CVE-2007-3715

NONECVSS 0.0

0.0

Sun Java System Application Server and Web Server 7.0 through 9.0 before 20070710 do not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent attackers to execute an arbitrary Java method via a crafted stylesheet, a related issue to CVE-2007-3716.

🔗 References (24)

cve@mitrehttp://osvdb.org/37248
cve@mitrehttp://secunia.com/advisories/26023
cve@mitrehttp://sunsolve.sun.com/search/document.do?assetkey=1-26-102992-1
cve@mitrehttp://sunsolve.sun.com/search/document.do?assetkey=1-66-200054-1
cve@mitrehttp://www.isecpartners.com/advisories/2007-04-dsig.txt
cve@mitrehttp://www.isecpartners.com/files/XMLDSIG_Command_Injection.pdf
cve@mitrehttp://www.securityfocus.com/archive/1/473552/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/473553/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/24850
cve@mitrehttp://www.vupen.com/english/advisories/2007/2493
cve@mitrehttp://www.vupen.com/english/advisories/2007/2785
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/35335
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/37248
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/26023
af854a3a-2127-422b-91ae-364da2661108http://sunsolve.sun.com/search/document.do?assetkey=1-26-102992-1

Is Your Infrastructure Affected by CVE-2007-3715?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-3715

📅 Published

🔄 Last Modified

🔗 References (24)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-3715?