Lucene search
Ubuntu.comUB:CVE-2007-3716HistoryJul 11, 2007 - 12:00 a.m.
CVE-2007-3716
2007-07-1100:00:00
ubuntu.com
ubuntu.com
15
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.027
Percentile
90.6%
The Java XML Digital Signature implementation in Sun JDK and JRE 6 before
Update 2 does not properly process XSLT stylesheets in XSLT transforms in
XML signatures, which allows context-dependent attackers to execute
arbitrary code via a crafted stylesheet, a related issue to CVE-2007-3715.
Related
prion
prion
Sql injection
2007-07-11 23:30:00
Design/Logic Flaw
2007-07-11 23:30:00
Sql injection
2008-06-30 22:41:00
nvd
nvd
cve
cve
cvelist
cvelist
nessus
nessus
Sun Java JRE XML Signature Command Injection (102993)
2007-07-16 00:00:00
Sun Java JRE XML Signature Command Injection (102993) (Unix)
2013-02-22 00:00:00
Solaris 10 (x86) : 125438-22
2018-03-12 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200709-15 (jrockit-jdk-bin)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200709-15 (jrockit-jdk-bin)
2008-09-24 00:00:00
f5
f5
K16475 : Multiple Sun Java vulnerabilities
2015-04-21 00:00:00
SOL16475 - Multiple Sun Java vulnerabilities
2015-04-21 00:00:00
gentoo
gentoo
BEA JRockit: Multiple vulnerabilities
2007-09-23 00:00:00
ibm
ibm
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.027
Percentile
90.6%
Related for UB:CVE-2007-3716