Sun Java System Server XSLT Processing Remote Java Method Execution Vulnerability

Sun Java System Server XSLT Processing Remote Java Method Execution Vulnerability

References:

102993 - Java Runtime Environment Does Not Securely Process XSLT Stylesheets Con (Sun)
Sun Java System Application Server Homepage (Sun)
Sun Java System Web Server (Sun Microsystems)
Whitepaper: Command Injection in XML Digital Signatures and Encryption (Brad Hill )
Command Injection in XML Digital Signatures (Brad Hill )
BEA07-177.00 Multiple Security Vulnerabilities in the Java Runtime Environment (BEA Systems)
Sun Alert ID: 102992 (Sun)
Sun Alert ID: 103015 - A Security Vulnerability in Processing XSLT Style Sheets (Sun)

Privacy Statement
Copyright 2010, SecurityFocus