Vulnerability Description
The TransformerFactory in Apache Xalan-Java before 2.7.2 does not properly restrict access to certain properties when FEATURE_SECURE_PROCESSING is enabled, which allows remote attackers to bypass expected restrictions and load arbitrary classes or access external resources via a crafted (1) xalan:content-header, (2) xalan:entities, (3) xslt:content-header, or (4) xslt:entities property, or a Java property that is bound to the XSLT 1.0 system-property function.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Xalan-Java | <= 2.7.1 |
| Oracle | Webcenter Sites | 7.6.2 |
Related Weaknesses (CWE)
References
- http://rhn.redhat.com/errata/RHSA-2014-0348.html
- http://rhn.redhat.com/errata/RHSA-2014-1351.html
- http://rhn.redhat.com/errata/RHSA-2015-1888.html
- http://secunia.com/advisories/57563
- http://secunia.com/advisories/59036
- http://secunia.com/advisories/59151
- http://secunia.com/advisories/59247
- http://secunia.com/advisories/59290
- http://secunia.com/advisories/59291
- http://secunia.com/advisories/59369
- http://secunia.com/advisories/59515
- http://secunia.com/advisories/59711
- http://secunia.com/advisories/60502
- http://svn.apache.org/viewvc?view=revision&revision=1581058Patch
- http://www-01.ibm.com/support/docview.wss?uid=swg21674334
FAQ
What is CVE-2014-0107?
CVE-2014-0107 is a vulnerability with a CVSS score of 7.5 (HIGH). The TransformerFactory in Apache Xalan-Java before 2.7.2 does not properly restrict access to certain properties when FEATURE_SECURE_PROCESSING is enabled, which allows remote attackers to bypass expe...
How severe is CVE-2014-0107?
CVE-2014-0107 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-0107?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Xalan-Java, Oracle Webcenter Sites.