006:26x86
Microsoft.office.server.dll_isapi12.0.6539.50002,893,69609-Jun-201006:26Not applicable
Microsoft.sharepoint.publishing.dll_isapi12.0.6545.50003,676,05611-Aug-201018:24Not applicable
Msscntrs.dll.x6412.0.6529.5000437,08003-Feb-201008:46Not applicable
Mssdmn.exe.x6412.0.6539.5000797,04009-Jun-201006:58Not applicable
Mssearch.exe.x6412.0.6539.5000572,27209-Jun-201006:58Not applicable
Mssph.dll.x6412.0.6544.50001,956,17604-Aug-201008:18Not applicable
Mssrch.dll.x6412.0.6539.50004,758,86409-Jun-201006:58Not applicable
Natlang6.dll_osssearch.x646.0.6531.50003,985,80809-Mar-201016:25Not applicable
Offfiltx.dll.x642006.1200.6524.50001,845,13619-Nov-200923:16Not applicable
Osafehtm.dll12.0.6545.5000139,12011-Aug-201016:13x64
Pbb1feat.xmlNot applicable52621-Jul-201005:45Not applicable
Pbb1fil.xmlNot applicable8,67921-Jul-201005:45Not applicable
Pbbfeat.xmlNot applicable52021-Jul-201005:45Not applicable
Pbbfil.xmlNot applicable1,25721-Jul-201005:45Not applicable
Pblyfeat.xmlNot applicable58321-Jul-201005:45Not applicable
Pkmexsph.dll_0001.x6412.0.6539.5000651,60809-Jun-201006:58Not applicable
Portal.dll12.0.6541.50006,506,39208-Jul-201013:49x86
Portal.dll_00112.0.6541.50006,506,39208-Jul-201013:49Not applicable
Profilesrp.sqlNot applicable551,28809-Jun-201008:35Not applicable
Profilup.sqlNot applicable618,70309-Jun-201008:35Not applicable
Provfil.xmlNot applicable20,53821-Jul-201005:45Not applicable
Provfile.xmlNot applicable4,89821-Jul-201005:45Not applicable
Pubrfeat.xmlNot applicable95821-Jul-201005:45Not applicable
Query9x.dll_0001.x6412.0.6510.5000219,47217-Jun-200923:01Not applicable
Reportcenterxmlonet_xmlNot applicable25,16904-Nov-200922:36Not applicable
Sclonet_xml.x64Not applicable32,39217-Apr-200908:51Not applicable
Sctabslistallitems_aspx.x64Not applicable2,63908-Dec-200907:15Not applicable
Scxmlonet_xml.x64Not applicable54,69217-Apr-200910:16Not applicable
Searchom.dll.x6412.0.6545.50008,808,32011-Aug-201019:55Not applicable
Searchom.dll_0001.x6412.0.6545.50008,808,32011-Aug-201019:55Not applicable
Sharepointpub.dll12.0.6545.50003,676,05611-Aug-201018:24x86
Sharepointpub_gac.dll12.0.6545.50003,676,05611-Aug-201018:24x86
Sitesv3siteslistallitems_aspx12.0.32082,63908-Dec-200907:15Not applicable
Sitesv3tabslistallitems_aspx12.0.32082,63908-Dec-200907:15Not applicable
Sm.asxNot applicable30,86908-Apr-201011:27Not applicable
Sps.core.rsxNot applicable85,63817-Apr-200910:18Not applicable
Spscore.rsx_1025Not applicable103,75717-Apr-200917:50Not applicable
Spscore.rsx_1026Not applicable116,42917-Apr-200917:50Not applicable
Spscore.rsx_1027Not applicable92,89417-Apr-200917:49Not applicable
Spscore.rsx_1028Not applicable83,67717-Apr-200917:25Not applicable
Spscore.rsx_1029Not applicable90,79517-Apr-200917:49Not applicable
Spscore.rsx_1030Not applicable89,10717-Apr-200917:49Not applicable
Spscore.rsx_1031Not applicable92,53417-Apr-200917:49Not applicable
Spscore.rsx_1032Not applicable121,22317-Apr-200917:49Not applicable
Spscore.rsx_1033Not applicable85,63817-Apr-200910:18Not applicable
Spscore.rsx_1035Not applicable89,73317-Apr-200917:49Not applicable
Spscore.rsx_1036Not applicable94,47817-Apr-200917:49Not applicable
Spscore.rsx_1037Not applicable97,26117-Apr-200917:49Not applicable
Spscore.rsx_1038Not applicable94,20717-Apr-200917:41Not applicable
Spscore.rsx_1040Not applicable92,76217-Apr-200917:41Not applicable
Spscore.rsx_1041Not applicable97,79617-Apr-200917:40Not applicable
Spscore.rsx_1042Not applicable92,05017-Apr-200917:40Not applicable
Spscore.rsx_1043Not applicable91,32917-Apr-200917:37Not applicable
Spscore.rsx_1044Not applicable87,92317-Apr-200917:38Not applicable
Spscore.rsx_1045Not applicable93,35417-Apr-200917:38Not applicable
Spscore.rsx_1046Not applicable90,66017-Apr-200917:37Not applicable
Spscore.rsx_1048Not applicable91,75217-Apr-200917:37Not applicable
Spscore.rsx_1049Not applicable114,43517-Apr-200917:36Not applicable
Spscore.rsx_1050Not applicable90,27917-Apr-200917:48Not applicable
Spscore.rsx_1051Not applicable92,65617-Apr-200917:37Not applicable
Spscore.rsx_1053Not applicable89,02217-Apr-200917:29Not applicable
Spscore.rsx_1054Not applicable128,14017-Apr-200917:29Not applicable
Spscore.rsx_1055Not applicable90,96517-Apr-200917:28Not applicable
Spscore.rsx_1058Not applicable112,11617-Apr-200917:28Not applicable
Spscore.rsx_1060Not applicable89,55617-Apr-200917:36Not applicable
Spscore.rsx_1061Not applicable87,32117-Apr-200917:48Not applicable
Spscore.rsx_1062Not applicable91,35217-Apr-200917:38Not applicable
Spscore.rsx_1063Not applicable91,52317-Apr-200917:38Not applicable
Spscore.rsx_1081Not applicable127,69817-Apr-200917:49Not applicable
Spscore.rsx_2052Not applicable83,67617-Apr-200917:25Not applicable
Spscore.rsx_2070Not applicable92,24817-Apr-200917:37Not applicable
Spscore.rsx_2074Not applicable90,82617-Apr-200917:36Not applicable
Spscore.rsx_3082Not applicable92,45817-Apr-200917:49Not applicable
Spsimpph.dll.x6412.0.6529.5000788,32003-Feb-201008:46Not applicable
Tquery.dll.x6412.0.6542.50004,783,95221-Jul-201006:05Not applicable
Upgrade.dll_00112.0.6539.5000771,99209-Jun-201007:24Not applicable
Userprofilechangeservicewsdl.aspxNot applicable19,95726-May-201011:29Not applicable
Back to the top | Give Feedback

Properties

Article ID: 2345212 - Last Review: May 11, 2012 - Revision: 4.0
APPLIES TO
  • Microsoft Office SharePoint Server 2007
Keywords: 
kbsecurity kbsecvulnerability kbqfe kbbug kbfix kbsurveynew kbexpertiseinter kbsecbulletin KB2345212
Back to the top | Give Feedback

Give Feedback

 
Back to the topBack to the top