CVE-2007-4289
published 2007-08-09CVE-2007-4289: Sun Java System Portal Server 7.0 does not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent attackers to…
medium6.8CVSS 3.1
AVNACMAuNCPIPAP
Sun Java System Portal Server 7.0 does not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent attackers to execute an arbitrary Java method via a crafted stylesheet, a related issue to CVE-2007-3715.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sun | java_system_access_manager | — | — |
| sun | java_system_access_manager | — | — |
| sun | java_system_access_manager | — | — |
| sun | java_system_identity_server | — | — |
| sun | java_system_identity_server | — | — |
| sun | java_system_portal_server | — | — |