Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0107

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2014-0107
Last Modified 10 Oct 2014 01:17:56
Published 15 Apr 2014 07:13:13
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-0107

Summary

The TransformerFactory in Apache Xalan-Java before 2.7.2 does not properly restrict access to certain properties when FEATURE_SECURE_PROCESSING is enabled, which allows remote attackers to bypass expected restrictions and load arbitrary classes or access external resources via a crafted (1) xalan:content-header, (2) xalan:entities, (3) xslt:content-header, or (4) xslt:entities property, or a Java property that is bound to the XSLT 1.0 system-property function.

Vulnerable Systems

Application

  • Apache Xalan-java 1.0.0

  • Apache Xalan-java 2.0.0

  • Apache Xalan-java 2.0.1

  • Apache Xalan-java 2.1.0

  • Apache Xalan-java 2.2.0

  • Apache Xalan-java 2.4.0

  • Apache Xalan-java 2.4.1

  • Apache Xalan-java 2.5.0

  • Apache Xalan-java 2.5.1

  • Apache Xalan-java 2.5.2

  • Apache Xalan-java 2.6.0

  • Apache Xalan-java 2.7.0

  • Apache Xalan-java 2.7.1


References

MISC - http://www.ocert.org/advisories/ocert-2014-002.html

CONFIRM - https://issues.apache.org/jira/browse/XALANJ-2435

XF - apache-xalanjava-cve20140107-sec-bypass(92023)

BID - 66397

CONFIRM - http://svn.apache.org/viewvc?view=revision&revision=1581058

SECUNIA - 57563

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21677145

SECUNIA - 59369

SECUNIA - 59036

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21681933

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21680703

SECUNIA - 60502

SECUNIA - 59711

REDHAT - RHSA-2014:1351


Last Updated: 27 May 2016 11:06:09