Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2014-0107

The TransformerFactory in Apache Xalan-Java before 2.7.2 does not properly restrict access to certain properties when FEATURE_SECURE_PROCESSING is enabled, which allows remote attackers to bypass expected restrictions and load arbitrary classes or access external resources via a crafted (1) xalan:content-header, (2) xalan:entities, (3) xslt:content-header, or (4) xslt:entities property, or a Java property that is bound to the XSLT 1.0 system-property function.

Published

2014-04-15T23:13:13.070

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

6.4

Weaknesses

Type: Primary
CWE-264

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	apache	xalan-java	≤ 2.7.1	Yes
Application	apache	xalan-java	1.0.0	Yes
Application	apache	xalan-java	2.0.0	Yes
Application	apache	xalan-java	2.0.1	Yes
Application	apache	xalan-java	2.1.0	Yes
Application	apache	xalan-java	2.2.0	Yes
Application	apache	xalan-java	2.4.0	Yes
Application	apache	xalan-java	2.4.1	Yes
Application	apache	xalan-java	2.5.0	Yes
Application	apache	xalan-java	2.5.1	Yes
Application	apache	xalan-java	2.5.2	Yes
Application	apache	xalan-java	2.6.0	Yes
Application	apache	xalan-java	2.7.0	Yes
Application	oracle	webcenter_sites	7.6.2	Yes
Application	oracle	webcenter_sites	11.1.1.8.0	Yes

References

http://rhn.redhat.com/errata/RHSA-2014-0348.html ([email protected])
http://rhn.redhat.com/errata/RHSA-2014-1351.html ([email protected])
http://rhn.redhat.com/errata/RHSA-2015-1888.html ([email protected])
http://secunia.com/advisories/57563 ([email protected])
http://secunia.com/advisories/59036 ([email protected])
http://secunia.com/advisories/59151 ([email protected])
http://secunia.com/advisories/59247 ([email protected])
http://secunia.com/advisories/59290 ([email protected])
http://secunia.com/advisories/59291 ([email protected])
http://secunia.com/advisories/59369 ([email protected])
http://secunia.com/advisories/59515 ([email protected])
http://secunia.com/advisories/59711 ([email protected])
http://secunia.com/advisories/60502 ([email protected])
http://svn.apache.org/viewvc?view=revision&revision=1581058 Patch ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21674334 ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21676093 ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21677145 ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21680703 ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21681933 ([email protected])
http://www.debian.org/security/2014/dsa-2886 ([email protected])
http://www.ibm.com/support/docview.wss?uid=swg21677967 ([email protected])
http://www.ocert.org/advisories/ocert-2014-002.html US Government Resource ([email protected])
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html ([email protected])
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html Patch, Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/66397 ([email protected])
http://www.securitytracker.com/id/1034711 ([email protected])
http://www.securitytracker.com/id/1034716 ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/92023 ([email protected])
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05324755 ([email protected])
https://issues.apache.org/jira/browse/XALANJ-2435 ([email protected])
https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f%40%3Cdev.drill.apache.org%3E ([email protected])
https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442%40%3Cdev.drill.apache.org%3E ([email protected])
https://lists.apache.org/thread.html/r0c00afcab8f238562e27b3ae7b8af1913c62bc60838fb8b34c19e26b%40%3Cdev.tomcat.apache.org%3E ([email protected])
https://lists.apache.org/thread.html/r2900489bc665a2e32d021bb21f6ce2cb8e6bb5973490eebb9a346bca%40%3Cdev.tomcat.apache.org%3E ([email protected])
https://security.gentoo.org/glsa/201604-02 ([email protected])
https://www.oracle.com//security-alerts/cpujul2021.html ([email protected])
https://www.oracle.com/security-alerts/cpuoct2021.html ([email protected])
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html ([email protected])
https://www.tenable.com/security/tns-2018-15 ([email protected])
http://rhn.redhat.com/errata/RHSA-2014-0348.html (af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2014-1351.html (af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-1888.html (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/57563 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/59036 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/59151 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/59247 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/59290 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/59291 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/59369 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/59515 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/59711 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/60502 (af854a3a-2127-422b-91ae-364da2661108)
http://svn.apache.org/viewvc?view=revision&revision=1581058 Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21674334 (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21676093 (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21677145 (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21680703 (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21681933 (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2014/dsa-2886 (af854a3a-2127-422b-91ae-364da2661108)
http://www.ibm.com/support/docview.wss?uid=swg21677967 (af854a3a-2127-422b-91ae-364da2661108)
http://www.ocert.org/advisories/ocert-2014-002.html US Government Resource (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/66397 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1034711 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1034716 (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/92023 (af854a3a-2127-422b-91ae-364da2661108)
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05324755 (af854a3a-2127-422b-91ae-364da2661108)
https://issues.apache.org/jira/browse/XALANJ-2435 (af854a3a-2127-422b-91ae-364da2661108)
https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f%40%3Cdev.drill.apache.org%3E (af854a3a-2127-422b-91ae-364da2661108)
https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442%40%3Cdev.drill.apache.org%3E (af854a3a-2127-422b-91ae-364da2661108)
https://lists.apache.org/thread.html/r0c00afcab8f238562e27b3ae7b8af1913c62bc60838fb8b34c19e26b%40%3Cdev.tomcat.apache.org%3E (af854a3a-2127-422b-91ae-364da2661108)
https://lists.apache.org/thread.html/r2900489bc665a2e32d021bb21f6ce2cb8e6bb5973490eebb9a346bca%40%3Cdev.tomcat.apache.org%3E (af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201604-02 (af854a3a-2127-422b-91ae-364da2661108)
https://www.oracle.com//security-alerts/cpujul2021.html (af854a3a-2127-422b-91ae-364da2661108)
https://www.oracle.com/security-alerts/cpuoct2021.html (af854a3a-2127-422b-91ae-364da2661108)
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html (af854a3a-2127-422b-91ae-364da2661108)
https://www.tenable.com/security/tns-2018-15 (af854a3a-2127-422b-91ae-364da2661108)