Vulnerability Description
The XSLTCompiledTransform function in Ektron Content Management System (CMS) before 8.02 SP5 configures the XSL with enableDocumentFunction set to true, which allows remote attackers to read arbitrary files and consequently bypass authentication, modify viewstate, cause a denial of service, or possibly have unspecified other impact via crafted XSL data.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ektron | Ektron Content Management System | <= 8.02 |
Related Weaknesses (CWE)
References
- http://documentation.ektron.com/current/ReleaseNotes/Release8/8.02SP5.htmIssue TrackingVendor Advisory
- https://technet.microsoft.com/library/security/msvr12-016Issue TrackingRelease NotesThird Party Advisory
- https://webstersprodigy.net/2012/10/25/cve-2012-5357cve-1012-5358-cool-ektron-xsExploitIssue TrackingThird Party Advisory
- http://documentation.ektron.com/current/ReleaseNotes/Release8/8.02SP5.htmIssue TrackingVendor Advisory
- https://technet.microsoft.com/library/security/msvr12-016Issue TrackingRelease NotesThird Party Advisory
- https://webstersprodigy.net/2012/10/25/cve-2012-5357cve-1012-5358-cool-ektron-xsExploitIssue TrackingThird Party Advisory
FAQ
What is CVE-2012-5358?
CVE-2012-5358 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The XSLTCompiledTransform function in Ektron Content Management System (CMS) before 8.02 SP5 configures the XSL with enableDocumentFunction set to true, which allows remote attackers to read arbitrary...
How severe is CVE-2012-5358?
CVE-2012-5358 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2012-5358?
Check the references section above for vendor advisories and patch information. Affected products include: Ektron Ektron Content Management System.