Apache Xalan-Java Library CVE-2014-0107 Security Bypass Vulnerability

Bugtraq ID: 66397
Class: Input Validation Error
CVE: CVE-2014-0107
Remote: Yes
Local: No
Published: Mar 24 2014 12:00AM
Updated: Nov 19 2014 12:57AM
Credit: Nicolas Gregoire
Vulnerable: Ubuntu Ubuntu Linux 12.04 LTS i386
Ubuntu Ubuntu Linux 12.04 LTS amd64
Ubuntu Ubuntu Linux 10.04 sparc
Ubuntu Ubuntu Linux 10.04 powerpc
Ubuntu Ubuntu Linux 10.04 i386
Ubuntu Ubuntu Linux 10.04 ARM
Ubuntu Ubuntu Linux 10.04 amd64
RedHat Enterprise Linux Desktop Workstation 5 client
Red Hat JBoss Enterprise Application Platform 5 EL6
Red Hat JBoss Enterprise Application Platform 5 EL5
Red Hat JBoss Enterprise Application Platform 5 EL4
Red Hat Enterprise Linux Workstation Optional 6
Red Hat Enterprise Linux Workstation 6
Red Hat Enterprise Linux Server Optional 6
Red Hat Enterprise Linux Server 6
Red Hat Enterprise Linux HPC Node Optional 6
Red Hat Enterprise Linux Desktop Optional 6
Red Hat Enterprise Linux Desktop 5 client
Red Hat Enterprise Linux 5 Server
Oracle Enterprise Linux 6.2
Oracle Enterprise Linux 6
IBM Filenet P8 Application Engine 4.0.2
IBM Cognos Express 9.5
IBM Cognos Express 10.1
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
CentOS CentOS 5
Avaya Aura System Manager 6.2
Avaya Aura System Manager 6.1.3
Avaya Aura System Manager 6.1.2
Avaya Aura System Manager 6.1.1
Avaya Aura System Manager 6.1
Apache Software Foundation Xalan-java 2.7
Apache Software Foundation Xalan-java 2.5.1
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus