Hi,
i was doing some research regarding the necessary patches for Meltdown/Spectre but unfortunately couldn´t find any information about how this has to be handled for Sharepoint-installations. (Maybe i´m just not looking in the right places?)
While checking the article for SQLServer (
https://support.microsoft.com/en-us/help/4073225/guidance-for-sql-server ) i thought that maybe Sharepoint could be opening up the door for "untrusted code" to be executed on the server, by some user uploading some evil document, Excel
Services etc? I´m neither a security specialist nor a hacker, so this is just a guess at the end :-)
So, does anybody have more information about this? We´re running Sharpoint 2007 with Reporting Services in Integrated mode on SQLServer 2008 if this matters!
Thank you
Markus