IBM Security Bulletin: Open Source Apache Xalan-Java in Workplace XT
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
Apache Xalan-Java could allow a remote attacker to bypass security restrictions, caused by the improper handling of output properties. An attacker could exploit this vulnerability to bypass the secure processing feature to load arbitrary restricted classes. CVE(s): Affected product(s) and affected version(s): Workplace XT 1.1 Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin:
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_open_source_apache_xalan_java_in_workplace_xt?lang=en_us |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2014-0878 ,CVE-2014-0107 ,CVE-2014-0453 ,CVE-2014-4263 ,CVE-2014-4244 and CVE-2014-0050. |